2019-07-31 11:10:20 +08:00
|
|
|
---
|
|
|
|
kind: Deployment
|
|
|
|
apiVersion: apps/v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-controller
|
2020-05-07 02:05:09 +08:00
|
|
|
namespace: kube-system
|
2019-07-31 11:10:20 +08:00
|
|
|
annotations:
|
|
|
|
kubernetes.io/description: |
|
|
|
|
kube-ovn controller
|
|
|
|
spec:
|
2022-05-12 12:35:15 +08:00
|
|
|
replicas: {{ kube_ovn_controller_replics }}
|
2019-07-31 11:10:20 +08:00
|
|
|
selector:
|
|
|
|
matchLabels:
|
|
|
|
app: kube-ovn-controller
|
|
|
|
strategy:
|
|
|
|
rollingUpdate:
|
|
|
|
maxSurge: 0%
|
|
|
|
maxUnavailable: 100%
|
|
|
|
type: RollingUpdate
|
|
|
|
template:
|
|
|
|
metadata:
|
|
|
|
labels:
|
|
|
|
app: kube-ovn-controller
|
|
|
|
component: network
|
|
|
|
type: infra
|
|
|
|
spec:
|
|
|
|
tolerations:
|
|
|
|
- operator: Exists
|
|
|
|
affinity:
|
|
|
|
podAntiAffinity:
|
|
|
|
requiredDuringSchedulingIgnoredDuringExecution:
|
|
|
|
- labelSelector:
|
|
|
|
matchLabels:
|
|
|
|
app: kube-ovn-controller
|
|
|
|
topologyKey: kubernetes.io/hostname
|
2020-04-15 18:10:03 +08:00
|
|
|
priorityClassName: system-cluster-critical
|
2019-07-31 11:10:20 +08:00
|
|
|
serviceAccountName: ovn
|
|
|
|
hostNetwork: true
|
|
|
|
containers:
|
|
|
|
- name: kube-ovn-controller
|
2020-04-15 18:10:03 +08:00
|
|
|
image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
|
2019-07-31 11:10:20 +08:00
|
|
|
imagePullPolicy: {{ k8s_image_pull_policy }}
|
|
|
|
args:
|
2023-05-25 09:34:51 +08:00
|
|
|
- /kube-ovn/start-controller.sh
|
2023-07-05 11:36:54 +08:00
|
|
|
- --default-cidr={{ kube_pods_subnet }}{% if enable_dual_stack_networks %},{{ kube_ovn_pool_cidr_ipv6 | default(kube_pods_subnet_ipv6) }}{% endif %}{{ '' }}
|
|
|
|
- --default-gateway={% if kube_ovn_default_gateway is defined %}{{ kube_ovn_default_gateway }}{% endif %}{{ '' }}
|
|
|
|
- --default-gateway-check={{ kube_ovn_default_gateway_check | string }}
|
|
|
|
- --default-logical-gateway={{ kube_ovn_default_logical_gateway | string }}
|
2023-05-25 09:34:51 +08:00
|
|
|
- --default-u2o-interconnection={{ kube_ovn_u2o_interconnection }}
|
2023-07-05 11:36:54 +08:00
|
|
|
- --default-exclude-ips={% if kube_ovn_default_exclude_ips is defined %}{{ kube_ovn_default_exclude_ips }}{% endif %}{{ '' }}
|
|
|
|
- --node-switch-cidr={{ kube_ovn_node_switch_cidr }}{% if enable_dual_stack_networks %},{{ kube_ovn_node_switch_cidr_ipv6 }}{% endif %}{{ '' }}
|
|
|
|
- --service-cluster-ip-range={{ kube_service_addresses }}{% if enable_dual_stack_networks %},{{ kube_service_addresses_ipv6 }}{% endif %}{{ '' }}
|
2023-05-25 09:34:51 +08:00
|
|
|
- --network-type={{ kube_ovn_network_type }}
|
2023-07-05 11:36:54 +08:00
|
|
|
- --default-interface-name={{ kube_ovn_default_interface_name | default('') }}
|
2023-05-25 09:34:51 +08:00
|
|
|
- --default-vlan-id={{ kube_ovn_default_vlan_id }}
|
|
|
|
- --ls-dnat-mod-dl-dst={{ kube_ovn_ls_dnat_mod_dl_dst }}
|
|
|
|
- --pod-nic-type={{ kube_ovn_pod_nic_type }}
|
2023-07-05 11:36:54 +08:00
|
|
|
- --enable-lb={{ kube_ovn_enable_lb | string }}
|
|
|
|
- --enable-np={{ kube_ovn_enable_np | string }}
|
2023-05-25 09:34:51 +08:00
|
|
|
- --enable-eip-snat={{ kube_ovn_eip_snat_enabled }}
|
2023-07-05 11:36:54 +08:00
|
|
|
- --enable-external-vpc={{ kube_ovn_enable_external_vpc | string }}
