From c3411b7f93be11a9f8d5e64dac75797f1b69f700 Mon Sep 17 00:00:00 2001 From: DeveloperDurp Date: Tue, 14 May 2024 04:51:07 -0500 Subject: [PATCH] update --- metallb/values.yaml | 173 +------------------------------------------- 1 file changed, 1 insertion(+), 172 deletions(-) diff --git a/metallb/values.yaml b/metallb/values.yaml index d04832b..69b6742 100644 --- a/metallb/values.yaml +++ b/metallb/values.yaml @@ -1,173 +1,64 @@ metallb: - # Default values for metallb. - # This is a YAML-formatted file. - # Declare variables to be passed into your templates. - imagePullSecrets: [] nameOverride: "" fullnameOverride: "" loadBalancerClass: "" - # To configure MetalLB, you must specify ONE of the following two - # options. - rbac: - # create specifies whether to install and use RBAC rules. create: true prometheus: - # scrape annotations specifies whether to add Prometheus metric - # auto-collection annotations to pods. See - # https://github.com/prometheus/prometheus/blob/release-2.1/documentation/examples/prometheus-kubernetes.yml - # for a corresponding Prometheus configuration. Alternatively, you - # may want to use the Prometheus Operator - # (https://github.com/coreos/prometheus-operator) for more powerful - # monitoring configuration. If you use the Prometheus operator, this - # can be left at false. scrapeAnnotations: false - - # port both controller and speaker will listen on for metrics metricsPort: 7472 - - # if set, enables rbac proxy on the controller and speaker to expose - # the metrics via tls. - # secureMetricsPort: 9120 - - # the name of the secret to be mounted in the speaker pod - # to expose the metrics securely. If not present, a self signed - # certificate to be used. speakerMetricsTLSSecret: "" - - # the name of the secret to be mounted in the controller pod - # to expose the metrics securely. If not present, a self signed - # certificate to be used. controllerMetricsTLSSecret: "" - - # prometheus doens't have the permission to scrape all namespaces so we give it permission to scrape metallb's one rbacPrometheus: true - - # the service account used by prometheus - # required when " .Values.prometheus.rbacPrometheus == true " and " .Values.prometheus.podMonitor.enabled=true or prometheus.serviceMonitor.enabled=true " serviceAccount: "" - - # the namespace where prometheus is deployed - # required when " .Values.prometheus.rbacPrometheus == true " and " .Values.prometheus.podMonitor.enabled=true or prometheus.serviceMonitor.enabled=true " namespace: "" - - # the image to be used for the kuberbacproxy container rbacProxy: repository: gcr.io/kubebuilder/kube-rbac-proxy tag: v0.12.0 pullPolicy: - - # Prometheus Operator PodMonitors podMonitor: - # enable support for Prometheus Operator enabled: false - - # optional additionnal labels for podMonitors additionalLabels: {} - - # optional annotations for podMonitors annotations: {} - - # Job label for scrape target jobLabel: "app.kubernetes.io/name" - - # Scrape interval. If not set, the Prometheus default scrape interval is used. interval: - - # metric relabel configs to apply to samples before ingestion. metricRelabelings: [] - # - action: keep - # regex: 'kube_(daemonset|deployment|pod|namespace|node|statefulset).+' - # sourceLabels: [__name__] - - # relabel configs to apply to samples before ingestion. relabelings: [] - # - sourceLabels: [__meta_kubernetes_pod_node_name] - # separator: ; - # regex: ^(.*)$ - # target_label: nodename - # replacement: $1 - # action: replace - - # Prometheus Operator ServiceMonitors. To be used as an alternative - # to podMonitor, supports secure metrics. serviceMonitor: - # enable support for Prometheus Operator enabled: false - speaker: - # optional additional labels for the speaker serviceMonitor additionalLabels: {} - # optional additional annotations for the speaker serviceMonitor annotations: {} - # optional tls configuration for the speaker serviceMonitor, in case - # secure metrics are enabled. tlsConfig: insecureSkipVerify: true - controller: - # optional additional labels for the controller serviceMonitor additionalLabels: {} - # optional additional annotations for the controller serviceMonitor annotations: {} - # optional tls configuration for the controller serviceMonitor, in case - # secure metrics are enabled. tlsConfig: insecureSkipVerify: true - - # Job label for scrape target jobLabel: "app.kubernetes.io/name" - - # Scrape interval. If not set, the Prometheus default scrape interval is used. interval: - - # metric relabel configs to apply to samples before ingestion. metricRelabelings: [] - # - action: keep - # regex: 'kube_(daemonset|deployment|pod|namespace|node|statefulset).