linkerd
/
linkerd2
mirror of https://github.com/linkerd/linkerd2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

feat(linkerd-cni): add support for plain iptables commands (#13457) 

* feat(linkerd-cni): add support for plain iptables commands

This goes along with linkerd/linkerd2-proxy-init#449, that adds a new
value for the linkerd2-cni chart's `iptableMode` config. Only a doc
change.

* s/default/plain
This commit is contained in:
Alejandro Pedraza 2024-12-12 13:51:17 -05:00 committed by GitHub
parent 985964846d
commit a7c41b5ae4
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
charts/linkerd2-cni/README.md
View File

@ -35,7 +35,7 @@ Kubernetes: `>=1.22.0-0`
| image.version | string | `"v1.6.0"` | Tag for the CNI container Docker image | | image.version | string | `"v1.6.0"` | Tag for the CNI container Docker image |
| imagePullSecrets | list | `[]` | | | imagePullSecrets | list | `[]` | |
| inboundProxyPort | int | `4143` | Inbound port for the proxy container | | inboundProxyPort | int | `4143` | Inbound port for the proxy container |
| iptablesMode | string | `"legacy"` | Variant of iptables that will be used to configure routing | | iptablesMode | string | `"legacy"` | Variant of iptables that will be used to configure routing. Allowed values are 'nft', 'legacy' and 'plain'. They invoke 'iptables-nft', 'iptables-legacy' and 'iptables' commands respectively. The 'plain' mode is targeted at RHEL, which ships with an nftables-based 'iptables' command. |
| logLevel | string | `"info"` | Log level for the CNI plugin | | logLevel | string | `"info"` | Log level for the CNI plugin |
| outboundProxyPort | int | `4140` | Outbound port for the proxy container | | outboundProxyPort | int | `4140` | Outbound port for the proxy container |
| podLabels | object | `{}` | Additional labels to add to all pods | | podLabels | object | `{}` | Additional labels to add to all pods |
@ -68,4 +68,4 @@ Kubernetes: `>=1.22.0-0`
| useWaitFlag | bool | `false` | Configures the CNI plugin to use the -w flag for the iptables command | | useWaitFlag | bool | `false` | Configures the CNI plugin to use the -w flag for the iptables command |
---------------------------------------------- ----------------------------------------------
Autogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2) Autogenerated from chart metadata using [helm-docs v1.12.0](https://github.com/norwoodj/helm-docs/releases/v1.12.0)

5
charts/linkerd2-cni/values.yaml
View File

@ -28,7 +28,10 @@ destCNINetDir: "/etc/cni/net.d"
destCNIBinDir: "/opt/cni/bin" destCNIBinDir: "/opt/cni/bin"
# -- Configures the CNI plugin to use the -w flag for the iptables command # -- Configures the CNI plugin to use the -w flag for the iptables command
useWaitFlag: false useWaitFlag: false
# -- Variant of iptables that will be used to configure routing # -- Variant of iptables that will be used to configure routing. Allowed values
# are 'nft', 'legacy' and 'plain'. They invoke the 'iptables-nft',
# 'iptables-legacy' and 'iptables' commands respectively. The 'plain' mode is
# targeted at RHEL, which ships with an nftables-based 'iptables' command.
iptablesMode: "legacy" iptablesMode: "legacy"
# -- Disables adding IPv6 rules on top of IPv4 rules # -- Disables adding IPv6 rules on top of IPv4 rules
disableIPv6: true disableIPv6: true