Cilium

Cilium is an open source, cloud native solution for providing, securing, and observing network connectivity between workloads, fueled by the revolutionary Kernel technology eBPF.

The cilium role performs various tasks related to Helm chart deployment, reset, and validation.

Tip

Role deployments are performed at global level, using the Provisioning playbook. Upgrades can be performed at role level — see the instructions detailed below.

Role Tasks

See the related role tasks listed below.

Facts

Ansible facts — see facts.yaml for details.

Main

Main role related tasks — see main.yaml for details.

Post-Install

Post-install related tasks — see postinstall.yaml for details.

Reset

Reset related tasks — see reset.yaml for details.

Tip

A reset is performed at global level only — review the Reset playbook instructions.

Upgrade

Upgrade related tasks — see upgrade.yaml for details. Run the following command to perform a role upgrade:


ansible-playbook --ask-vault-pass --tags=cilium upgrade.yaml

Validation

Validation related tasks — see validation.yaml for details. Run the following command to perform all role related validation tasks:


ansible-playbook --ask-vault-pass --tags=cilium validation.yaml

Role Templates

See the related role templates listed below.

Tip

Perform a role validation to visualize all rendered templates and variables.

Helm Chart

Helm chart values template — see values.j2 for details.

Certificate

Kubernetes Certificate resource template — see certificate.j2 for details.

Cluster Issuer

Kubernetes ClusterIssuer resource template — see cluster_issuer.j2 for details.

Gateway

Kubernetes Gateway resource template — see gateway.j2 for details.

HTTP Route

Insecure Route — Kubernetes HTTPRoute resource template, see http_route_insecure.j2 for details.
Secure Route — Kubernetes HTTPRoute resource template, see http_route_secure.j2 for details.

L2 Announcement Policy

Kubernetes CiliumL2AnnouncementPolicy resource template — see l2_announcement_policy.j2 for details.

Load Balancer IP Pool

Kubernetes CiliumLoadBalancerIPPool resource template — see loadbalancer_ip_pool.j2 for details.

Role Variables

Important

A role upgrade is required in order to apply any changes related to role variables.

See the related role variables, defined in the main.yaml defaults file. Review the README.md file for additional details.

Tip

Use Renovate to automate release pull requests and keep dependencies up-to-date.