|
2023-05-25 09:34:51 +08:00
|
|
|
- --logtostderr=false
|
|
|
|
- --alsologtostderr=true
|
|
|
|
- --gc-interval=360
|
|
|
|
- --inspect-interval=20
|
|
|
|
- --log_file=/var/log/kube-ovn/kube-ovn-controller.log
|
|
|
|
- --log_file_max_size=0
|
|
|
|
- --enable-lb-svc=false
|
|
|
|
- --keep-vm-ip={{ kube_ovn_keep_vm_ip }}
|
|
|
|
- --pod-default-fip-type=""
|
2019-07-31 11:10:20 +08:00
|
|
|
env:
|
2020-11-27 01:34:19 +08:00
|
|
|
- name: ENABLE_SSL
|
2022-05-12 12:35:15 +08:00
|
|
|
value: "{{ kube_ovn_enable_ssl | lower }}"
|
2019-07-31 11:10:20 +08:00
|
|
|
- name: POD_NAME
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: metadata.name
|
|
|
|
- name: KUBE_NAMESPACE
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: metadata.namespace
|
|
|
|
- name: KUBE_NODE_NAME
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: spec.nodeName
|
2023-05-25 09:34:51 +08:00
|
|
|
- name: OVN_DB_IPS
|
|
|
|
value: "{{ kube_ovn_central_ips }}"
|
|
|
|
- name: POD_IPS
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: status.podIPs
|
|
|
|
- name: ENABLE_BIND_LOCAL_IP
|
|
|
|
value: "{{ kube_ovn_bind_local_ip_enabled }}"
|
2020-11-27 01:34:19 +08:00
|
|
|
volumeMounts:
|
2021-06-16 23:10:00 +08:00
|
|
|
- mountPath: /etc/localtime
|
|
|
|
name: localtime
|
2022-05-12 12:35:15 +08:00
|
|
|
- mountPath: /var/log/kube-ovn
|
|
|
|
name: kube-ovn-log
|
2020-11-27 01:34:19 +08:00
|
|
|
- mountPath: /var/run/tls
|
|
|
|
name: kube-ovn-tls
|
2019-07-31 11:10:20 +08:00
|
|
|
readinessProbe:
|
|
|
|
exec:
|
|
|
|
command:
|
2022-05-12 12:35:15 +08:00
|
|
|
- /kube-ovn/kube-ovn-controller-healthcheck
|
2019-07-31 11:10:20 +08:00
|
|
|
periodSeconds: 3
|
2020-11-27 01:34:19 +08:00
|
|
|
timeoutSeconds: 45
|
2019-07-31 11:10:20 +08:00
|
|
|
livenessProbe:
|
|
|
|
exec:
|
|
|
|
command:
|
2022-05-12 12:35:15 +08:00
|
|
|
- /kube-ovn/kube-ovn-controller-healthcheck
|
2020-05-07 02:05:09 +08:00
|
|
|
initialDelaySeconds: 300
|
2019-07-31 11:10:20 +08:00
|
|
|
periodSeconds: 7
|
|
|
|
failureThreshold: 5
|
2020-11-27 01:34:19 +08:00
|
|
|
timeoutSeconds: 45
|
2021-02-10 18:25:01 +08:00
|
|
|
resources:
|
|
|
|
requests:
|
|
|
|
cpu: {{ kube_ovn_controller_cpu_request }}
|
|
|
|
memory: {{ kube_ovn_controller_memory_request }}
|
|
|
|
limits:
|
|
|
|
cpu: {{ kube_ovn_controller_cpu_limit }}
|
|
|
|
memory: {{ kube_ovn_controller_memory_limit }}
|
2019-07-31 11:10:20 +08:00
|
|
|
nodeSelector:
|
2020-04-15 18:10:03 +08:00
|
|
|
kubernetes.io/os: "linux"
|
2020-11-27 01:34:19 +08:00
|
|
|
volumes:
|
2021-06-16 23:10:00 +08:00
|
|
|
- name: localtime
|
|
|
|
hostPath:
|
|
|
|
path: /etc/localtime
|
2022-05-12 12:35:15 +08:00
|
|
|
- name: kube-ovn-log
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/kube-ovn
|
2020-11-27 01:34:19 +08:00
|
|
|
- name: kube-ovn-tls
|
|
|
|
secret:
|
|
|
|
optional: true
|
|
|
|
secretName: kube-ovn-tls
|
2022-05-12 12:35:15 +08:00
|
|
|
|
2019-07-31 11:10:20 +08:00
|
|
|
---
|
|
|
|
kind: DaemonSet
|
|
|
|
apiVersion: apps/v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-cni
|
2020-05-07 02:05:09 +08:00
|
|
|
namespace: kube-system
|
2019-07-31 11:10:20 +08:00
|
|
|
annotations:
|
|
|
|
kubernetes.io/description: |
|
|
|
|
This daemon set launches the kube-ovn cni daemon.
