In Linux Kernel 5.8 and above, RKE2 can be run using Cilium without the use of kube-proxy and deploying in RKE2 only requires a simple change to a HelmChart partial. For Rancher-managed RKE2 clusters, the commensurate change is similar.
Ensure your CNI is set to Cilium:
Switch to the YAML edit view, and navigate down to the rke2-cilium chartValues key:
and save, and your cluster will begin creating.
Once the cluster is online, you can validate the status of the kube-proxy replacement using the following:
kubectl -n kube-system exec ds/cilium -- cilium-dbg status | grep KubeProxyReplacement
More about this feature, and further what can be done with Cilium can be found here.
Top comments (0)