mirror of https://github.com/istio/istio.io.git
8.0 KiB
8.0 KiB
| title | description | weight | keywords | ||
|---|---|---|---|---|---|
| Installation Options | Describes the options available when installing Istio using the included Helm chart. | 30 |
|
To customize Istio install using Helm, use the --set <key>=<value> option in Helm command to override one or more values. The set of supported keys is shown in the table below.
| Key | Default Value | Description |
|---|---|---|
global.hub |
docker.io/istionightly |
|
global.tag |
nightly-master |
|
global.proxy.image |
proxyv2 |
|
global.proxy.accessLogFile |
"/dev/stdout" |
|
global.proxy.enableCoreDump |
false |
|
global.proxy.includeIPRanges |
"*" |
|
global.proxy.excludeIPRanges |
"" |
|
global.proxy.includeInboundPorts |
"*" |
|
global.proxy.excludeInboundPorts |
"" |
|
global.proxy.autoInject |
enabled |
|
global.proxy.envoyStatsd.enabled |
true |
|
global.proxy.envoyStatsd.host |
istio-statsd-prom-bridge |
|
global.proxy.envoyStatsd.port |
9125 |
|
global.proxy_init.image |
proxy_init |
|
global.imagePullPolicy |
IfNotPresent |
|
global.hyperkube.repository |
quay.io/coreos/hyperkube |
|
global.hyperkube.tag |
v1.7.6_coreos.0 |
|
global.controlPlaneSecurityEnabled |
false |
|
global.disablePolicyChecks |
false |
|
global.enableTracing |
true |
|
global.mtls.enabled |
false |
|
global.nodePort |
true |
|
global.refreshInterval |
10s |
|
global.arch.amd64 |
2 |
|
global.arch.s390x |
2 |
|
global.arch.ppc64le |
2 |
|
global.oneNamespace |
false |
|
global.configValidation |
true |
|
global.defaultResources.requests.cpu |
10m |
|
istiotesting.oneNameSpace |
false |
|
ingress.enabled |
true |
|
ingress.replicaCount |
1 |
|
ingress.autoscaleMin |
1 |
|
ingress.autoscaleMax |
1 |
|
ingress.service.annotations |
{} |
|
ingress.service.loadBalancerIP |
"" |
|
ingress.service.type |
LoadBalancer #change to NodePort, ClusterIP or LoadBalancer if need be |
|
ingress.service.ports.name |
http |
|
ingress.service.ports.nodePort |
32000 |
|
ingress.service.ports.name |
https |
|
ingress.service.selector.istio |
ingress |
|
gateways.enabled |
true |
|
gateways.istio-ingressgateway.enabled |
true |
|
gateways.istio-ingressgateway.labels.istio |
ingressgateway |
|
gateways.istio-ingressgateway.replicaCount |
1 |
|
gateways.istio-ingressgateway.autoscaleMin |
1 |
|
gateways.istio-ingressgateway.autoscaleMax |
5 |
|
gateways.istio-ingressgateway.resources |
{} |
|
gateways.istio-ingressgateway.loadBalancerIP |
"" |
|
gateways.istio-ingressgateway.serviceAnnotations |
{} |
|
gateways.istio-ingressgateway.type |
LoadBalancer #change to NodePort, ClusterIP or LoadBalancer if need be |
|
gateways.istio-ingressgateway.ports.targetPort |
80 |
|
gateways.istio-ingressgateway.ports.name |
http2 |
|
gateways.istio-ingressgateway.ports.nodePort |
31380 |
|
gateways.istio-ingressgateway.ports.name |
https |
|
gateways.istio-ingressgateway.ports.nodePort |
31390 |
|
gateways.istio-ingressgateway.ports.name |
tcp |
|
gateways.istio-ingressgateway.ports.nodePort |
31400 |
|
gateways.istio-ingressgateway.secretVolumes.secretName |
istio-ingressgateway-certs |
|
gateways.istio-ingressgateway.secretVolumes.mountPath |
/etc/istio/ingressgateway-certs |
|
gateways.istio-ingressgateway.secretVolumes.secretName |
istio-ingressgateway-ca-certs |
|
gateways.istio-ingressgateway.secretVolumes.mountPath |
/etc/istio/ingressgateway-ca-certs |
|
gateways.istio-egressgateway.enabled |
true |
|
gateways.istio-egressgateway.labels.istio |
egressgateway |
|
gateways.istio-egressgateway.replicaCount |
1 |
|
