Change default clusterCIDRs from /16 to /14 in GCE configs allowing 1000 Node clusters by default. #25350
Conversation
gmarek
added
the
priority/critical-urgent
k8s-github-robot
added
size/XS
| @@ -49,7 +49,7 @@ CLUSTER_NAME="${CLUSTER_NAME:-${INSTANCE_PREFIX}}" | |||
| MASTER_NAME="${INSTANCE_PREFIX}-master" | |||
| MASTER_TAG="${INSTANCE_PREFIX}-master" | |||
| NODE_TAG="${INSTANCE_PREFIX}-minion" | |||
| CLUSTER_IP_RANGE="${CLUSTER_IP_RANGE:-10.245.0.0/16}" | |||
| CLUSTER_IP_RANGE="${CLUSTER_IP_RANGE:-10.245.0.0/14}" | |||
There was a problem hiding this comment.
This is the same as 10.244.0.0/14. If you want test to remain a distinct range from regular clusters we should change this to 10.248.0.0/14.
There was a problem hiding this comment.
I completely missed it. Do we actually care?
There was a problem hiding this comment.
In theory someone can run tests on the same GCE network as their main cluster. (They have to override the NETWORK, obviously.)
At the very least, the code should use the canonical address of 10.244.0.0./14, but I tend to agree with @roberthbailey
There was a problem hiding this comment.
I'd prefer that we change it to 10.248.0.0/16 so that it maintains the current intent of having a separate range for test/non-test by default.
|
@wojtek-t -- release note? |
|
GCE e2e build/test passed for commit 5dc3d50. |
|
LGTM, but please add a release note. |
|
It would be nice to know the why. Are legacy clusters with a /16 at risk? Etc. |
|
@therc - depends on the size. We'll start respecting CIDRs soon, which means that /16 clusters would be able to handle only 255 Nodes. |
luxas
added
release-note
|
@roberthbailey I commented on #19242 back in January. :-) What I meant is that it's not obvious from the PR (or the docs as they exist now) why the change is needed, let alone labelled P0, etc. Even if I keep getting mails for the other issue, I hadn't connected the dots until gmarek and you commented. Thanks! |
|
@therc - sorry for that. We're going to communicate this change publicly before it goes live. |
gmarek
changed the title
gmarek
changed the title
|
@roberthbailey - changed the PR title to make a better release note. PTAL. |
zmerlynn
added
the
lgtm
|
lgtm |
|
@k8s-bot test this [submit-queue is verifying that this PR is safe to merge] |
|
GCE e2e build/test passed for commit 5dc3d50. |
|
Automatic merge from submit-queue |
…elector [release-3.11] Bug 1760807: UPSTREAM: <carry>: Enforce label selector validation in scheduler podAffinity Origin-commit: dc045cb38e8a8a12314fe7e4a1f00edf214a7cf8
cc @thockin @roberthbailey @wojtek-t @zmerlynn @davidopp