Tune dnsmasq/kubedns limits, replicas, logging

* Add dns_replicas, dns_memory/cpu_limit/requests vars for dns related apps. * When kube_log_level=4, log dnsmasq queries as well. * Add log level control for skydns (part of kubedns app). * Add limits/requests vars for dnsmasq (part of kubedns app) and dnsmasq daemon set. * Drop string defaults for kube_log_level as it is int and is defined in the global vars as well. * Add docs Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
2026-02-28 09:39:12 +03:00 · 2016-11-25 11:33:39 +01:00
parent 6d29a5981c
commit 2d18e19263
11 changed files with 47 additions and 12 deletions
--- a/roles/kubernetes-apps/ansible/defaults/main.yml
+++ b/roles/kubernetes-apps/ansible/defaults/main.yml
@@ -3,6 +3,13 @@ kubedns_version: 1.7
 kubednsmasq_version: 1.3
 exechealthz_version: 1.1

+# Limits for dnsmasq/kubedns apps
+dns_cpu_limit: 100m
+dns_memory_limit: 170Mi
+dns_cpu_requests: 70m
+dns_memory_requests: 70Mi
+dns_replicas: 1
+
 # Images
 kubedns_image_repo: "gcr.io/google_containers/kubedns-amd64"
 kubedns_image_tag: "{{ kubedns_version }}"
--- a/roles/kubernetes-apps/ansible/templates/kubedns-rc.yml
+++ b/roles/kubernetes-apps/ansible/templates/kubedns-rc.yml
@@ -8,7 +8,7 @@ metadata:
    version: v19
    kubernetes.io/cluster-service: "true"
 spec:
-  replicas: 1
+  replicas: {{ dns_replicas }}
  selector:
    k8s-app: kubedns
    version: v19
@@ -29,11 +29,11 @@ spec:
          # guaranteed class. Currently, this container falls into the
          # "burstable" category so the kubelet doesn't backoff from restarting it.
          limits:
-            cpu: 100m
-            memory: 170Mi
+            cpu: {{ dns_cpu_limit }}
+            memory: {{ dns_memory_limit }}
          requests:
-            cpu: 100m
-            memory: 70Mi
+            cpu: {{ dns_cpu_requests }}
+            memory: {{ dns_memory_requests }}
        livenessProbe:
          httpGet:
            path: /healthz
@@ -56,6 +56,7 @@ spec:
        # command = "/kube-dns"
        - --domain={{ dns_domain }}.
        - --dns-port=10053
+        - --v={{ kube_log_level }}
        ports:
        - containerPort: 10053
          name: dns-local
@@ -66,11 +67,21 @@ spec:
      - name: dnsmasq
        image: "{{ kubednsmasq_image_repo }}:{{ kubednsmasq_image_tag }}"
        imagePullPolicy: {{ k8s_image_pull_policy }}
+        resources:
+          limits:
+            cpu: {{ dns_cpu_limit }}
+            memory: {{ dns_memory_limit }}
+          requests:
+            cpu: {{ dns_cpu_requests }}
+            memory: {{ dns_memory_requests }}
        args:
        - --log-facility=-
        - --cache-size=1000
        - --no-resolv
        - --server=127.0.0.1#10053
+{% if kube_log_level == 4 %}
+        - --log-queries
+{% endif %}
        ports:
        - containerPort: 53
          name: dns