New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
pkg/aws/eni: new subnet-ids parameter #16119
Conversation
a0bd785
to
988de67
Compare
988de67
to
548f74e
Compare
test-me-please |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Overall LGTM but can you update the docs at https://github.com/cilium/cilium/blob/master/Documentation/concepts/networking/ipam/eni.rst#L349 to reflect the new behavior as well?
548f74e
to
c303df9
Compare
Oh indeed @ungureanuvladvictor my bad, I updated the docs 👍 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good, thanks! A few comments below.
This change permits the configuration of specific `SubnetIDs []string` as part of the pkg/aws/eni/types.ENISpec. Essentially, it follows the same principle as what was already in place with SecurityGroups / SecurityGroupTags. If `SubnetIDs` is set, it will be considered instead of `SubnetTags`. Here is an example configuration: ```json { "cniVersion": "0.3.1", "name": "cilium", "type": "cilium-cni", "enable-debug": false, "eni": { "first-interface-index": 0, "pre-allocate": 10, "subnet-ids": ["subnet-0661a8d7e35b56e00","subnet-0661a8d7e35b56e01"], "subnet-tags": {}, "security-group-tags": {}, "security-groups": [] } } ``` This will result in the operator-aws looking up for subnets matching the configured list in an exhaustive fashion. Signed-off-by: Maxime VISONNEAU <maxime.visonneau@gmail.com>
c303df9
to
67340fb
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good to me, thank you!
test-me-please |
ci-aks |
test-1.20-4.19 |
test-1.21-4.9 |
test-runtime |
This change permits the configuration of specific
SubnetIDs []string
as part of the pkg/aws/eni/types.ENISpec. Essentially, it follows
the same principle as what was already in place with SecurityGroups /
SecurityGroupTags.
If
SubnetIDs
is set, it will be considered instead ofSubnetTags
. Hereis an example configuration:
This will result in the
operator-aws
looking up for subnets matching theconfigured list in an exhaustive fashion.