mirrors/khuedoan-homelab
1
0
Fork 0
mirror of https://github.com/khuedoan/homelab.git synced 2025-03-10 04:47:09 +07:00
Code Issues Packages Projects Releases Wiki Activity

Fix kube-proxy trying to write to nf_conntrack hashsize

Browse Source
This commit is contained in:
Khue Doan 2021-02-14 03:48:05 +00:00
parent 667c0da938
commit f87cdb2561
1 changed files with 12 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
infra/lxd/cluster.tf
View File

@ -6,7 +6,7 @@ resource "lxd_profile" "kubenode" {
"limits.memory.swap" = false
"security.privileged" = true
"security.nesting" = true
"linux.kernel_modules" = "ip_tables,ip6_tables,nf_nat,overlay,br_netfilter"
"linux.kernel_modules" = "ip_tables,ip6_tables,netlink_diag,nf_nat,overlay,br_netfilter"
"raw.lxc" = <<-EOT
lxc.apparmor.profile=unconfined
lxc.cap.drop=
@ -31,6 +31,17 @@ resource "lxd_profile" "kubenode" {
EOT
}
# echo "262144" > /sys/module/nf_conntrack/parameters/hashsize
device {
type = "disk"
name = "hashsize"
properties = {
source = "/sys/module/nf_conntrack/parameters/hashsize"
path = "/sys/module/nf_conntrack/parameters/hashsize"
}
}
device {
type = "unix-char"
name = "kmsg"