|
|
|
|
spec:
|
|
|
|
selector:
|
|
|
|
matchLabels:
|
|
|
|
app: kube-ovn-cni
|
|
|
|
template:
|
|
|
|
metadata:
|
|
|
|
labels:
|
|
|
|
app: kube-ovn-cni
|
|
|
|
component: network
|
|
|
|
type: infra
|
|
|
|
spec:
|
|
|
|
tolerations:
|
2023-05-25 09:34:51 +08:00
|
|
|
- effect: NoSchedule
|
|
|
|
operator: Exists
|
|
|
|
- effect: NoExecute
|
|
|
|
operator: Exists
|
|
|
|
- key: CriticalAddonsOnly
|
|
|
|
operator: Exists
|
|
|
|
priorityClassName: system-node-critical
|
2019-07-31 11:10:20 +08:00
|
|
|
serviceAccountName: ovn
|
|
|
|
hostNetwork: true
|
|
|
|
hostPID: true
|
|
|
|
initContainers:
|
|
|
|
- name: install-cni
|
2020-04-15 18:10:03 +08:00
|
|
|
image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
|
2019-07-31 11:10:20 +08:00
|
|
|
imagePullPolicy: {{ k8s_image_pull_policy }}
|
|
|
|
command: ["/kube-ovn/install-cni.sh"]
|
2020-04-15 18:10:03 +08:00
|
|
|
securityContext:
|
|
|
|
runAsUser: 0
|
|
|
|
privileged: true
|
2019-07-31 11:10:20 +08:00
|
|
|
volumeMounts:
|
|
|
|
- mountPath: /opt/cni/bin
|
|
|
|
name: cni-bin
|
2023-05-25 09:34:51 +08:00
|
|
|
- mountPath: /usr/local/bin
|
|
|
|
name: local-bin
|
2019-07-31 11:10:20 +08:00
|
|
|
containers:
|
|
|
|
- name: cni-server
|
2020-04-15 18:10:03 +08:00
|
|
|
image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
|
2019-07-31 11:10:20 +08:00
|
|
|
imagePullPolicy: {{ k8s_image_pull_policy }}
|
|
|
|
command:
|
2021-02-10 18:25:01 +08:00
|
|
|
- bash
|
2019-07-31 11:10:20 +08:00
|
|
|
- /kube-ovn/start-cniserver.sh
|
|
|
|
args:
|
2022-05-12 12:35:15 +08:00
|
|
|
- --enable-mirror={{ kube_ovn_traffic_mirror | lower }}
|
|
|
|
- --encap-checksum={{ kube_ovn_encap_checksum | lower }}
|
2023-07-05 11:36:54 +08:00
|
|
|
- --service-cluster-ip-range={{ kube_service_addresses }}{% if enable_dual_stack_networks %},{{ kube_service_addresses_ipv6 }}{% endif %}{{ '' }}
|
|
|
|
- --iface={{ kube_ovn_iface | default('') }}
|
2022-12-09 07:58:11 +08:00
|
|
|
- --dpdk-tunnel-iface={{ kube_ovn_dpdk_tunnel_iface }}
|
2022-05-12 12:35:15 +08:00
|
|
|
- --network-type={{ kube_ovn_network_type }}
|
2023-07-05 11:36:54 +08:00
|
|
|
- --default-interface-name={{ kube_ovn_default_interface_name | default('') }}
|
2023-05-25 09:34:51 +08:00
|
|
|
{% if kube_ovn_mtu is defined %}
|
2022-05-12 12:35:15 +08:00
|
|
|
- --mtu={{ kube_ovn_mtu }}
|
|
|
|
{% endif %}
|
2022-12-09 07:58:11 +08:00
|
|
|
- --cni-conf-name={{ kube_ovn_cni_config_priority }}-kube-ovn.conflist
|
2022-05-12 12:35:15 +08:00
|
|
|
- --logtostderr=false
|
|
|
|
- --alsologtostderr=true
|
|
|
|
- --log_file=/var/log/kube-ovn/kube-ovn-cni.log
|
2022-12-09 07:58:11 +08:00
|
|
|
- --log_file_max_size=0
|
2019-07-31 11:10:20 +08:00
|
|
|
securityContext:
|
2020-08-01 15:34:04 +08:00
|
|
|
runAsUser: 0
|
|
|
|
privileged: true
|
2019-07-31 11:10:20 +08:00
|
|
|
env:
|
2023-05-25 09:34:51 +08:00
|
|
|
- name: ENABLE_SSL
|
2022-05-12 12:35:15 +08:00
|
|
|
value: "{{ kube_ovn_enable_ssl | lower }}"
|
2019-07-31 11:10:20 +08:00
|
|
|
