2017-08-24 17:09:52 +08:00
|
|
|
---
|
2019-04-02 03:32:34 +08:00
|
|
|
# Limits for coredns
|
2023-05-19 18:38:29 +08:00
|
|
|
|
|
|
|
# uncomment the line below to customize the DNS cpu limit value
|
|
|
|
# dns_cpu_limit: 300m
|
2022-07-13 15:03:37 +08:00
|
|
|
dns_memory_limit: 300Mi
|
2017-06-22 16:05:37 +08:00
|
|
|
dns_cpu_requests: 100m
|
|
|
|
dns_memory_requests: 70Mi
|
2023-07-05 11:36:54 +08:00
|
|
|
dns_min_replicas: "{{ [2, groups['k8s_cluster'] | length] | min }}"
|
2018-12-12 21:05:46 +08:00
|
|
|
dns_nodes_per_replica: 16
|
|
|
|
dns_cores_per_replica: 256
|
2023-07-05 11:36:54 +08:00
|
|
|
dns_prevent_single_point_failure: "{{ 'true' if dns_min_replicas | int > 1 else 'false' }}"
|
2020-09-25 17:33:11 +08:00
|
|
|
enable_coredns_reverse_dns_lookups: true
|
2019-03-27 02:09:17 +08:00
|
|
|
coredns_ordinal_suffix: ""
|
2019-11-27 21:49:21 +08:00
|
|
|
# dns_extra_tolerations: [{effect: NoSchedule, operator: "Exists"}]
|
2021-05-26 04:40:43 +08:00
|
|
|
coredns_deployment_nodeselector: "kubernetes.io/os: linux"
|
2022-02-01 16:48:18 +08:00
|
|
|
coredns_default_zone_cache_block: |
|
|
|
|
cache 30
|
2024-01-16 17:04:47 +08:00
|
|
|
|
|
|
|
coredns_pod_disruption_budget: false
|
|
|
|
# value for coredns pdb
|
|
|
|
coredns_pod_disruption_budget_max_unavailable: "30%"
|
|
|
|
|
2023-05-09 21:45:58 +08:00
|
|
|
# coredns_additional_configs adds any extra configuration to coredns
|
|
|
|
# coredns_additional_configs: |
|
|
|
|
# whoami
|
|
|
|
# local
|
2017-10-19 00:28:54 +08:00
|
|
|
|
2023-05-13 05:32:46 +08:00
|
|
|
# coredns_rewrite_block: |
|
|
|
|
# rewrite stop {
|
|
|
|
# name regex (.*)\.my\.domain {1}.svc.cluster.local
|
|
|
|
# answer name (.*)\.svc\.cluster\.local {1}.my.domain
|
|
|
|
# }
|
|
|
|
|
2023-10-10 20:32:41 +08:00
|
|
|
# coredns_additional_error_config: |
|
|
|
|
# consolidate 5m ".* i/o timeout$" warning
|
2023-05-13 05:32:46 +08:00
|
|
|
|
2024-01-24 13:31:22 +08:00
|
|
|
# Configure coredns and nodelocaldns to correctly answer DNS queries when you changed
|
|
|
|
# your 'dns_domain' and some workloads used it directly.
|
|
|
|
old_dns_domains: []
|
|
|
|
|
2022-11-08 22:44:25 +08:00
|
|
|
# dns_upstream_forward_extra_opts apply to coredns forward section as well as nodelocaldns upstream target forward section
|
|
|
|
# dns_upstream_forward_extra_opts:
|
|
|
|
# policy: sequential
|
|
|
|
|
2022-12-28 10:21:27 +08:00
|
|
|
# Apply extra options to coredns kubernetes plugin
|
|
|
|
# coredns_kubernetes_extra_opts:
|
|
|
|
# - 'fallthrough example.local'
|
|
|
|
|
2018-12-11 09:28:03 +08:00
|
|
|
# nodelocaldns
|
|
|
|
nodelocaldns_cpu_requests: 100m
|
2022-07-13 15:03:37 +08:00
|
|
|
nodelocaldns_memory_limit: 200Mi
|
2021-05-26 04:40:43 +08:00
|
|
|
nodelocaldns_memory_requests: 70Mi
|
|
|
|
nodelocaldns_ds_nodeselector: "kubernetes.io/os: linux"
|
2021-11-10 01:57:47 +08:00
|
|
|
nodelocaldns_prometheus_port: 9253
|
|
|
|
nodelocaldns_secondary_prometheus_port: 9255
|
2018-12-11 09:28:03 +08:00
|
|
|
|
2020-04-29 14:34:25 +08:00
|
|
|
# Limits for dns-autoscaler
|
|
|
|
dns_autoscaler_cpu_requests: 20m
|
|
|
|
dns_autoscaler_memory_requests: 10Mi
|
2021-05-26 04:40:43 +08:00
