kube-proxy Configuration (v1alpha1)

    KubeProxyConfiguration

    KubeProxyConntrackConfiguration

    Appears in:

    KubeProxyConntrackConfiguration contains conntrack settings for the Kubernetes proxy server.

    FieldDescription
    maxPerCore [Required]
    int32    		maxPerCore is the maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore min).
    min [Required]
    int32    		min is the minimum value of connect-tracking records to allocate, regardless of conntrackMaxPerCore (set maxPerCore=0 to leave the limit as-is).
    tcpEstablishedTimeout [Required]
    meta/v1.Duration    		tcpEstablishedTimeout is how long an idle TCP connection will be kept open (e.g. ‘2s’). Must be greater than 0 to set.
    tcpCloseWaitTimeout [Required]
    		tcpCloseWaitTimeout is how long an idle conntrack entry in CLOSE_WAIT state will remain in the conntrack table. (e.g. ‘60s’). Must be greater than 0 to set.

    Appears in:

    KubeProxyIPTablesConfiguration contains iptables-related configuration details for the Kubernetes proxy server.

    KubeProxyIPVSConfiguration

    Appears in:

    KubeProxyIPVSConfiguration contains ipvs-related configuration details for the Kubernetes proxy server.

    FieldDescription
    [Required]
    meta/v1.Duration    		syncPeriod is the period that ipvs rules are refreshed (e.g. ‘5s’, ‘1m’, ‘2h22m’). Must be greater than 0.
    minSyncPeriod [Required]
    		minSyncPeriod is the minimum period that ipvs rules are refreshed (e.g. ‘5s’, ‘1m’, ‘2h22m’).
    scheduler [Required]
    string    		ipvs scheduler
    excludeCIDRs [Required]
    []string    		excludeCIDRs is a list of CIDR’s which the ipvs proxier should not touch when cleaning up ipvs services.
    strictARP [Required]
    bool    		strict ARP configure arp_ignore and arp_announce to avoid answering ARP queries from kube-ipvs0 interface
    tcpTimeout [Required]
    meta/v1.Duration    		tcpTimeout is the timeout value used for idle IPVS TCP sessions. The default value is 0, which preserves the current timeout value on the system.
    tcpFinTimeout [Required]
    		tcpFinTimeout is the timeout value used for IPVS TCP sessions after receiving a FIN. The default value is 0, which preserves the current timeout value on the system.
    udpTimeout [Required]
    meta/v1.Duration    		udpTimeout is the timeout value used for IPVS UDP packets. The default value is 0, which preserves the current timeout value on the system.

    KubeProxyWinkernelConfiguration

    KubeProxyWinkernelConfiguration contains Windows/HNS settings for the Kubernetes proxy server.

    (Alias of string)

    Appears in:

    LocalMode represents modes to detect local traffic from the node

    ProxyMode

    (Alias of string)

    Appears in:

    Currently, three modes of proxy are available in Linux platform: ‘userspace’ (older, going to be EOL), ‘iptables’ (newer, faster), ‘ipvs’(newest, better in performance and scalability).

    Two modes of proxy are available in Windows platform: ‘userspace’(older, stable) and ‘kernelspace’ (newer, faster).

    In Linux platform, if proxy mode is blank, use the best-available proxy (currently iptables, but may change in the future). If the iptables proxy is selected, regardless of how, but the system’s kernel or iptables versions are insufficient, this always falls back to the userspace proxy. IPVS mode will be enabled when proxy mode is set to ‘ipvs’, and the fall back path is firstly iptables and then userspace.

    In Windows platform, if proxy mode is blank, use the best-available proxy (currently userspace, but may change in the future). If winkernel proxy is selected, regardless of how, but the Windows kernel can’t support this mode of proxy, this always falls back to the userspace proxy.

    ClientConnectionConfiguration

    Appears in:

    ClientConnectionConfiguration contains details for constructing a client.

    FieldDescription
    kubeconfig [Required]
    string    		kubeconfig is the path to a KubeConfig file.
    acceptContentTypes [Required]
    string    		acceptContentTypes defines the Accept header sent by clients when connecting to a server, overriding the default value of ‘application/json’. This field will control all connections to the server used by a particular client.
    contentType [Required]
    string    		contentType is the content type used when sending data to the server from this client.
    qps [Required]
    float32    		qps controls the number of queries per second allowed for this connection.
    burst [Required]
    		burst allows extra queries to accumulate when a client is exceeding its rate.