- name: POD_IP
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: status.podIP
|
|
|
|
- name: KUBE_NODE_NAME
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: spec.nodeName
|
2022-12-09 07:58:11 +08:00
|
|
|
- name: MODULES
|
|
|
|
value: kube_ovn_fastpath.ko
|
|
|
|
- name: RPMS
|
|
|
|
value: openvswitch-kmod
|
2023-05-25 09:34:51 +08:00
|
|
|
- name: POD_IPS
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: status.podIPs
|
|
|
|
- name: ENABLE_BIND_LOCAL_IP
|
|
|
|
value: "{{ kube_ovn_bind_local_ip_enabled }}"
|
|
|
|
- name: DBUS_SYSTEM_BUS_ADDRESS
|
|
|
|
value: "unix:path=/host/var/run/dbus/system_bus_socket"
|
2019-07-31 11:10:20 +08:00
|
|
|
volumeMounts:
|
2022-12-09 07:58:11 +08:00
|
|
|
- name: host-modules
|
|
|
|
mountPath: /lib/modules
|
|
|
|
readOnly: true
|
|
|
|
- name: shared-dir
|
|
|
|
mountPath: /var/lib/kubelet/pods
|
2021-04-18 10:00:46 +08:00
|
|
|
- mountPath: /etc/openvswitch
|
|
|
|
name: systemid
|
2020-11-27 01:34:19 +08:00
|
|
|
- mountPath: /etc/cni/net.d
|
|
|
|
name: cni-conf
|
2019-07-31 11:10:20 +08:00
|
|
|
- mountPath: /run/openvswitch
|
|
|
|
name: host-run-ovs
|
2022-12-09 07:58:11 +08:00
|
|
|
mountPropagation: Bidirectional
|
2020-04-15 18:10:03 +08:00
|
|
|
- mountPath: /run/ovn
|
|
|
|
name: host-run-ovn
|
2023-05-25 09:34:51 +08:00
|
|
|
- mountPath: /host/var/run/dbus
|
|
|
|
name: host-dbus
|
|
|
|
mountPropagation: HostToContainer
|
2020-04-15 18:10:03 +08:00
|
|
|
- mountPath: /var/run/netns
|
|
|
|
name: host-ns
|
|
|
|
mountPropagation: HostToContainer
|
2022-05-12 12:35:15 +08:00
|
|
|
- mountPath: /var/log/kube-ovn
|
|
|
|
name: kube-ovn-log
|
2022-12-09 07:58:11 +08:00
|
|
|
- mountPath: /var/log/openvswitch
|
|
|
|
name: host-log-ovs
|
|
|
|
- mountPath: /var/log/ovn
|
|
|
|
name: host-log-ovn
|
2021-06-16 23:10:00 +08:00
|
|
|
- mountPath: /etc/localtime
|
|
|
|
name: localtime
|
2022-12-09 07:58:11 +08:00
|
|
|
- mountPath: /tmp
|
|
|
|
name: tmp
|
2019-07-31 11:10:20 +08:00
|
|
|
livenessProbe:
|
2022-12-09 07:58:11 +08:00
|
|
|
failureThreshold: 3
|
|
|
|
initialDelaySeconds: 30
|
|
|
|
periodSeconds: 7
|
|
|
|
successThreshold: 1
|
|
|
|
tcpSocket:
|
|
|
|
port: 10665
|
|
|
|
timeoutSeconds: 3
|
|
|
|
readinessProbe:
|
|
|
|
failureThreshold: 3
|
2019-07-31 11:10:20 +08:00
|
|
|
initialDelaySeconds: 30
|
|
|
|
periodSeconds: 7
|
2022-12-09 07:58:11 +08:00
|
|
|
successThreshold: 1
|
|
|
|
tcpSocket:
|
|
|
|
port: 10665
|
|
|
|
timeoutSeconds: 3
|
2021-10-15 03:11:09 +08:00
|
|
|
resources:
|
|
|
|
requests:
|
|
|
|
cpu: {{ kube_ovn_cni_server_cpu_request }}
|
|
|
|
memory: {{ kube_ovn_cni_server_memory_request }}
|
|
|
|
limits:
|
|
|
|
cpu: {{ kube_ovn_cni_server_cpu_limit }}
|
|
|
|
memory: {{ kube_ovn_cni_server_memory_limit }}
|
2019-07-31 11:10:20 +08:00
|
|
|
nodeSelector:
|
2020-04-15 18:10:03 +08:00
|
|
|
kubernetes.io/os: "linux"
|
2019-07-31 11:10:20 +08:00
|
|
|
volumes:
|
2022-12-09 07:58:11 +08:00
|
|
|
- name: host-modules
|
|
|
|
hostPath:
|
|
|
|
path: /lib/modules
|
|
|