+' - # sourceLabels: [__name__] - - # relabel configs to apply to samples before ingestion. relabelings: [] - # - sourceLabels: [__meta_kubernetes_pod_node_name] - # separator: ; - # regex: ^(.*)$ - # target_label: nodename - # replacement: $1 - # action: replace - - # Prometheus Operator alertmanager alerts prometheusRule: - # enable alertmanager alerts enabled: false - - # optional additionnal labels for prometheusRules additionalLabels: {} - - # optional annotations for prometheusRules annotations: {} - - # MetalLBStaleConfig staleConfig: enabled: true labels: severity: warning - - # MetalLBConfigNotLoaded configNotLoaded: enabled: true labels: severity: warning - - # MetalLBAddressPoolExhausted addressPoolExhausted: enabled: true labels: severity: alert - addressPoolUsage: enabled: true thresholds: @@ -180,8 +71,6 @@ metallb: - percent: 95 labels: severity: alert - - # MetalLBBGPSessionDown bgpSessionDown: enabled: true labels: @@ -189,45 +78,25 @@ metallb: extraAlerts: [] - # controller contains configuration specific to the MetalLB cluster - # controller. controller: enabled: true # -- Controller log level. Must be one of: `all`, `debug`, `info`, `warn`, `error` or `none` logLevel: info - # command: /controller - # webhookMode: enabled image: repository: quay.io/metallb/controller tag: pullPolicy: - ## @param controller.updateStrategy.type Metallb controller deployment strategy type. - ## ref: https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#strategy - ## e.g: - ## strategy: - ## type: RollingUpdate - ## rollingUpdate: - ## maxSurge: 25% - ## maxUnavailable: 25% - ## strategy: type: RollingUpdate serviceAccount: - # Specifies whether a ServiceAccount should be created create: true - # The name of the ServiceAccount to use. If not set and create is - # true, a name is generated using the fullname template name: "" annotations: {} securityContext: runAsNonRoot: true - # nobody runAsUser: 65534 fsGroup: 65534 resources: {} - # limits: - # cpu: 100m - # memory: 100Mi nodeSelector: {} tolerations: [] priorityClassName: "" @@ -254,12 +123,8 @@ metallb: extraContainers: [] - # speaker contains configuration specific to the MetalLB speaker - # daemonset. speaker: enabled: true - # command: /speaker - # -- Speaker log level. Must be one of: `all`, `debug`, `info`, `warn`, `error` or `none` logLevel: info tolerateMaster: true memberlist: @@ -269,42 +134,24 @@ metallb: mlSecretKeyPath: "/etc/ml_secret_key" excludeInterfaces: enabled: true - # ignore the exclude-from-external-loadbalancer label ignoreExcludeLB: false image: repository: quay.io/metallb/speaker tag: pullPolicy: - ## @param speaker.updateStrategy.type Speaker daemonset strategy type - ## ref: https://kubernetes.io/docs/tasks/manage-daemon/update-daemon-set/ - ## updateStrategy: - ## StrategyType - ## Can be set to RollingUpdate or OnDelete - ## type: RollingUpdate serviceAccount: - # Specifies whether a ServiceAccount should be created create: true - # The name of the ServiceAccount to use. If not set and create is - # true, a name is generated using the fullname template name: "" annotations: {} securityContext: {} - ## Defines a secret name for the controller to generate a memberlist encryption secret - ## By default secretName: {{ "metallb.fullname" }}-memberlist - ## - # secretName: resources: {} - # limits: - # cpu: 100m - # memory: 100Mi nodeSelector: {} tolerations: [] priorityClassName: "" affinity: {} - ## Selects which runtime class will be used by the pod. runtimeClassName: "" podAnnotations: {} labels: @@ -329,8 +176,6 @@ metallb: enabled: true failureThreshold: 30 periodSeconds: 5 - # frr contains configuration specific to the MetalLB FRR container, - # for speaker running alongside FRR. frr: enabled: true image: @@ -339,29 +184,13 @@ metallb: pullPolicy: metricsPort: 7473 resources: {} - - # if set, enables a rbac proxy sidecar container on the speaker to - # expose the frr metrics via tls. - # secureMetricsPort: 9121 - - reloader: resources: {} - frrMetrics: resources: {} - extraContainers: [] - crds: enabled: true validationFailurePolicy: Fail - - # frrk8s contains the configuration related to using an frrk8s instance - # (github.com/metallb/frr-k8s) as the backend for the BGP implementation. - # This allows configuring additional frr parameters in combination to those - # applied by MetalLB. frrk8s: - # if set, enables frrk8s as a backend. This is mutually exclusive to frr - # mode. - enabled: false + enabled: true