helm: Add hubble section #10358
Merged
helm: Add hubble section #10358
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Release note label not set, please set the appropriate release note. |
michi-covalent
force-pushed
the
pr/michi/helm
branch
from
7090338
to
1ee747a
Compare
aanm
added
the
release-note/minor
aanm
added
the
dont-merge/waiting-for-upstream
aanm
added
the
dont-merge/needs-rebase
right. these are env variables in hubble that will be available once #10238 is merged, although this pr is not really blocked on it since it doesn't add any hubble-related settings by default unless you specify them in helm command. |
michi-covalent
force-pushed
the
pr/michi/helm
branch
from
1ee747a
to
56abea7
Compare
michi-covalent
added
wip
and removed
dont-merge/waiting-for-upstream
The observe subcommand executes Hubble's observe command. We are still trying to figure out how to distribute Hubble's CLI. This is a short term workaround so that people can use it to interact with Hubble in the meantime. Ref #9925 Signed-off-by: Michi Mutsuzaki <michi@isovalent.com>
Add hubble section to values.yaml, and add new Hubble-related fields
to the configmap. The configmap has these new hubble-related fields:
- hubble-listen-addresses
List of addresses for Hubble to listen to. Disabled if empty.
- hubble-flow-buffer-size
Number of recent flows for Hubble to cache. Defaults to 4096.
- hubble-event-queue-size
Buffer size of the events channel. Defaults to 128.
- hubble-metrics-server
Address for the metric server to listen to. Disabled if empty.
- hubble-metrics
List of metrics to collect.
This PR also adds 2 environment variables if Hubble is enabled:
- HUBBLE_GROUP_NAME
Group for Hubble's unix domain sockets. Hardcoded to be `cilium`.
- HUBBLE_DEFAULT_SOCKET_PATH
Default Hubble gRPC endpoint for observe/status commands. This
is set to the first address in hubble-listen-addresses.
Here is a sample helm command to configure Hubble-related settings:
helm template cilium \
--set global.hubble.listenAddresses="{unix:///var/run/cilium/hubble.sock,unix:///var/run/cilium/hubble.sock2}" \
--set global.hubble.eventQueueSize=1234 \
--set global.hubble.flowBufferSize=5678 \
--set global.hubble.metricsServer=":7071" \
--set global.hubble.metrics="{dns:query;ignoreAAAA,drop,tcp,flow,port-distribution,icmp,http}"
Ref #9925
Signed-off-by: Michi Mutsuzaki <michi@isovalent.com>
michi-covalent
force-pushed
the
pr/michi/helm
branch
from
56abea7
to
fd9f75c
Compare
|
test-me-please |
aanm
approved these changes
Mar 5, 2020
gandro
reviewed
Mar 5, 2020
tgraf
approved these changes
Mar 5, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
2 commits:
cilium observesubcommand to get flows from hubble.This change is