76 lines
1.5 KiB
Markdown
76 lines
1.5 KiB
Markdown
# Cilium Component
|
|
|
|
## Overview
|
|
|
|
Cilium is our CNI (Container Network Interface) solution that provides networking, security, and observability for Kubernetes using eBPF.
|
|
|
|
## Configuration
|
|
|
|
The following configurations are available:
|
|
|
|
- Version: 1.18.3
|
|
- IPAM Mode: kubernetes
|
|
- Hubble UI: Enabled
|
|
- L2 Announcements: Enabled
|
|
- kube-proxy Replacement: Enabled
|
|
|
|
## Features
|
|
|
|
- **Hubble UI**: Web interface for network observability
|
|
- **L2 Announcements**: For LoadBalancer service type support
|
|
- **Enhanced Security**: Using eBPF for network policy enforcement
|
|
- **Kube-proxy Replacement**: Native handling of service load-balancing
|
|
|
|
## Post-Install
|
|
|
|
After installation:
|
|
|
|
1. Cilium core components will be installed
|
|
2. Hubble UI and Relay will be deployed
|
|
3. LoadBalancer IP pools will be configured
|
|
4. Initial access to Hubble UI is available through port-forward:
|
|
|
|
```bash
|
|
kubectl port-forward -n kube-system svc/hubble-ui 12000:80
|
|
```
|
|
|
|
Then visit: `http://localhost:12000`
|
|
|
|
## Dependencies
|
|
|
|
- Kubernetes cluster
|
|
- Helm v3+
|
|
- Linux kernel >= 4.9.17
|
|
|
|
## Troubleshooting
|
|
|
|
1. Check if Cilium pods are running:
|
|
|
|
```bash
|
|
kubectl get pods -n kube-system -l k8s-app=cilium
|
|
```
|
|
|
|
2. Check Cilium status (requires Cilium CLI):
|
|
|
|
```bash
|
|
cilium status
|
|
```
|
|
|
|
3. Check Hubble UI deployment:
|
|
|
|
```bash
|
|
kubectl get deployment -n kube-system hubble-ui
|
|
```
|
|
|
|
4. View Cilium logs:
|
|
|
|
```bash
|
|
kubectl logs -n kube-system -l k8s-app=cilium
|
|
```
|
|
|
|
To install Cilium CLI:
|
|
|
|
```bash
|
|
brew install cilium-cli
|
|
```
|