Name: cilium-config Namespace: kube-system Labels: app.kubernetes.io/managed-by=Helm Annotations: meta.helm.sh/release-name: cilium meta.helm.sh/release-namespace: kube-system Data ==== mesh-auth-rotated-identities-queue-size: ---- 1024 synchronize-k8s-nodes: ---- true auto-direct-node-routes: ---- false dnsproxy-enable-transparent-mode: ---- true cluster-id: ---- 0 enable-k8s-terminating-endpoint: ---- true enable-vtep: ---- false routing-mode: ---- tunnel sidecar-istio-proxy-image: ---- cilium/istio_proxy bpf-lb-external-clusterip: ---- false cgroup-root: ---- /run/cilium/cgroupv2 mesh-auth-queue-size: ---- 1024 cnp-node-status-gc-interval: ---- 0s enable-health-check-nodeport: ---- true enable-policy: ---- default external-envoy-proxy: ---- false identity-allocation-mode: ---- crd ipam: ---- cluster-pool proxy-max-requests-per-connection: ---- 0 remove-cilium-node-taints: ---- true enable-ipv6: ---- false enable-l7-proxy: ---- true debug: ---- false enable-well-known-identities: ---- false kube-proxy-replacement: ---- disabled proxy-prometheus-port: ---- 9964 set-cilium-node-taints: ---- true bpf-map-dynamic-size-ratio: ---- 0.0025 bpf-root: ---- /sys/fs/bpf identity-gc-interval: ---- 15m0s procfs: ---- /host/proc proxy-connect-timeout: ---- 2 skip-cnp-status-startup-clean: ---- false tunnel-port: ---- 6082 vtep-mask: ---- cilium-endpoint-gc-interval: ---- 5m0s cni-log-file: ---- /var/run/cilium/cilium-cni.log enable-sctp: ---- false mesh-auth-gc-interval: ---- 5m0s set-cilium-is-up-condition: ---- true tofqdns-endpoint-max-ip-per-hostname: ---- 50 write-cni-conf-when-ready: ---- /host/etc/cni/net.d/05-cilium.conflist bpf-lb-sock: ---- false enable-local-redirect-policy: ---- false enable-health-checking: ---- true vtep-cidr: ---- enable-bpf-clock-probe: ---- false enable-ipv4-big-tcp: ---- false identity-heartbeat-timeout: ---- 30m0s mesh-auth-enabled: ---- true tofqdns-idle-connection-grace-period: ---- 0s vtep-mac: ---- bpf-lb-map-max: ---- 65536 cluster-name: ---- default enable-bgp-control-plane: ---- false enable-remote-node-identity: ---- true enable-svc-source-range-check: ---- true proxy-max-connection-duration-seconds: ---- 0 tunnel-protocol: ---- geneve cluster-pool-ipv4-cidr: ---- 10.0.0.0/8 enable-auto-protect-node-port-range: ---- true monitor-aggregation: ---- medium egress-gateway-reconciliation-trigger-interval: ---- 1s enable-ipv4-masquerade: ---- true tofqdns-proxy-response-max-delay: ---- 100ms unmanaged-pod-watcher-interval: ---- 15 vtep-endpoint: ---- agent-not-ready-taint-key: ---- node.cilium.io/agent-not-ready ipam-cilium-node-update-rate: ---- 15s preallocate-bpf-maps: ---- false tofqdns-dns-reject-response-code: ---- refused tofqdns-enable-dns-compression: ---- true tofqdns-max-deferred-connection-deletes: ---- 10000 node-port-bind-protection: ---- true nodes-gc-interval: ---- 5m0s custom-cni-conf: ---- false disable-cnp-status-updates: ---- true enable-k8s-networkpolicy: ---- true enable-xt-socket-fallback: ---- true k8s-client-qps: ---- 5 monitor-aggregation-flags: ---- all arping-refresh-period: ---- 30s cni-exclusive: ---- true enable-ipv4: ---- true enable-ipv6-big-tcp: ---- false enable-ipv6-masquerade: ---- true enable-l2-neigh-discovery: ---- true bpf-policy-map-max: ---- 16384 debug-verbose: ---- install-no-conntrack-iptables-rules: ---- false k8s-client-burst: ---- 10 monitor-aggregation-interval: ---- 5s operator-api-serve-addr: ---- 127.0.0.1:9234 cluster-pool-ipv4-mask-size: ---- 24 enable-endpoint-health-checking: ---- true BinaryData ==== Events: