[EKS] [request]: Support customizing conntrack section on kube-proxy DaemonSet via aws_eks_addon(configuration_values)

[elopsod]

Tell us about your request We want to be able to add customized conntrack block into the configuration_values of the kube-proxy addon.

Which service(s) is this request for? EKS, kube-proxy addon

Tell us about the problem you're trying to solve. What are you trying to do, and why is it hard? With a large amount of traffic on the cluster, it is necessary to fine-tune the kernel parameters, without the ability to edit conntrack in the add-on via terraform, this becomes quite difficult, since not all parameters can be overridden using userdata

Are you currently working around this issue? N/A

Additional context N/A

Attachments N/A

[applike-ss]

We're facing the same issue. Specifically since updating to the latest 1.29 addon versions we are seeing conntrack alerts from prometheus' side (query for (node_nf_conntrack_entries{job="node-exporter"} / node_nf_conntrack_entries_limit) > 0.75).

[elkh510]

Hi We're to facing the same issue.