A chart to install node-local-dns.
NodeLocal DNSCache improves Cluster DNS performance by running a DNS caching agent on cluster nodes as a DaemonSet.
In today's architecture, Pods in 'ClusterFirst' DNS mode reach out to a kube-dns serviceIP for DNS queries. This is translated to a kube-dns/CoreDNS endpoint via iptables rules added by kube-proxy. With this new architecture, Pods will reach out to the DNS caching agent running on the same node, thereby avoiding iptables DNAT rules and connection tracking. The local caching agent will query kube-dns service for cache misses of cluster hostnames ("cluster.local" suffix by default).
Further documentation is here
This helm chart works for both kube-proxy setups (iptables or ipvs).
Add Delivery Hero public chart repo:
helm repo add deliveryhero https://charts.deliveryhero.io/
A simple install with default values:
helm install deliveryhero/node-local-dns
To install the chart with the release name my-release
:
helm install my-release deliveryhero/node-local-dns
To install with some set values:
helm install my-release deliveryhero/node-local-dns --set values_key1=value1 --set values_key2=value2
To install with custom values file:
helm install my-release deliveryhero/node-local-dns -f values.yaml
Key | Type | Default | Description |
---|---|---|---|
affinity | object | {} |
|
config.commProtocol | string | "force_tcp" |
|
config.customConfig | string | "" |
|
config.dnsDomain | string | "cluster.local" |
|
config.dnsServer | string | "172.20.0.10" |
|
config.localDns | string | "169.254.20.25" |
|
config.setupInterface | bool | true |
|
config.setupIptables | bool | true |
|
config.skipTeardown | bool | false |
|
daemonsetAnnotations | object | {} |
|
daemonsetLabels | object | {} |
|
dashboard.annotations | object | {} |
|
dashboard.enabled | bool | false |
|
dashboard.label | string | "grafana_dashboard" |
|
dashboard.namespace | string | "kube-system" |
|
fullnameOverride | string | "" |
|
image.repository | string | "registry.k8s.io/dns/k8s-dns-node-cache" |
|
image.tag | string | "" |
|
imagePullSecrets | list | [] |
|
nameOverride | string | "" |
|
podAnnotations | object | {} |
|
podLabels | object | {} |
|
prometheusScraping.enabled | bool | true |
|
resources.limits.memory | string | "128Mi" |
|
resources.requests.cpu | string | "25m" |
|
resources.requests.memory | string | "128Mi" |
|
securityContext.capabilities.add[0] | string | "NET_ADMIN" |
|
serviceAccount.annotations | object | {} |
|
serviceAccount.create | bool | true |
|
serviceAccount.name | string | "" |
|
serviceMonitor.enabled | bool | false |
|
serviceMonitor.labels | object | {} |
Name | Url | |
---|---|---|
gabrieladt | [email protected] |