helm cilium encryption settings

Question

helm cilium encryption settings

Closed this issue 4 months ago · 1 comments

    --namespace kube-system \
    --set encryption.enabled=#{settings.networking.cni.enabled.to_s} \
    --set encryption.type=wireguard \
    --set encryption.nodeEncryption=#{settings.networking.cni.enabled.to_s} \
    --set routingMode=tunnel \
    --set tunnelProtocol=vxlan \
    --set ipam.mode="kubernetes" \

in src/kubernetes/software/cilium.cr

can this be right?

config has these:

cni:
    enabled: true
    encryption: false
    mode: flannel

Shouldn't cni.encryption be in both?

Also, you think vxlan is the best for hetzner, or should it be configurable maybe?

Answer 1 · 2024-08-04T10:18:49.000Z

Well spotted! That should indeed be encryption instead of enabled. I guess I didn't notice during my testing because I had both values set to true. I just pushed this change so I am closing this one but feel free to reopen or open another one if you still see an issue related to this. Thanks :)