You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
nit: Update README to separate ENI Tags from Subnet Tags (#3508)
* Separate ENI Tags from Subnet Tags
* Create new section for subnet tag(s) in README
* nit: README update
---------
Co-authored-by: Christian DiRubbio <[email protected]>
Copy file name to clipboardExpand all lines: README.md
+15-12Lines changed: 15 additions & 12 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -796,7 +796,6 @@ Downgrade considerations
796
796
This plugin interacts with the following tags on ENIs:
797
797
798
798
*`cluster.k8s.amazonaws.com/name`
799
-
*`kubernetes.io/role/cni`
800
799
*`node.k8s.amazonaws.com/instance_id`
801
800
*`node.k8s.amazonaws.com/no_manage`
802
801
@@ -805,17 +804,6 @@ This plugin interacts with the following tags on ENIs:
805
804
The tag `cluster.k8s.amazonaws.com/name` will be set to the cluster name of the
806
805
aws-node daemonset which created the ENI.
807
806
808
-
#### CNI role tag
809
-
810
-
The tag `kubernetes.io/role/cni` is read by the aws-node daemonset to determine
811
-
if a secondary subnet can be used for creating secondary ENIs.
812
-
813
-
This tag is not set by the cni plugin itself, but rather must be set by a user
814
-
to indicate that a subnet can be used for secondary ENIs. Secondary subnets
815
-
to be used must have this tag. The primary subnet (node's subnet) is not
816
-
required to be tagged.
817
-
818
-
819
807
#### Instance ID tag
820
808
821
809
The tag `node.k8s.amazonaws.com/instance_id` will be set to the instance ID of
@@ -836,6 +824,21 @@ value for the Kubelet's `--max-pods` configuration option. Consider also
836
824
updating the `MAX_ENI` and `--max-pods` configuration options on this plugin
837
825
and the kubelet respectively if you are making use of this tag.
838
826
827
+
## Subnet tags related to Allocation
828
+
829
+
This plugin additionally interacts with the `kubernetes.io/role/cni` tag on subnets when `ENABLE_SUBNET_DISCOVERY` is set to `true`.
830
+
831
+
#### CNI role tag
832
+
833
+
The tag `kubernetes.io/role/cni` is read by the aws-node daemonset to determine
834
+
if a secondary subnet can be used for creating secondary ENIs.
835
+
836
+
This tag is not set by the cni plugin itself, but rather must be set by a user
837
+
to indicate that a subnet can be used for secondary ENIs. Secondary subnets
838
+
to be used must have this tag. The primary subnet (node's subnet) is not
839
+
required to be tagged.
840
+
841
+
839
842
## Container Runtime
840
843
841
844
For VPC CNI >=v1.12.0, IPAMD have switched to use an on-disk file `/var/run/aws-node/ipam.json` to track IP allocations, thus became container runtime agnostic and no longer requires access to Container Runtime Interface(CRI) socket.
0 commit comments