Cilium on Rickyhttps://linzeyan.github.io/categories/cilium/Recent content in Cilium on RickyHugo -- gohugo.ioenTue, 21 Dec 2021 13:04:38 +0800Understanding Cilium Series (1): Introduction to Ciliumhttps://linzeyan.github.io/posts/2021/20211221-understanding-cilium/Tue, 21 Dec 2021 13:04:38 +0800https://linzeyan.github.io/posts/2021/20211221-understanding-cilium/<ul> <li><a href="https://www.gushiciku.cn/pl/geTr/zh-hk" target="_blank" rel="noopener">Understanding Cilium Series (1): Introduction to Cilium</a></li> </ul> <h4 id="current-status-of-k8s-service-load-balancing-implementations">Current status of k8s Service load balancing implementations</h4> <p>Before Cilium, Services were implemented by kube-proxy in three modes: userspace, iptables, and ipvs.</p> <h5 id="userspace">Userspace</h5> <p>In this mode, kube-proxy acts as a reverse proxy and listens on random ports. It redirects traffic to the proxy port via iptables rules, and kube-proxy forwards the traffic to backend pods. Service requests go from user space into kernel iptables and then back to user space, which is costly and has poor performance.</p>Kubernetes Without kube-proxyhttps://linzeyan.github.io/posts/2021/20211220-kubeproxy-free/Mon, 20 Dec 2021 17:57:13 +0800https://linzeyan.github.io/posts/2021/20211220-kubeproxy-free/<ul> <li><a href="https://docs.cilium.io/en/v1.9/gettingstarted/kubeproxy-free/" target="_blank" rel="noopener">Kubernetes Without kube-proxy</a></li> </ul> <h4 id="quick-start">Quick-Start</h4> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>kubeadm init --skip-phases<span style="color:#f92672">=</span>addon/kube-proxy </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span><span style="color:#75715e"># Setup Helm repository</span> </span></span><span style="display:flex;"><span>helm repo add cilium https://helm.cilium.io/ </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>helm install cilium cilium/cilium --version 1.9.18 <span style="color:#ae81ff">\ </span></span></span><span style="display:flex;"><span><span style="color:#ae81ff"></span> --namespace kube-system <span style="color:#ae81ff">\ </span></span></span><span style="display:flex;"><span><span style="color:#ae81ff"></span> --set kubeProxyReplacement<span style="color:#f92672">=</span>strict <span style="color:#ae81ff">\ </span></span></span><span style="display:flex;"><span><span style="color:#ae81ff"></span> --set k8sServiceHost<span style="color:#f92672">=</span>REPLACE_WITH_API_SERVER_IP <span style="color:#ae81ff">\ </span></span></span><span style="display:flex;"><span><span style="color:#ae81ff"></span> --set k8sServicePort<span style="color:#f92672">=</span>REPLACE_WITH_API_SERVER_PORT </span></span></code></pre></div>