|
- name: shared-dir
|
|
|
|
hostPath:
|
|
|
|
path: /var/lib/kubelet/pods
|
2021-04-18 10:00:46 +08:00
|
|
|
- name: systemid
|
|
|
|
hostPath:
|
|
|
|
path: /etc/origin/openvswitch
|
2019-07-31 11:10:20 +08:00
|
|
|
- name: host-run-ovs
|
|
|
|
hostPath:
|
|
|
|
path: /run/openvswitch
|
2020-04-15 18:10:03 +08:00
|
|
|
- name: host-run-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /run/ovn
|
2019-07-31 11:10:20 +08:00
|
|
|
- name: cni-conf
|
|
|
|
hostPath:
|
|
|
|
path: /etc/cni/net.d
|
|
|
|
- name: cni-bin
|
|
|
|
hostPath:
|
2020-04-15 18:10:03 +08:00
|
|
|
path: /opt/cni/bin
|
|
|
|
- name: host-ns
|
|
|
|
hostPath:
|
|
|
|
path: /var/run/netns
|
2023-05-25 09:34:51 +08:00
|
|
|
- name: host-dbus
|
|
|
|
hostPath:
|
|
|
|
path: /var/run/dbus
|
2022-12-09 07:58:11 +08:00
|
|
|
- name: host-log-ovs
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/openvswitch
|
2022-05-12 12:35:15 +08:00
|
|
|
- name: kube-ovn-log
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/kube-ovn
|
2022-12-09 07:58:11 +08:00
|
|
|
- name: host-log-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/ovn
|
2021-06-16 23:10:00 +08:00
|
|
|
- name: localtime
|
|
|
|
hostPath:
|
|
|
|
path: /etc/localtime
|
2022-12-09 07:58:11 +08:00
|
|
|
- name: tmp
|
|
|
|
hostPath:
|
|
|
|
path: /tmp
|
2023-05-25 09:34:51 +08:00
|
|
|
- name: local-bin
|
|
|
|
hostPath:
|
|
|
|
path: /usr/local/bin
|
2020-04-15 18:10:03 +08:00
|
|
|
---
|
|
|
|
kind: DaemonSet
|
|
|
|
apiVersion: apps/v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-pinger
|
2020-05-07 02:05:09 +08:00
|
|
|
namespace: kube-system
|
2020-04-15 18:10:03 +08:00
|
|
|
annotations:
|
|
|
|
kubernetes.io/description: |
|
|
|
|
This daemon set launches the openvswitch daemon.
|
|
|
|
spec:
|
|
|
|
selector:
|
|
|
|
matchLabels:
|
|
|
|
app: kube-ovn-pinger
|
|
|
|
updateStrategy:
|
|
|
|
type: RollingUpdate
|
|
|
|
template:
|
|
|
|
metadata:
|
|
|
|
labels:
|
|
|
|
app: kube-ovn-pinger
|
|
|
|
component: network
|
|
|
|
type: infra
|
|
|
|
spec:
|
2023-05-25 09:34:51 +08:00
|
|
|
priorityClassName: system-node-critical
|
2020-04-15 18:10:03 +08:00
|
|
|
serviceAccountName: ovn
|
|
|
|
hostPID: true
|
|
|
|
containers:
|
|
|
|
- name: pinger
|
|
|
|
image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
|
2022-05-12 12:35:15 +08:00
|
|
|
command:
|
|
|
|
- /kube-ovn/kube-ovn-pinger
|
|
|
|
args:
|
2023-07-05 11:36:54 +08:00
|
|
|
- --external-address={{ kube_ovn_external_address }}{% if enable_dual_stack_networks %},{{ kube_ovn_external_address_ipv6 }}{% endif %}{{ '' }}
|
2022-05-12 12:35:15 +08:00
|
|
|
- --external-dns={{ kube_ovn_external_dns }}
|
|
|
|
- --logtostderr=false
|
|
|
|
- --alsologtostderr=true
|
|
|
|
- --log_file=/var/log/kube-ovn/kube-ovn-pinger.log
|
2022-12-09 07:58:11 +08:00
|
|
|
- --log_file_max_size=0
|
2023-05-25 09:34:51 +08:00
|
|
|
imagePullPolicy: {{ k8s_image_pull_policy }}
|
2020-04-15 18:10:03 +08:00
|
|
|
securityContext:
|
|
|
|
runAsUser: 0
|
|
|
|
privileged: false
|
|
