Versions Compared

Old Version 2

changes.mady.by.user Ahmad Alkhansa

Saved on

compared with

New Version Current

changes.mady.by.user Francesco Sinisi

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Tigera operator yaml file can be seen on https://projectcalico.docs.tigera.io/manifests/tigera-operator.yaml


 
Calico yaml file

Code Block
languageyml
titlecalico yaml file
# This section includes base Calico installation configuration.
# For more information, see: https://projectcalico.docs.tigera.io/v3.22/reference/installation/api#operator.tigera.io/v1.Installation
apiVersion: operator.tigera.io/v1
kind: Installation
metadata:
  name: default
spec:
  # Configures Calico networking.
  calicoNetwork:
    # Note: The ipPools section cannot be modified post-install.
    ipPools:
    - blockSize: 26
      cidr: 20.100.0.0/16
      encapsulation: VXLAN
      natOutgoing: Enabled
      nodeSelector: all()

---


# This section configures the Calico API server.
# For more information, see: https://projectcalico.docs.tigera.io/v3.22/reference/installation/api#operator.tigera.io/v1.APIServer
apiVersion: operator.tigera.io/v1
kind: APIServer
metadata:
  name: default
spec: {}

...

Typha watches for changes in various resources, and does a fan-out to all calico-nodes, reducing the load on the Kubernetes API server.

Renewing Certificates

It is possible to renew all Kubernetes certificates using Kubeadm. The command below uses Certificate Authority (CA) to renew certificates stored in /etc/kubernetes/pki directory on each node in the cluster.

Code Block
languagebash
kubeadm certs renew

...

.