gateways.istio-egressgateway.autoscaleMin |
1 |
|
gateways.istio-egressgateway.autoscaleMax |
1 |
|
gateways.istio-egressgateway.serviceAnnotations |
{} |
|
gateways.istio-egressgateway.type |
ClusterIP #change to NodePort or LoadBalancer if need be |
|
gateways.istio-egressgateway.ports.name |
http2 |
|
gateways.istio-egressgateway.ports.name.name |
https |
|
gateways.istio-egressgateway.secretVolumes.secretName |
istio-egressgateway-certs |
|
gateways.istio-egressgateway.secretVolumes.secretName.mountPath |
/etc/istio/egressgateway-certs |
|
gateways.istio-egressgateway.secretVolumes.secretName.secretName |
istio-egressgateway-ca-certs |
|
gateways.istio-egressgateway.secretVolumes.secretName.mountPath |
/etc/istio/egressgateway-ca-certs |
|
sidecarInjectorWebhook.enabled |
true |
|
sidecarInjectorWebhook.replicaCount |
1 |
|
sidecarInjectorWebhook.image |
sidecar_injector |
|
sidecarInjectorWebhook.enableNamespacesByDefault |
false |
|
galley.enabled |
true |
|
galley.replicaCount |
1 |
|
galley.image |
galley |
|
mixer.enabled |
true |
|
mixer.replicaCount |
1 |
|
mixer.image |
mixer |
|
mixer.prometheusStatsdExporter.repository |
prom/statsd-exporter |
|
mixer.prometheusStatsdExporter.tag |
latest |
|
pilot.enabled |
true |
|
pilot.replicaCount |
1 |
|
pilot.image |
pilot |
|
security.replicaCount |
1 |
|
security.image |
citadel |
|
security.selfSigned |
true # indicate if self-signed CA is used. |
|
security.cleanUpOldCA |
true |
|
grafana |
grafana.local |
|
grafana.enabled |
false |
|
grafana.replicaCount |
1 |
|
grafana.image |
grafana |
|
grafana.service.annotations |
{} |
|
grafana.service.name |
http |
|
grafana.service.type |
ClusterIP |
|
grafana.service.externalPort |
3000 |
|
grafana.service.internalPort |
3000 |
|
grafana.ingress |
grafana.local |
|
grafana.ingress.enabled |
false |
|
grafana.ingress.hosts |
grafana.local |
|
prometheus.enabled |
true |
|
prometheus.replicaCount |
1 |
|
prometheus.image.repository |
docker.io/prom/prometheus |
|
prometheus.image.tag |
latest |
|
prometheus.ingress.enabled |
false |
|
prometheus.service.annotations |
{} |
|
prometheus.service.nodePort.enabled |
false |
|
prometheus.service.nodePort.port |
32090 |
|
servicegraph |
servicegraph.local |
|
servicegraph.enabled |
false |
|
servicegraph.replicaCount |
1 |
|
servicegraph.image |
servicegraph |
|
servicegraph.service.annotations |
{} |
|
servicegraph.service.name |
http |
|
servicegraph.service.type |
ClusterIP |
|
servicegraph.service.externalPort |
8088 |
|
servicegraph.service.internalPort |
8088 |
|
servicegraph.ingress |
servicegraph.local |
|
servicegraph.ingress.enabled |
false |
|
servicegraph.ingress.hosts |
servicegraph.local |
|
servicegraph.prometheusAddr |
http://prometheus:9090 |
|
zipkin.enabled |
true |
|
tracing |
zipkin.local |
|
tracing.enabled |
false |
|
tracing.jaeger.enabled |
false |
|
tracing.jaeger.memory.max_traces |
50000 |
|
tracing.replicaCount |
1 |
|
tracing.image.repository |
jaegertracing/all-in-one |
|
tracing.image.tag |
1.5 |
|
tracing.service.annotations |
{} |
|
tracing.service.name |
http |
|
tracing.service.type |
ClusterIP |
|
tracing.service.externalPort |
9411 |
|
tracing.service.internalPort |
9411 |
|
tracing.service.uiPort |
16686 |
|
tracing.ingress |
zipkin.local |
|
tracing.ingress.enabled |
false |
|
tracing.ingress.hosts |
zipkin.local |
|
kiali.enabled |
false |
|
kiali.replicaCount |
1 |
|
kiali.image.repository |
kiali/kiali |
|
kiali.image.tag |
v0.4.0 |
|
kiali.ingress.enabled |
false |
|
kiali.dashboard.username |
admin |
|
kiali.dashboard.password |
admin |