a5edd0d709
* [jjo] add kube-router support Fixes cloudnativelabs/kube-router#147. * add kube-router as another network_plugin choice * support most used kube-router flags via `kube_router_foo` vars as other plugins * implement replacing kube-proxy (--run-service-proxy=true) via `kube_proxy_mode: none`, verified in a _non kubeadm_enabled_ install, should also work for recent kubeadm releases via `skipKubeProxyInstall: true` config * [jjo] address PR#3339 review from @woopstar * add busybox image used by kube-router to downloads * fix busybox download groups key * rework kubeadm_enabled + kube_router_run_service_proxy - verify it working ok w/the kubeadm_enabled and kube_router_run_service_proxy true or false - introduce `kube_proxy_remove` fact, to decouple logic from kube_proxy_mode (which affects kubeadm configmap settings, thus no-good to ab-use it to 'none') * improve kube-router.md re: kubeadm_enabled and kube_router_run_service_proxy * address @woopstar latest review * add inventory/sample/group_vars/k8s-cluster/k8s-net-kube-router.yml * fix kube_router_run_service_proxy conditional for kube-proxy removal * fix kube_proxy_remove fact (w/ |bool), add some needed kube-proxy tags on my and existing changes * update kube-router tolerations for 1.12 compatibility * add PriorityClass to kube-router DaemonSet
36 lines
1.6 KiB
YAML
36 lines
1.6 KiB
YAML
---
|
|
# Enables Pod Networking -- Advertises and learns the routes to Pods via iBGP
|
|
kube_router_run_router: true
|
|
|
|
# Enables Network Policy -- sets up iptables to provide ingress firewall for pods
|
|
kube_router_run_firewall: true
|
|
|
|
# Enables Service Proxy -- sets up IPVS for Kubernetes Services
|
|
# see docs/kube-router.md "Caveats" section
|
|
kube_router_run_service_proxy: false
|
|
|
|
# Add Cluster IP of the service to the RIB so that it gets advertises to the BGP peers.
|
|
kube_router_advertise_cluster_ip: false
|
|
|
|
# Add External IP of service to the RIB so that it gets advertised to the BGP peers.
|
|
kube_router_advertise_external_ip: false
|
|
|
|
# Add LoadbBalancer IP of service status as set by the LB provider to the RIB so that it gets advertised to the BGP peers.
|
|
kube_router_advertise_loadbalancer_ip: false
|
|
|
|
# Array of arbitrary extra arguments to kube-router, see
|
|
# https://github.com/cloudnativelabs/kube-router/blob/master/docs/user-guide.md
|
|
kube_router_extra_args: []
|
|
|
|
# ASN numbers of the BGP peer to which cluster nodes will advertise cluster ip and node's pod cidr.
|
|
kube_router_peer_router_asns: ~
|
|
|
|
# The ip address of the external router to which all nodes will peer and advertise the cluster ip and pod cidr's.
|
|
kube_router_peer_router_ips: ~
|
|
|
|
# The remote port of the external BGP to which all nodes will peer. If not set, default BGP port (179) will be used.
|
|
kube_router_peer_router_ports: ~
|
|
|
|
# Setups node CNI to allow hairpin mode, requires node reboots, see
|
|
# https://github.com/cloudnativelabs/kube-router/blob/master/docs/user-guide.md#hairpin-mode
|
|
kube_router_support_hairpin_mode: false
|