|
|
env:
|
2020-11-27 01:34:19 +08:00
|
|
|
- name: ENABLE_SSL
|
2022-05-12 12:35:15 +08:00
|
|
|
value: "{{ kube_ovn_enable_ssl | lower }}"
|
2020-04-15 18:10:03 +08:00
|
|
|
- name: POD_IP
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: status.podIP
|
|
|
|
- name: HOST_IP
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: status.hostIP
|
|
|
|
- name: POD_NAME
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: metadata.name
|
|
|
|
- name: NODE_NAME
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: spec.nodeName
|
|
|
|
volumeMounts:
|
|
|
|
- mountPath: /lib/modules
|
|
|
|
name: host-modules
|
|
|
|
readOnly: true
|
|
|
|
- mountPath: /run/openvswitch
|
|
|
|
name: host-run-ovs
|
|
|
|
- mountPath: /var/run/openvswitch
|
|
|
|
name: host-run-ovs
|
|
|
|
- mountPath: /var/run/ovn
|
|
|
|
name: host-run-ovn
|
|
|
|
- mountPath: /sys
|
|
|
|
name: host-sys
|
|
|
|
readOnly: true
|
|
|
|
- mountPath: /etc/openvswitch
|
|
|
|
name: host-config-openvswitch
|
|
|
|
- mountPath: /var/log/openvswitch
|
|
|
|
name: host-log-ovs
|
|
|
|
- mountPath: /var/log/ovn
|
|
|
|
name: host-log-ovn
|
2022-05-12 12:35:15 +08:00
|
|
|
- mountPath: /var/log/kube-ovn
|
|
|
|
name: kube-ovn-log
|
2021-06-16 23:10:00 +08:00
|
|
|
- mountPath: /etc/localtime
|
|
|
|
name: localtime
|
2020-11-27 01:34:19 +08:00
|
|
|
- mountPath: /var/run/tls
|
|
|
|
name: kube-ovn-tls
|
2020-04-15 18:10:03 +08:00
|
|
|
resources:
|
|
|
|
requests:
|
|
|
|
cpu: {{ kube_ovn_pinger_cpu_request }}
|
|
|
|
memory: {{ kube_ovn_pinger_memory_request }}
|
|
|
|
limits:
|
|
|
|
cpu: {{ kube_ovn_pinger_cpu_limit }}
|
|
|
|
memory: {{ kube_ovn_pinger_memory_limit }}
|
|
|
|
nodeSelector:
|
|
|
|
kubernetes.io/os: "linux"
|
|
|
|
volumes:
|
|
|
|
- name: host-modules
|
|
|
|
hostPath:
|
|
|
|
path: /lib/modules
|
|
|
|
- name: host-run-ovs
|
|
|
|
hostPath:
|
|
|
|
path: /run/openvswitch
|
|
|
|
- name: host-run-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /run/ovn
|
|
|
|
- name: host-sys
|
|
|
|
hostPath:
|
|
|
|
path: /sys
|
|
|
|
- name: host-config-openvswitch
|
|
|
|
hostPath:
|
|
|
|
path: /etc/origin/openvswitch
|
|
|
|
- name: host-log-ovs
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/openvswitch
|
2022-05-12 12:35:15 +08:00
|
|
|
- name: kube-ovn-log
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/kube-ovn
|
2020-04-15 18:10:03 +08:00
|
|
|
- name: host-log-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/ovn
|
2021-06-16 23:10:00 +08:00
|
|
|
- name: localtime
|
|
|
|
hostPath:
|
|
|
|
path: /etc/localtime
|
2020-11-27 01:34:19 +08:00
|
|
|
- name: kube-ovn-tls
|
|
|
|
secret:
|
|
|
|
optional: true
|
|
|
|
secretName: kube-ovn-tls
|
2020-04-15 18:10:03 +08:00
|
|
|
---
|
2021-06-16 23:10:00 +08:00
|
|
|
kind: Deployment
|
|
|
|
apiVersion: apps/v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-monitor
|
|
|
|
namespace: kube-system
|
|
|
|
annotations:
|
|
|
|
kubernetes.io/description: |
|
|
|
|
Metrics for OVN components: northd, nb and sb.
