CiliumBGPPeerConfig
cilium.io / v2
apiVersion: cilium.io/v2
kind: CiliumBGPPeerConfig
metadata:
name: example
apiVersion
string
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
kind
string
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
metadata
object required
spec object required
Spec is the specification of the desired behavior of the CiliumBGPPeerConfig.
authSecretRef
string
AuthSecretRef is the name of the secret to use to fetch a TCP
authentication password for this peer.
If not specified, no authentication is used.
ebgpMultihop
integer
EBGPMultihopTTL controls the multi-hop feature for eBGP peers.
Its value defines the Time To Live (TTL) value used in BGP
packets sent to the peer.
If not specified, EBGP multihop is disabled. This field is ignored for iBGP neighbors.
format:
int32minimum:
1maximum:
255families []object
Families, if provided, defines a set of AFI/SAFIs the speaker will
negotiate with it's peer.
If not specified, the default families of IPv6/unicast and IPv4/unicast will be created.
advertisements object
Advertisements selects group of BGP Advertisement(s) to advertise for this family.
If not specified, no advertisements are sent for this family.
matchExpressions []object
matchExpressions is a list of label selector requirements. The requirements are ANDed.
key
string required
key is the label key that the selector applies to.
operator
string required
operator represents a key's relationship to a set of values.
Valid operators are In, NotIn, Exists and DoesNotExist.
enum:
In, NotIn, Exists, DoesNotExist
values
[]string
values is an array of string values. If the operator is In or NotIn,
the values array must be non-empty. If the operator is Exists or DoesNotExist,
the values array must be empty. This array is replaced during a strategic
merge patch.
matchLabels
object
matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
map is equivalent to an element of matchExpressions, whose key field is "key", the
operator is "In", and the values array contains only "value". The requirements are ANDed.
afi
string required
Afi is the Address Family Identifier (AFI) of the family.
enum:
ipv4, ipv6, l2vpn, ls, opaque
safi
string required
Safi is the Subsequent Address Family Identifier (SAFI) of the family.
enum:
unicast, multicast, mpls_label, encapsulation, vpls, evpn, ls, sr_policy, mup, mpls_vpn, mpls_vpn_multicast, route_target_constraints, flowspec_unicast, flowspec_vpn, key_valuegracefulRestart object
GracefulRestart defines graceful restart parameters which are negotiated
with this peer.
If not specified, the graceful restart capability is disabled.
enabled
boolean required
Enabled flag, when set enables graceful restart capability.
restartTimeSeconds
integer
RestartTimeSeconds is the estimated time it will take for the BGP
session to be re-established with peer after a restart.
After this period, peer will remove stale routes. This is
described RFC 4724 section 4.2.
format:
int32minimum:
1maximum:
4095timers object
Timers defines the BGP timers for the peer.
If not specified, the default timers are used.
connectRetryTimeSeconds
integer
ConnectRetryTimeSeconds defines the initial value for the BGP ConnectRetryTimer (RFC 4271, Section 8).
If not specified, defaults to 120 seconds.
format:
int32minimum:
1maximum:
2.147483647e+09
holdTimeSeconds
integer
HoldTimeSeconds defines the initial value for the BGP HoldTimer (RFC 4271, Section 4.2).
Updating this value will cause a session reset.
If not specified, defaults to 90 seconds.
format:
int32minimum:
3maximum:
65535
keepAliveTimeSeconds
integer
KeepaliveTimeSeconds defines the initial value for the BGP KeepaliveTimer (RFC 4271, Section 8).
It can not be larger than HoldTimeSeconds. Updating this value will cause a session reset.
If not specified, defaults to 30 seconds.
format:
int32minimum:
1maximum:
65535transport object
Transport defines the BGP transport parameters for the peer.
If not specified, the default transport parameters are used.
peerPort
integer
PeerPort is the peer port to be used for the BGP session.
If not specified, defaults to TCP port 179.
format:
int32minimum:
1maximum:
65535
sourceInterface
string
SourceInterface is the name of a local interface, which IP address will be used
as the source IP address for the BGP session. The interface must not have more than one
non-loopback, non-multicast and non-link-local-IPv6 address per address family.
If not specified, or if the provided interface is not found or missing a usable IP address,
the source IP address will be auto-detected based on the egress interface.
status object
Status is the running status of the CiliumBGPPeerConfig
conditions []object
The current conditions of the CiliumBGPPeerConfig
lastTransitionTime
string required
lastTransitionTime is the last time the condition transitioned from one status to another.
This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
format:
date-time
message
string required
message is a human readable message indicating details about the transition.
This may be an empty string.
maxLength:
32768
observedGeneration
integer
observedGeneration represents the .metadata.generation that the condition was set based upon.
For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
with respect to the current state of the instance.
format:
int64minimum:
0
reason
string required
reason contains a programmatic identifier indicating the reason for the condition's last transition.
Producers of specific condition types may define expected values and meanings for this field,
and whether the values are considered a guaranteed API.
The value should be a CamelCase string.
This field may not be empty.
pattern:
^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$minLength:
1maxLength:
1024
status
string required
status of the condition, one of True, False, Unknown.
enum:
True, False, Unknown
type
string required
type of condition in CamelCase or in foo.example.com/CamelCase.
pattern:
^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$maxLength:
316No matches. Try .spec.authSecretRef for an exact path