ungleich-public/ungleich-k8s
6
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Add examples for host network

Browse source
This commit is contained in:
Nico Schottelius 2023-02-11 20:16:17 +01:00
parent 644a356212
commit 60b7952549
3 changed files with 53 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
generic/alpine-sleep-hostnetwork-netperm.yaml Normal file
View file

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: alpine-sleep-hostnetwork-netperm
spec:
hostNetwork: true
containers:
- name: alpine
image: alpine:3.15
args:
- sleep
- "1000000"
securityContext:
capabilities:
# NET_ADMIN for wg
# NET_RAW for iptables
add: ["NET_ADMIN", "NET_RAW" ]

12
generic/alpine-sleep-hostnetwork.yaml Normal file
View file

@ -0,0 +1,12 @@
apiVersion: v1
kind: Pod
metadata:
name: alpine-sleep-hostnetwork
spec:
hostNetwork: true
containers:
- name: alpine
image: alpine:3.15
args:
- sleep
- "1000000"

24
generic/alpine-sleep-netperm.yaml Normal file
View file

@ -0,0 +1,24 @@
apiVersion: v1
kind: Pod
metadata:
name: alpine-sleep-netperm
spec:
securityContext:
sysctls:
- name: net.ipv6.conf.all.forwarding
value: "1"
containers:
- name: alpine
image: alpine:3.15
args:
- sleep
- "1000000"
securityContext:
capabilities:
# NET_ADMIN for wg
# NET_RAW for iptables
add: ["NET_ADMIN", "NET_RAW" ]
# [12:31] nb3:generic% kubectl get pods -n testnico -w
# NAME READY STATUS RESTARTS AGE
# alpine-sleep-netperm 0/1 SysctlForbidden 0 49s