Use Cilium kube-proxy replacement when Cilium CNI is used

* When using the Cilium component, disable bootstrapping the kube-proxy DaemonSet. Instead, configure Cilium to provide its kube-proxy replacement with BPF * Update the self-managed Cilium component to use kube-proxy replacement as well
2025-07-23 09:31:35 +02:00 · 2024-08-23 07:18:42 -07:00
parent 808b8a948f
commit 3412060c3c
13 changed files with 23 additions and 22 deletions
--- a/aws/flatcar-linux/kubernetes/bootstrap.tf
+++ b/aws/flatcar-linux/kubernetes/bootstrap.tf
@ -1,6 +1,6 @@
 # Kubernetes assets (kubeconfig, manifests)
 module "bootstrap" {
-  source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0b78c87997ff96547773e878458ec95485c8b91f"
+  source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=1ddecb1cef65c9715ed66b6c335634bc51f59613"

  cluster_name          = var.cluster_name
  api_servers           = [format("%s.%s", var.cluster_name, var.dns_zone)]
--- a/aws/flatcar-linux/kubernetes/workers/workers.tf
+++ b/aws/flatcar-linux/kubernetes/workers/workers.tf
@ -58,9 +58,6 @@ resource "aws_launch_template" "worker" {
  name_prefix   = "${var.name}-worker"
  image_id      = local.ami_id
  instance_type = var.instance_type
-  monitoring {
-    enabled = false
-  }

  # storage
  ebs_optimized = true
@ -88,8 +85,14 @@ resource "aws_launch_template" "worker" {
  metadata_options {
    http_tokens = "optional"
  }
+  monitoring {
+    enabled = false
+  }

-  # spot
+  # cost
+  credit_specification {
+    cpu_credits = var.cpu_credits
+  }
  dynamic "instance_market_options" {
    for_each = var.spot_price > 0 ? [1] : []
    content {
@ -100,10 +103,6 @@ resource "aws_launch_template" "worker" {
    }
  }

-  credit_specification {
-    cpu_credits = var.cpu_credits
-  }
-
  lifecycle {
    // Override the default destroy and replace update behavior
    create_before_destroy = true