Cilium

Cilium CNI

Tags:

Core

Cilium is a CNI plugin for Kubernetes that provides advanced networking and security features. It uses eBPF (extended Berkeley Packet Filter) technology to enable high-performance networking, load balancing, and security policies at the kernel level.

Note

This Docs is only Cilium provided by Ksctl

You can only choose CNI plugin during the cluster creation process.

Version selection

Default: latest

Now you can choose the Cilium version you want to install.

Cilium configuration

You can customize the Cilium Configuration. 3 modes are available:

Default: It represents opinionated configuration for Cilium by Ksctl Team.

 1hubble:
 2  ui:
 3    enabled: true
 4  relay:
 5    enabled: true
 6  metrics:
 7    enabled:
 8      - dns
 9      - drop
10      - tcp
11      - flow
12      - port-distribution
13      - icmp
14      - httpV2:exemplars=true;labelsContext=source_ip,source_namespace,source_workload,destination_ip,destination_namespace,destination_workload,traffic_direction
15
16l7Proxy: true
17kubeProxyReplacement: true
18
19encryption:
20  enabled: true
21  type: wireguard
22
23operator:
24  replicas: 3
25  prometheus:
26    enabled: true
27
28prometheus:
29  enabled: true

Advance: You can specify the helm chart values.yml file to customize the Cilium configuration. it will open a text editor based on your terminal ENV $EDITOR if not set it will use vim as default. Refer Helm Chart Values
Guided: It will provide you our preconfigured options of what all specific omponents to Enable/Disable

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.

Last modified April 27, 2025: feat(cni): add advanced customization for Cilium and Flannel (d2ecc85)