From fd2137236444a810602c4e729db173ad195db6e4 Mon Sep 17 00:00:00 2001 From: "jin.gjm" Date: Tue, 13 Sep 2022 19:20:03 +0800 Subject: [PATCH] update nodelocaldns 1.22.8 --- ezdown | 2 +- .../cluster-addon/templates/dns/nodelocaldns-iptables.yaml.j2 | 4 +++- roles/cluster-addon/templates/dns/nodelocaldns-ipvs.yaml.j2 | 4 +++- 3 files changed, 7 insertions(+), 3 deletions(-) diff --git a/ezdown b/ezdown index 455767c..3e6f162 100755 --- a/ezdown +++ b/ezdown @@ -23,7 +23,7 @@ REGISTRY_MIRROR=CN # images downloaded by default(with '-D') calicoVer=v3.23.3 -dnsNodeCacheVer=1.21.1 +dnsNodeCacheVer=1.22.8 corednsVer=1.9.3 dashboardVer=v2.5.1 dashboardMetricsScraperVer=v1.0.8 diff --git a/roles/cluster-addon/templates/dns/nodelocaldns-iptables.yaml.j2 b/roles/cluster-addon/templates/dns/nodelocaldns-iptables.yaml.j2 index 2aa3500..ff60cc1 100644 --- a/roles/cluster-addon/templates/dns/nodelocaldns-iptables.yaml.j2 +++ b/roles/cluster-addon/templates/dns/nodelocaldns-iptables.yaml.j2 @@ -146,7 +146,9 @@ spec: memory: 5Mi args: [ "-localip", "{{ LOCAL_DNS_CACHE }},{{ CLUSTER_DNS_SVC_IP }}", "-conf", "/etc/Corefile", "-upstreamsvc", "kube-dns-upstream" ] securityContext: - privileged: true + capabilities: + add: + - NET_ADMIN ports: - containerPort: 53 name: dns diff --git a/roles/cluster-addon/templates/dns/nodelocaldns-ipvs.yaml.j2 b/roles/cluster-addon/templates/dns/nodelocaldns-ipvs.yaml.j2 index 29be8b0..1448874 100644 --- a/roles/cluster-addon/templates/dns/nodelocaldns-ipvs.yaml.j2 +++ b/roles/cluster-addon/templates/dns/nodelocaldns-ipvs.yaml.j2 @@ -146,7 +146,9 @@ spec: memory: 5Mi args: [ "-localip", "{{ LOCAL_DNS_CACHE }}", "-conf", "/etc/Corefile", "-upstreamsvc", "kube-dns-upstream" ] securityContext: - privileged: true + capabilities: + add: + - NET_ADMIN ports: - containerPort: 53 name: dns