---
apiVersion: v1
kind: Pod
metadata:
  name: dnsmasq
  namespace: kube-system
spec:
  hostNetwork: true
  containers:
    - name: dnsmasq
      image: andyshinn/dnsmasq:2.72
      command:
        - dnsmasq
      args:
        - -k
        - "-7"
        - /etc/dnsmasq.d
        - --local-service
      securityContext:
        capabilities:
          add:
            - NET_ADMIN
      imagePullPolicy: Always
      resources:
        limits:
          cpu: 100m
          memory: 256M
      ports:
        - name: dns
          containerPort: 53
          hostPort: 53
          protocol: UDP
        - name: dns-tcp
          containerPort: 53
          hostPort: 53
          protocol: TCP
      volumeMounts:
        - name: etcdnsmasqd
          mountPath: /etc/dnsmasq.d
        - name: etcdnsmasqdavailable
          mountPath: /etc/dnsmasq.d-available

  volumes:
    - name: etcdnsmasqd
      hostPath:
        path: /etc/dnsmasq.d
    - name: etcdnsmasqdavailable
      hostPath:
        path: /etc/dnsmasq.d-available