|
|
|
dns_autoscaler_deployment_nodeselector: "kubernetes.io/os: linux"
|
2022-06-20 16:36:06 +08:00
|
|
|
# dns_autoscaler_extra_tolerations: [{effect: NoSchedule, operator: "Exists"}]
|
2020-04-29 14:34:25 +08:00
|
|
|
|
2021-11-18 15:53:01 +08:00
|
|
|
# etcd metrics
|
|
|
|
# etcd_metrics_service_labels:
|
|
|
|
# k8s-app: etcd
|
|
|
|
# app.kubernetes.io/managed-by: Kubespray
|
|
|
|
# app: kube-prometheus-stack-kube-etcd
|
|
|
|
# release: prometheus-stack
|
|
|
|
|
2016-09-30 23:23:47 +08:00
|
|
|
# Netchecker
|
|
|
|
deploy_netchecker: false
|
|
|
|
netchecker_port: 31081
|
|
|
|
agent_report_interval: 15
|
|
|
|
netcheck_namespace: default
|
|
|
|
|
2016-12-23 22:44:44 +08:00
|
|
|
# Limits for netchecker apps
|
|
|
|
netchecker_agent_cpu_limit: 30m
|
|
|
|
netchecker_agent_memory_limit: 100M
|
|
|
|
netchecker_agent_cpu_requests: 15m
|
|
|
|
netchecker_agent_memory_requests: 64M
|
|
|
|
netchecker_server_cpu_limit: 100m
|
|
|
|
netchecker_server_memory_limit: 256M
|
|
|
|
netchecker_server_cpu_requests: 50m
|
2017-02-28 00:53:43 +08:00
|
|
|
netchecker_server_memory_requests: 64M
|
2021-10-20 01:17:04 +08:00
|
|
|
netchecker_etcd_cpu_limit: 200m
|
|
|
|
netchecker_etcd_memory_limit: 256M
|
|
|
|
netchecker_etcd_cpu_requests: 100m
|
|
|
|
netchecker_etcd_memory_requests: 128M
|
2016-12-23 22:44:44 +08:00
|
|
|
|
2023-12-18 21:13:43 +08:00
|
|
|
# SecurityContext (user/group)
|
2018-08-23 00:16:13 +08:00
|
|
|
netchecker_agent_user: 1000
|
|
|
|
netchecker_server_user: 1000
|
|
|
|
netchecker_agent_group: 1000
|
|
|
|
netchecker_server_group: 1000
|
|
|
|
|
2024-07-29 14:57:56 +08:00
|
|
|
# Log levels
|
|
|
|
netchecker_agent_log_level: 5
|
|
|
|
netchecker_server_log_level: 5
|
|
|
|
netchecker_etcd_log_level: info
|
|
|
|
|
2017-09-10 04:38:03 +08:00
|
|
|
# Dashboard
|
2019-03-14 04:58:25 +08:00
|
|
|
dashboard_replicas: 1
|
2017-09-10 04:38:03 +08:00
|
|
|
|
2020-10-11 23:06:47 +08:00
|
|
|
# Namespace for dashboard
|
2020-04-25 18:55:28 +08:00
|
|
|
dashboard_namespace: kube-system
|
|
|
|
|
2017-09-10 04:38:03 +08:00
|
|
|
# Limits for dashboard
|
|
|
|
dashboard_cpu_limit: 100m
|
|
|
|
dashboard_memory_limit: 256M
|
|
|
|
dashboard_cpu_requests: 50m
|
|
|
|
dashboard_memory_requests: 64M
|
|
|
|
|
2017-12-18 23:07:19 +08:00
|
|
|
# Set dashboard_use_custom_certs to true if overriding dashboard_certs_secret_name with a secret that
|
|
|
|
# contains dashboard_tls_key_file and dashboard_tls_cert_file instead of using the initContainer provisioned certs
|
|
|
|
dashboard_use_custom_certs: false
|
|
|
|
dashboard_certs_secret_name: kubernetes-dashboard-certs
|
|
|
|
dashboard_tls_key_file: dashboard.key
|
|
|
|
dashboard_tls_cert_file: dashboard.crt
|
2019-02-26 11:34:47 +08:00
|
|
|
dashboard_master_toleration: true
|
2017-12-18 23:07:19 +08:00
|
|
|
|
2018-07-13 21:26:18 +08:00
|
|
|
# Override dashboard default settings
|
2018-07-19 18:15:47 +08:00
|
|
|
dashboard_token_ttl: 900
|
2019-02-20 15:24:29 +08:00
|
|
|
dashboard_skip_login: false
|
2022-06-20 16:36:06 +08:00
|
|
|
|
|
|
|
# Policy Controllers
|
|
|
|
# policy_controller_extra_tolerations: [{effect: NoSchedule, operator: "Exists"}]
|