From 5f7acc3d202f720e3381b83828b242481323148d Mon Sep 17 00:00:00 2001 From: Christian Pointner Date: Sun, 3 Jan 2021 20:21:33 +0100 Subject: kubernetes: upgrade kubeguard network plugin --- .../master/templates/net_kubeguard/kube-router.0.4.0.yml.j2 | 13 ++++++------- 1 file changed, 6 insertions(+), 7 deletions(-) (limited to 'roles/kubernetes/kubeadm/master/templates/net_kubeguard/kube-router.0.4.0.yml.j2') diff --git a/roles/kubernetes/kubeadm/master/templates/net_kubeguard/kube-router.0.4.0.yml.j2 b/roles/kubernetes/kubeadm/master/templates/net_kubeguard/kube-router.0.4.0.yml.j2 index 51bfdaae..e343f4a7 100644 --- a/roles/kubernetes/kubeadm/master/templates/net_kubeguard/kube-router.0.4.0.yml.j2 +++ b/roles/kubernetes/kubeadm/master/templates/net_kubeguard/kube-router.0.4.0.yml.j2 @@ -57,6 +57,7 @@ spec: image: docker.io/cloudnativelabs/kube-router:v{{ kubernetes_network_plugin_version }} imagePullPolicy: Always args: + - --cluster-cidr={{ kubernetes.pod_ip_range }} - --run-router=false - --run-firewall=true - --run-service-proxy={{ kubernetes_network_plugin_replaces_kube_proxy | string | lower }} @@ -93,13 +94,11 @@ spec: readOnly: false hostNetwork: true tolerations: - - key: CriticalAddonsOnly - operator: Exists - effect: NoSchedule - key: node-role.kubernetes.io/master operator: Exists - - effect: NoSchedule - key: node.kubernetes.io/not-ready + - key: CriticalAddonsOnly + operator: Exists + - effect: NoExecute operator: Exists volumes: - name: lib-modules @@ -123,7 +122,7 @@ metadata: namespace: kube-system --- kind: ClusterRole -apiVersion: rbac.authorization.k8s.io/v1beta1 +apiVersion: rbac.authorization.k8s.io/v1 metadata: name: kube-router namespace: kube-system @@ -158,7 +157,7 @@ rules: - watch --- kind: ClusterRoleBinding -apiVersion: rbac.authorization.k8s.io/v1beta1 +apiVersion: rbac.authorization.k8s.io/v1 metadata: name: kube-router roleRef: -- cgit v1.2.3