yk8s.kubernetes.network

Note

To enable the calico network plugin, kubernetes.network.plugin needs to be set to calico.

yk8s.kubernetes.network.bgp_announce_service_ips

Whether to enable announcement of the service cluster IP range to external BGP peers. By default, only per-node pod networks are announced. .

Type::

boolean

Default::

false

Example::

true

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.bgp_gateway_as

Type::

signed integer

Default::

65000

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.bgp_worker_as

Type::

positive integer, meaning >0

Default::

64512

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.ipv4_nat_outgoing

Type::

boolean

Default::

true

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.ipv6_nat_outgoing

Type::

boolean

Default::

false

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.plugin

Currently only “calico” is supported.

Calico: High-performance, pure IP networking, policy engine. Calico provides layer 3 networking capabilities and associates a virtual router with each node. Allows the establishment of zone boundaries through BGP

Type::

string matching the pattern calico

Default::

"calico"

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.pod_subnet

This is the IPv4 subnet used by Kubernetes for Pods. Subnets will be delegated automatically to each node.

Type::

string matching the pattern ^((25[0-5]|(2[0-4]|1[0-9]|[1-9]|)[0-9]).){3}(25[0-5]|(2[0-4]|1[0-9]|[1-9]|)[0-9])/([0-9]|[12][0-9]|3[0-2])$

Default::

"10.244.0.0/16"

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.pod_subnet_v6

This is the IPv6 subnet used by Kubernetes for Pods. Subnets will be delegated automatically to each node.

Type::

non-empty string

Default::

"fdff:2::/56"

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.service_subnet

This is the IPv4 subnet used by Kubernetes for Services.

Type::

string matching the pattern ^((25[0-5]|(2[0-4]|1[0-9]|[1-9]|)[0-9]).){3}(25[0-5]|(2[0-4]|1[0-9]|[1-9]|)[0-9])/([0-9]|[12][0-9]|3[0-2])$

Default::

"10.96.0.0/12"

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix

yk8s.kubernetes.network.service_subnet_v6

This is the IPv6 subnet used by Kubernetes for Services.

The service subnet is bounded; for 128-bit addresses, the mask must be >= 108 The service cluster IP range is validated by the kube-apiserver to have at most 20 host bits https://github.com/kubernetes/kubernetes/blob/v1.9.2/cmd/kube-apiserver/app/options/validation.go#L29-L32 https://github.com/kubernetes/kubernetes/pull/12841

Type::

non-empty string

Default::

"fdff:3::/108"

Declared by https://gitlab.com/yaook/k8s/-/tree/devel/nix/yk8s/kubernetes/network.nix