github-personal/Biohazard
1
0
Fork 0
mirror of https://github.com/outbackdingo/Biohazard.git synced 2026-01-27 10:18:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(cilium): full BPF routing

Browse Source
This commit is contained in:
JJGadgets
2024-12-09 12:55:47 +08:00
parent 05bf033011
commit 0a8b88aff4
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
kube/deploy/core/_networking/cilium/app/config/biohazard/helm-values.yaml
View File

@@ -56,7 +56,7 @@ bpf:
masquerade: true
hostLegacyRouting: true # so pods can use the normal Linux routing table from the host
tproxy: true # L7 netpols stuff
preallocateMaps: true # reduce latency, increased memory usage
# preallocateMaps: true # reduce latency, increased memory usage
policyMapMax: 40960 # 2.5x default, Increase Cilium map sizes due to amount of netpols and identities, when BPF map pressure hits 100 endpoint creation starts failing, max dynamic size ratio doesn't increase this
enableTCX: true # testing if it causes Cilium 1.16 BGP LB timeouts
l7Proxy: true # enables L7 netpols (including DNS) via proxy, e.g. Envoy