fix(cilium): k3s has an API server proxy at `127.0.0.1:6444`

ricsanfre / pi-cluster

Pi Kubernetes Cluster. Homelab kubernetes cluster automated with Ansible and FluxCD

https://picluster.ricsanfre.com

MIT License

414 stars 69 forks source link

fix(cilium): k3s has an API server proxy at `127.0.0.1:6444` #512

Closed onedr0p closed 1 month ago

onedr0p commented 1 month ago

There is no need to use an external LB or something like kube-vip for this Cilium config, k3s has an API server proxy listening in 127.0.0.1:6444 on all nodes in the cluster. I ran with this setup in the https://github.com/onedr0p/cluster-template back when using k3s so just sharing some knowledge to here.

There is no special k3s setting to turn this on, it's there by default.

onedr0p commented 1 month ago

Additionally this means that k8sClientRateLimit could be removed from the cilium helm values.

ricsanfre commented 1 month ago

Thanks for sharing and for your contribution.