:::info 本文基于k3d, k3s :::

  1. k3d cluster create foo --agents 1 \
  2.     --k3s-server-arg "--disable=servicelb" --k3s-server-arg "--disable=traefik"  --no-lb \
  3.     --k3s-server-arg "--disable-network-policy" --k3s-server-arg "--flannel-backend=none"
  1. docker exec -it k3d-foo-agent-0 mount bpffs /sys/fs/bpf -t bpf
  2. docker exec -it k3d-foo-agent-0 mount --make-shared /sys/fs/bpf
  3. # 每个容器(每个 agent 和 server)都要这么做一遍
  4. docker exec -it k3d-foo-server-0 mount bpffs /sys/fs/bpf -t bpf
  5. docker exec -it k3d-foo-server-0 mount --make-shared /sys/fs/bpf
  1. helm repo add cilium https://helm.cilium.io/
  3. helm install cilium cilium/cilium --version 1.9.1 \
  4.    --namespace kube-system \
  5.    --set kubeProxyReplacement=partial \
  6.    --set hostServices.enabled=false \
  7.    --set externalIPs.enabled=true \
  8.    --set nodePort.enabled=true \
  9.    --set hostPort.enabled=true \
  10.    --set bpf.masquerade=false \
  11.    --set image.pullPolicy=IfNotPresent \
  12.    --set ipam.mode=kubernetes
  14. helm upgrade cilium cilium/cilium --version 1.9.1 \
  15.    --namespace kube-system \
  16.    --reuse-values \
  17.    --set hubble.listenAddress=":4244" \
  18.    --set hubble.relay.enabled=true \
  19.    --set hubble.ui.enabled=true

参考文献

[1]: 在 macOS 运行 Cilium+k3s+k3d https://sandstorm.de/de/blog/post/running-cilium-in-k3s-and-k3d-lightweight-kubernetes-on-mac-os-for-development.html