Add table of details about static Pods
* Also remote outdated mentions of rkt-fly
This commit is contained in:
parent
7f445b0dba
commit
83236eab57
|
@ -9,8 +9,8 @@ Typhoon supports [Fedora CoreOS](https://getfedora.org/coreos/) and [Flatcar Lin
|
||||||
|
|
||||||
Together, they diversify Typhoon to support a range of container technologies.
|
Together, they diversify Typhoon to support a range of container technologies.
|
||||||
|
|
||||||
* Fedora CoreOS: rpm-ostree, podman, moby
|
* Fedora CoreOS: rpm-ostree, podman, containerd
|
||||||
* Flatcar Linux: Gentoo core, rkt-fly, docker
|
* Flatcar Linux: Gentoo core, docker, containerd
|
||||||
|
|
||||||
## Host Properties
|
## Host Properties
|
||||||
|
|
||||||
|
|
|
@ -269,10 +269,10 @@ To watch the bootstrap process in detail, SSH to the first controller and journa
|
||||||
```
|
```
|
||||||
$ ssh core@node1.example.com
|
$ ssh core@node1.example.com
|
||||||
$ journalctl -f -u bootstrap
|
$ journalctl -f -u bootstrap
|
||||||
rkt[1750]: The connection to the server cluster.example.com:6443 was refused - did you specify the right host or port?
|
The connection to the server cluster.example.com:6443 was refused - did you specify the right host or port?
|
||||||
rkt[1750]: Waiting for static pod control plane
|
Waiting for static pod control plane
|
||||||
...
|
...
|
||||||
rkt[1750]: serviceaccount/calico-node unchanged
|
serviceaccount/calico-node unchanged
|
||||||
systemd[1]: Started Kubernetes control plane.
|
systemd[1]: Started Kubernetes control plane.
|
||||||
```
|
```
|
||||||
|
|
||||||
|
|
|
@ -81,6 +81,31 @@ Typhoon publishes Terraform providers to the Terraform Registry, GPG signed by 0
|
||||||
| ct | [github](https://github.com/poseidon/terraform-provider-ct) | [poseidon/ct](https://registry.terraform.io/providers/poseidon/ct/latest) |
|
| ct | [github](https://github.com/poseidon/terraform-provider-ct) | [poseidon/ct](https://registry.terraform.io/providers/poseidon/ct/latest) |
|
||||||
| matchbox | [github](https://github.com/poseidon/terraform-provider-matchbox) | [poseidon/matchbox](https://registry.terraform.io/providers/poseidon/matchbox/latest) |
|
| matchbox | [github](https://github.com/poseidon/terraform-provider-matchbox) | [poseidon/matchbox](https://registry.terraform.io/providers/poseidon/matchbox/latest) |
|
||||||
|
|
||||||
|
## kube-system
|
||||||
|
|
||||||
|
| Name | user | hostNet | privileged |
|
||||||
|
|----------------|--------|---------|------------|
|
||||||
|
| kube-apiserver | nobody | true | false |
|
||||||
|
| kube-controller-manager | nobody | true | false |
|
||||||
|
| kube-scheduler | nobody | true | false |
|
||||||
|
| coredns | NA | false | false |
|
||||||
|
| kube-proxy | root | true | true |
|
||||||
|
| cilium | root | true | true |
|
||||||
|
| calico | root | true | true |
|
||||||
|
| flannel | root | true | true |
|
||||||
|
|
||||||
|
|
||||||
|
| Name | priorityClassName |
|
||||||
|
|-------------------------|-------------------|
|
||||||
|
| kube-apiserver | system-cluster-critical |
|
||||||
|
| kube-controller-manager | system-cluster-critical |
|
||||||
|
| kube-scheduler | system-cluster-critical |
|
||||||
|
| coredns | system-cluster-critical |
|
||||||
|
| kube-proxy | system-node-critical |
|
||||||
|
| cilium | system-node-critical |
|
||||||
|
| calico | system-node-critical |
|
||||||
|
| flannel | system-node-critical |
|
||||||
|
|
||||||
## Disclosures
|
## Disclosures
|
||||||
|
|
||||||
If you find security issues, please email `security@psdn.io`. If the issue lies in upstream Kubernetes, please inform upstream Kubernetes as well.
|
If you find security issues, please email `security@psdn.io`. If the issue lies in upstream Kubernetes, please inform upstream Kubernetes as well.
|
||||||
|
|
Loading…
Reference in New Issue