diff --git a/charts/eks/templates/coredns.yaml b/charts/eks/templates/coredns.yaml index 74cb07eeb3..e0dc944a1b 100644 --- a/charts/eks/templates/coredns.yaml +++ b/charts/eks/templates/coredns.yaml @@ -131,16 +131,6 @@ data: - name: custom-config-volume mountPath: /etc/coredns/custom readOnly: true - ports: - - containerPort: 1053 - name: dns - protocol: UDP - - containerPort: 1053 - name: dns-tcp - protocol: TCP - - containerPort: 9153 - name: metrics - protocol: TCP securityContext: runAsNonRoot: true runAsUser: {{`{{.RUN_AS_USER}}`}} diff --git a/charts/k0s/templates/coredns.yaml b/charts/k0s/templates/coredns.yaml index ec7f4cd3bf..5e4f788268 100644 --- a/charts/k0s/templates/coredns.yaml +++ b/charts/k0s/templates/coredns.yaml @@ -135,16 +135,6 @@ data: - name: custom-config-volume mountPath: /etc/coredns/custom readOnly: true - ports: - - containerPort: 1053 - name: dns - protocol: UDP - - containerPort: 1053 - name: dns-tcp - protocol: TCP - - containerPort: 9153 - name: metrics - protocol: TCP securityContext: runAsNonRoot: true runAsUser: {{`{{.RUN_AS_USER}}`}} diff --git a/charts/k0s/templates/secret.yaml b/charts/k0s/templates/secret.yaml index 526f241672..53a54c2321 100644 --- a/charts/k0s/templates/secret.yaml +++ b/charts/k0s/templates/secret.yaml @@ -11,7 +11,7 @@ metadata: heritage: "{{ .Release.Service }}" {{- if .Values.globalAnnotations}} annotations: -{{ toYaml .Values.globalAnnotations | indent 4 }} +{{ toYaml .Values.globalAnnotations | indent 4 }} {{- end }} type: Opaque stringData: @@ -31,13 +31,14 @@ stringData: port: 6443 k0sApiPort: 9443 extraArgs: + bind-address: 127.0.0.1 enable-admission-plugins: NodeRestriction endpoint-reconciler-type: none network: {{- if .Values.serviceCIDR }} serviceCIDR: {{ .Values.serviceCIDR }} {{- else }} - # Will be replaced automatically by the syncer container on first + # Will be replaced automatically by the syncer container on first serviceCIDR: CIDR_PLACEHOLDER {{- end }} provider: custom @@ -54,4 +55,4 @@ stringData: node-monitor-period: 1h {{- end }} {{- end }} - {{- end }} \ No newline at end of file + {{- end }} diff --git a/charts/k3s/templates/coredns.yaml b/charts/k3s/templates/coredns.yaml index ec7f4cd3bf..5e4f788268 100644 --- a/charts/k3s/templates/coredns.yaml +++ b/charts/k3s/templates/coredns.yaml @@ -135,16 +135,6 @@ data: - name: custom-config-volume mountPath: /etc/coredns/custom readOnly: true - ports: - - containerPort: 1053 - name: dns - protocol: UDP - - containerPort: 1053 - name: dns-tcp - protocol: TCP - - containerPort: 9153 - name: metrics - protocol: TCP securityContext: runAsNonRoot: true runAsUser: {{`{{.RUN_AS_USER}}`}} diff --git a/charts/k3s/values.yaml b/charts/k3s/values.yaml index 8b85a7a0f4..76b198043c 100644 --- a/charts/k3s/values.yaml +++ b/charts/k3s/values.yaml @@ -174,6 +174,7 @@ vcluster: - --disable-agent - --disable-cloud-controller - --flannel-backend=none + - --kube-apiserver-arg=bind-address=127.0.0.1 extraArgs: [] volumeMounts: - mountPath: /data diff --git a/charts/k8s/templates/coredns.yaml b/charts/k8s/templates/coredns.yaml index ec7f4cd3bf..5e4f788268 100644 --- a/charts/k8s/templates/coredns.yaml +++ b/charts/k8s/templates/coredns.yaml @@ -135,16 +135,6 @@ data: - name: custom-config-volume mountPath: /etc/coredns/custom readOnly: true - ports: - - containerPort: 1053 - name: dns - protocol: UDP - - containerPort: 1053 - name: dns-tcp - protocol: TCP - - containerPort: 9153 - name: metrics - protocol: TCP securityContext: runAsNonRoot: true runAsUser: {{`{{.RUN_AS_USER}}`}}