|
|
|
|
spec:
|
|
|
|
replicas: 1
|
|
|
|
strategy:
|
|
|
|
rollingUpdate:
|
2022-05-12 12:35:15 +08:00
|
|
|
maxSurge: 1
|
2021-06-16 23:10:00 +08:00
|
|
|
maxUnavailable: 1
|
|
|
|
type: RollingUpdate
|
|
|
|
selector:
|
|
|
|
matchLabels:
|
|
|
|
app: kube-ovn-monitor
|
|
|
|
template:
|
|
|
|
metadata:
|
|
|
|
labels:
|
|
|
|
app: kube-ovn-monitor
|
|
|
|
component: network
|
|
|
|
type: infra
|
|
|
|
spec:
|
|
|
|
tolerations:
|
2023-05-25 09:34:51 +08:00
|
|
|
- effect: NoSchedule
|
|
|
|
operator: Exists
|
|
|
|
- key: CriticalAddonsOnly
|
|
|
|
operator: Exists
|
2021-06-16 23:10:00 +08:00
|
|
|
affinity:
|
|
|
|
podAntiAffinity:
|
|
|
|
requiredDuringSchedulingIgnoredDuringExecution:
|
|
|
|
- labelSelector:
|
|
|
|
matchLabels:
|
|
|
|
app: kube-ovn-monitor
|
|
|
|
topologyKey: kubernetes.io/hostname
|
|
|
|
priorityClassName: system-cluster-critical
|
|
|
|
serviceAccountName: ovn
|
2022-05-12 12:35:15 +08:00
|
|
|
hostNetwork: true
|
2021-06-16 23:10:00 +08:00
|
|
|
containers:
|
|
|
|
- name: kube-ovn-monitor
|
|
|
|
image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
|
|
|
|
imagePullPolicy: {{ k8s_image_pull_policy }}
|
|
|
|
command: ["/kube-ovn/start-ovn-monitor.sh"]
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 0
|
|
|
|
privileged: false
|
|
|
|
env:
|
|
|
|
- name: ENABLE_SSL
|
2022-05-12 12:35:15 +08:00
|
|
|
value: "{{ kube_ovn_enable_ssl | lower }}"
|
2021-06-16 23:10:00 +08:00
|
|
|
- name: KUBE_NODE_NAME
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: spec.nodeName
|
2023-05-25 09:34:51 +08:00
|
|
|
- name: POD_IPS
|
|
|
|
valueFrom:
|
|
|
|
fieldRef:
|
|
|
|
fieldPath: status.podIPs
|
|
|
|
- name: ENABLE_BIND_LOCAL_IP
|
|
|
|
value: "{{ kube_ovn_bind_local_ip_enabled }}"
|
2021-06-16 23:10:00 +08:00
|
|
|
resources:
|
|
|
|
requests:
|
|
|
|
cpu: {{ kube_ovn_monitor_cpu_request }}
|
|
|
|
memory: {{ kube_ovn_monitor_memory_request }}
|
|
|
|
limits:
|
|
|
|
cpu: {{ kube_ovn_monitor_cpu_limit }}
|
|
|
|
memory: {{ kube_ovn_monitor_memory_limit }}
|
|
|
|
volumeMounts:
|
|
|
|
- mountPath: /var/run/openvswitch
|
|
|
|
name: host-run-ovs
|
|
|
|
- mountPath: /var/run/ovn
|
|
|
|
name: host-run-ovn
|
|
|
|
- mountPath: /etc/openvswitch
|
|
|
|
name: host-config-openvswitch
|
|
|
|
- mountPath: /etc/ovn
|
|
|
|
name: host-config-ovn
|
|
|
|
- mountPath: /var/log/openvswitch
|
|
|
|
name: host-log-ovs
|
|
|
|
- mountPath: /var/log/ovn
|
|
|
|
name: host-log-ovn
|
|
|
|
- mountPath: /etc/localtime
|
|
|
|
name: localtime
|
|
|
|
- mountPath: /var/run/tls
|
|
|
|
name: kube-ovn-tls
|
|
|
|
readinessProbe:
|
|
|
|
exec:
|
|
|
|
command:
|
|
|
|
- cat
|
2022-12-09 07:58:11 +08:00
|
|
|
- /var/run/ovn/ovn-controller.pid
|
2022-05-12 12:35:15 +08:00
|
|
|
periodSeconds: 10
|
2021-06-16 23:10:00 +08:00
|
|
|
timeoutSeconds: 45
|
|
|
|
livenessProbe:
|
|
|
|
exec:
|
|
|
|
command:
|
|
|
|
- cat
|
2022-12-09 07:58:11 +08:00
|
|
|
- /var/run/ovn/ovn-controller.pid
|
2021-06-16 23:10:00 +08:00
|
|
|
initialDelaySeconds: 30
|
|
|
|
periodSeconds: 10
|
|
|
|
failureThreshold: 5
|
|
|
|
timeoutSeconds: 45
|
|
|
|
nodeSelector:
|
|
|
|
kubernetes.io/os: "linux"
|
|
|
|
kube-ovn/role: "master"
|
|
|
|
volumes:
|
|
|
|
- name: host-run-ovs
|
|
|
|
hostPath:
|
|
|
|
path: /run/openvswitch
|
|
|
|
- name: host-run-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /run/ovn
