From 511e3680061148bebda0062c1ab269d51ee46123 Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Fri, 12 May 2023 00:59:05 +0200
Subject: kubernetes: add network plugin cilium

---
 inventory/group_vars/k8s-chtest/vars.yml | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

(limited to 'inventory/group_vars/k8s-chtest/vars.yml')

diff --git a/inventory/group_vars/k8s-chtest/vars.yml b/inventory/group_vars/k8s-chtest/vars.yml
index 9552f5e5..154d2d70 100644
--- a/inventory/group_vars/k8s-chtest/vars.yml
+++ b/inventory/group_vars/k8s-chtest/vars.yml
@@ -11,9 +11,22 @@ containerd_pkg_provider: docker-com
 #kubernetes_network_plugin_replaces_kube_proxy: yes
 #kubernetes_enable_nodelocal_dnscache: yes
 
-kubernetes_network_plugin: none
+kubernetes_network_plugin: cilium
+kubernetes_network_plugin_version: 1.13.2
 kubernetes_network_plugin_replaces_kube_proxy: yes
 kubernetes_enable_nodelocal_dnscache: no
+kubernetes_cilium_config:
+  ipam: kubernetes
+  tunnel: disabled
+  ipv4-native-routing-cidr: 192.168.28.0/24
+  auto-direct-node-routes: yes
+base_sysctl_config_user:
+  net.ipv4.conf.all.rp_filter: 0
+  net.ipv4.conf.default.rp_filter: 0
+
+# kubernetes_network_plugin: none
+# kubernetes_network_plugin_replaces_kube_proxy: yes
+# kubernetes_enable_nodelocal_dnscache: no
 
 
 kubernetes:
-- 
cgit v1.2.3