github-personal/Biohazard
1
0
Fork 0
mirror of https://github.com/outbackdingo/Biohazard.git synced 2026-01-27 10:18:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat(cilium): disable masquerade

Browse Source
This commit is contained in:
JJGadgets
2024-12-09 17:50:50 +08:00
parent 91e1e3acbf
commit 1239b98e35
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
kube/deploy/core/_networking/cilium/app/config/biohazard/helm-values.yaml
View File

@@ -38,7 +38,7 @@ kubeProxyReplacementHealthzBindAddr: "0.0.0.0:10256"
enableIPv4Masquerade: false # BGP advertise PodCIDR so only FortiGate does NAT
directRoutingSkipUnreachable: true # use local L2 within cluster while outside cluster uses BGP
bpf:
masquerade: true
# masquerade: true
# hostLegacyRouting: true # so pods can use the normal Linux routing table from the host
tproxy: true # L7 netpols stuff
preallocateMaps: true # reduce latency, increased memory usage