Fix network coherence & firewall
All checks were successful
continuous-integration/drone/push Build is passing
All checks were successful
continuous-integration/drone/push Build is passing
This commit is contained in:
parent
8bbd3fa11c
commit
39c5ef5e82
GPG key ID:
DA7B27055C66D6DE
5 changed files with 44 additions and 21 deletions
|
|
@ -24,7 +24,7 @@
|
|||
<port protocol="tcp" port="10251"/>
|
||||
# kube-controler-manager, used by self
|
||||
<port protocol="tcp" port="10252"/>
|
||||
# ???
|
||||
# Read-only Kubelet API (Deprecated)
|
||||
<port protocol="tcp" port="10255"/>
|
||||
{% else %}
|
||||
<port protocol="tcp" port="10250"/>
|
||||
|
|
|
|||
|
|
@ -96,21 +96,17 @@ apiServer:
|
|||
readOnly: false
|
||||
pathType: DirectoryOrCreate
|
||||
- name: "audit-policies"
|
||||
hostPath: "/etc/kubernetes/policies"
|
||||
mountPath: "/etc/kubernetes/policies"
|
||||
hostPath: "/etc/kubernetes/policies/audit-policy.yaml"
|
||||
mountPath: "/etc/kubernetes/policies/audit-policy.yaml"
|
||||
readOnly: false
|
||||
pathType: DirectoryOrCreate
|
||||
pathType: File
|
||||
{% if lb_kubemaster is defined %}
|
||||
certSANs:
|
||||
- "{{ lb_kubemaster }}"
|
||||
{% endif %}
|
||||
{% if kubernetes_network == "flannel" or kubernetes_network == "calico" %}
|
||||
networking:
|
||||
{% if kubernetes_network == "flannel" %}
|
||||
podSubnet: "10.244.0.0/16"
|
||||
{% elif kubernetes_network == "calico" %}
|
||||
podSubnet: "192.168.0.0/16"
|
||||
{% endif %}
|
||||
podSubnet: "{{ kubernetes_pods_network }}"
|
||||
{% endif %}
|
||||
---
|
||||
apiVersion: kubeproxy.config.k8s.io/v1alpha1
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue