DeepCypher/dc-kc
1
0
Fork 0
mirror of https://gitlab.com/deepcypher/dc-kc.git synced 2026-01-27 11:12:08 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Added basic cilium

Browse Source
This commit is contained in:
George Raven
2024-04-04 22:50:37 +01:00
parent ee24f1a514
commit 787a5f1841
3 changed files with 72 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
charts/cilium/.helmignore Normal file
View File

@@ -0,0 +1,23 @@
# Patterns to ignore when building packages.
# This supports shell glob matching, relative path matching, and
# negation (prefixed with !). Only one pattern per line.
.DS_Store
# Common VCS dirs
.git/
.gitignore
.bzr/
.bzrignore
.hg/
.hgignore
.svn/
# Common backup files
*.swp
*.bak
*.tmp
*.orig
*~
# Various IDEs
.project
.idea/
*.tmproj
.vscode/

30
charts/cilium/Chart.yaml Normal file
View File

@@ -0,0 +1,30 @@
apiVersion: v2
name: cilium
description: A Helm chart for Kubernetes
# A chart can be either an 'application' or a 'library' chart.
#
# Application charts are a collection of templates that can be packaged into versioned archives
# to be deployed.
#
# Library charts provide useful utilities or functions for the chart developer. They're included as
# a dependency of application charts to inject those utilities and functions into the rendering
# pipeline. Library charts do not define any templates and therefore cannot be deployed.
type: application
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
version: 0.1.0
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning. They should reflect the version the application is using.
# It is recommended to use it with quotes.
appVersion: "4"
dependencies:
- name: cilium
version: 1.15.3
repository: "https://helm.cilium.io/"

19
charts/cilium/values.yaml Normal file
View File

@@ -0,0 +1,19 @@
cilium:
ipam:
mode: kubernetes
kubeProxyReplacement: true # <-- REPLACES KUBE PROXY
securityContext:
capabilities:
ciliumAgent: [CHOWN, KILL, NET_ADMIN, NET_RAW, IPC_LOCK, SYS_ADMIN, SYS_RESOURCE, DAC_OVERRIDE, FOWNER, SETGID, SETUID]
cleanCiliumState: [NET_ADMIN, SYS_ADMIN, SYS_RESOURCE]
cgroup:
autoMount:
enabled: false
hostRoot: /sys/fs/cgroup
# KubePrism direct access to api server for cilium
# available since talos 1.6 and is only bound to localhost:7445 for internal server use
# https://www.talos.dev/v1.6/kubernetes-guides/configuration/kubeprism/
# https://www.talos.dev/v1.6/kubernetes-guides/network/deploying-cilium/
# https://github.com/cilium/cilium/issues/20679
k8sServiceHost: localhost
k8sServicePort: 6443