From d985a996bd4f6694cecc88660b447983f4fd20b1 Mon Sep 17 00:00:00 2001 From: Billy Tat Date: Fri, 6 Dec 2024 16:42:24 -0800 Subject: [PATCH] Sync PR #351 (Add the warning for externalTrafficPolicy=Local) from Community docs --- .../modules/en/pages/networking/networking-services.adoc | 6 ++++++ .../modules/ja/pages/networking/networking-services.adoc | 6 ++++++ .../modules/ko/pages/networking/networking-services.adoc | 6 ++++++ .../modules/zh/pages/networking/networking-services.adoc | 6 ++++++ 4 files changed, 24 insertions(+) diff --git a/versions/latest/modules/en/pages/networking/networking-services.adoc b/versions/latest/modules/en/pages/networking/networking-services.adoc index 5902635..dde66c7 100644 --- a/versions/latest/modules/en/pages/networking/networking-services.adoc +++ b/versions/latest/modules/en/pages/networking/networking-services.adoc @@ -69,6 +69,12 @@ If the traffic to the external IP is subject to (https://en.wikipedia.org/wiki/N Create a https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer[Service of type LoadBalancer] in K3s. +[WARNING] +.Known Issue +==== +If external traffic reaches the node using a NAT (e.g. in public clouds) and you require `externalTrafficPolicy=local` for purposes such as client source IP preservation, please do not define the k3s config `node-external-ip` for any of the nodes, as that will not work correctly +==== + === Controlling ServiceLB Node Selection Adding the `svccontroller.k3s.cattle.io/enablelb=true` label to one or more nodes switches the ServiceLB controller into allow-list mode, where only nodes with the label are eligible to host LoadBalancer pods. Nodes that remain unlabeled will be excluded from use by ServiceLB. diff --git a/versions/latest/modules/ja/pages/networking/networking-services.adoc b/versions/latest/modules/ja/pages/networking/networking-services.adoc index fc078c6..6bb350d 100644 --- a/versions/latest/modules/ja/pages/networking/networking-services.adoc +++ b/versions/latest/modules/ja/pages/networking/networking-services.adoc @@ -71,6 +71,12 @@ If the traffic to the external IP is subject to (https://en.wikipedia.org/wiki/N K3sでlink:https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer[LoadBalancerタイプのサービス]を作成します。 +[WARNING] +.Known Issue +==== +If external traffic reaches the node using a NAT (e.g. in public clouds) and you require `externalTrafficPolicy=local` for purposes such as client source IP preservation, please do not define the k3s config `node-external-ip` for any of the nodes, as that will not work correctly +==== + === ServiceLBノード選択の制御 1つ以上のノードに``svccontroller.k3s.cattle.io/enablelb=true``ラベルを追加すると、ServiceLBコントローラーが許可リストモードに切り替わり、ラベルが付いたノードのみがLoadBalancerポッドをホストする資格を持ちます。ラベルが付いていないノードはServiceLBの使用から除外されます。 diff --git a/versions/latest/modules/ko/pages/networking/networking-services.adoc b/versions/latest/modules/ko/pages/networking/networking-services.adoc index 30bfc47..187e2d8 100644 --- a/versions/latest/modules/ko/pages/networking/networking-services.adoc +++ b/versions/latest/modules/ko/pages/networking/networking-services.adoc @@ -56,6 +56,12 @@ If the traffic to the external IP is subject to (https://en.wikipedia.org/wiki/N K3s에 https://kubernetes.io/ko/docs/concepts/services-networking/service/#loadbalancer[LoadBalancer 타입의 서비스]를 생성합니다. +[WARNING] +.Known Issue +==== +If external traffic reaches the node using a NAT (e.g. in public clouds) and you require `externalTrafficPolicy=local` for purposes such as client source IP preservation, please do not define the k3s config `node-external-ip` for any of the nodes, as that will not work correctly +==== + === ServiceLB 노드 선택 제어하기 하나 이상의 노드에 `svccontroller.k3s.cattle.io/enablelb=true` 레이블을 추가하면 ServiceLB 컨트롤러가 허용 목록 모드로 전환되며, 해당 레이블이 있는 노드만 LoadBalancer 파드를 호스트할 수 있습니다. 레이블이 없는 노드는 ServiceLB에서 사용에서 제외됩니다. diff --git a/versions/latest/modules/zh/pages/networking/networking-services.adoc b/versions/latest/modules/zh/pages/networking/networking-services.adoc index de8c7c6..1d0d30e 100644 --- a/versions/latest/modules/zh/pages/networking/networking-services.adoc +++ b/versions/latest/modules/zh/pages/networking/networking-services.adoc @@ -67,6 +67,12 @@ If the traffic to the external IP is subject to (https://en.wikipedia.org/wiki/N 在 K3s 中创建一个 https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer[LoadBalancer 类型的 Service]。 +[WARNING] +.Known Issue +==== +If external traffic reaches the node using a NAT (e.g. in public clouds) and you require `externalTrafficPolicy=local` for purposes such as client source IP preservation, please do not define the k3s config `node-external-ip` for any of the nodes, as that will not work correctly +==== + === 控制 ServiceLB 节点选择 如果你将 `svccontroller.k3s.cattle.io/enablelb=true` 标签添加到一个或多个节点,ServiceLB 控制器会切换到 allow-list 模式,只有具有该标签的节点才有资格托管 LoadBalancer Pod。未标记的节点将被 ServiceLB 排除。