|
|
|
|
- name: host-config-openvswitch
|
|
|
|
hostPath:
|
|
|
|
path: /etc/origin/openvswitch
|
|
|
|
- name: host-config-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /etc/origin/ovn
|
|
|
|
- name: host-log-ovs
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/openvswitch
|
|
|
|
- name: host-log-ovn
|
|
|
|
hostPath:
|
|
|
|
path: /var/log/ovn
|
|
|
|
- name: localtime
|
|
|
|
hostPath:
|
|
|
|
path: /etc/localtime
|
|
|
|
- name: kube-ovn-tls
|
|
|
|
secret:
|
|
|
|
optional: true
|
|
|
|
secretName: kube-ovn-tls
|
|
|
|
---
|
|
|
|
kind: Service
|
|
|
|
apiVersion: v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-monitor
|
|
|
|
namespace: kube-system
|
|
|
|
labels:
|
|
|
|
app: kube-ovn-monitor
|
|
|
|
spec:
|
|
|
|
ports:
|
|
|
|
- name: metrics
|
|
|
|
port: 10661
|
|
|
|
type: ClusterIP
|
2022-05-12 12:35:15 +08:00
|
|
|
{% if enable_dual_stack_networks %}
|
|
|
|
ipFamilyPolicy: PreferDualStack
|
|
|
|
{% endif %}
|
2021-06-16 23:10:00 +08:00
|
|
|
selector:
|
|
|
|
app: kube-ovn-monitor
|
|
|
|
sessionAffinity: None
|
|
|
|
---
|
2020-04-15 18:10:03 +08:00
|
|
|
kind: Service
|
|
|
|
apiVersion: v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-pinger
|
2020-05-07 02:05:09 +08:00
|
|
|
namespace: kube-system
|
2020-04-15 18:10:03 +08:00
|
|
|
labels:
|
|
|
|
app: kube-ovn-pinger
|
|
|
|
spec:
|
2022-05-12 12:35:15 +08:00
|
|
|
{% if enable_dual_stack_networks %}
|
|
|
|
ipFamilyPolicy: PreferDualStack
|
|
|
|
{% endif %}
|
2020-04-15 18:10:03 +08:00
|
|
|
selector:
|
|
|
|
app: kube-ovn-pinger
|
|
|
|
ports:
|
|
|
|
- port: 8080
|
|
|
|
name: metrics
|
|
|
|
---
|
|
|
|
kind: Service
|
|
|
|
apiVersion: v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-controller
|
2020-05-07 02:05:09 +08:00
|
|
|
namespace: kube-system
|
2020-04-15 18:10:03 +08:00
|
|
|
labels:
|
|
|
|
app: kube-ovn-controller
|
|
|
|
spec:
|
2022-05-12 12:35:15 +08:00
|
|
|
{% if enable_dual_stack_networks %}
|
|
|
|
ipFamilyPolicy: PreferDualStack
|
|
|
|
{% endif %}
|
2020-04-15 18:10:03 +08:00
|
|
|
selector:
|
|
|
|
app: kube-ovn-controller
|
|
|
|
ports:
|
|
|
|
- port: 10660
|
|
|
|
name: metrics
|
|
|
|
---
|
|
|
|
kind: Service
|
|
|
|
apiVersion: v1
|
|
|
|
metadata:
|
|
|
|
name: kube-ovn-cni
|
2020-05-07 02:05:09 +08:00
|
|
|
namespace: kube-system
|
2020-04-15 18:10:03 +08:00
|
|
|
labels:
|
|
|
|
app: kube-ovn-cni
|
|
|
|
spec:
|
2022-05-12 12:35:15 +08:00
|
|
|
{% if enable_dual_stack_networks %}
|
|
|
|
ipFamilyPolicy: PreferDualStack
|
|
|
|
{% endif %}
|
2020-04-15 18:10:03 +08:00
|
|
|
selector:
|
|
|
|
app: kube-ovn-cni
|
|
|
|
ports:
|
|
|
|
- port: 10665
|
2020-06-02 20:38:15 +08:00
|
|
|
name: metrics
|
2024-08-01 12:58:39 +08:00
|
|
|
{% if kube_ovn_ic_enable %}
|
2023-01-16 16:08:52 +08:00
|
|
|
---
|
|
|
|
kind: ConfigMap
|
|
|
|
apiVersion: v1
|
|
|
|
metadata:
|
|
|
|
name: ovn-ic-config
|
|
|
|
namespace: kube-system
|
|
|
|
data:
|
|
|
|
enable-ic: "{{ kube_ovn_ic_enable | lower }}"
|
|
|
|
az-name: "{{ kube_ovn_ic_zone }}"
|
|
|
|
ic-db-host: "{{ kube_ovn_ic_dbhost }}"
|
|
|
|
ic-nb-port: "6645"
|
|
|
|
ic-sb-port: "6646"
|
2023-07-05 11:36:54 +08:00
|
|
|
gw-nodes: "{{ kube_ovn_central_hosts | join(',') }}"
|
2023-01-16 16:08:52 +08:00
|
|
|
auto-route: "{{ kube_ovn_ic_autoroute | lower }}"
|
|
|
|
{% endif %}
|