X-IO+EKS Controller Requirements
...
EKS Cluster Requirements
Number | Component | Item | Detail | Requirements | |||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Cluster | Software | Kubernetes version | 1.29+ (Recommended) | |||||||||||||||||||
IAM | EKS cluster role | Required Policy: [AWS managed]
| |||||||||||||||||||||
Permission | Cluster administrator access | Allow:
| |||||||||||||||||||||
Cluster Endpoint Access | Kubernetes API server endpoint access | Allow:
| |||||||||||||||||||||
Network | VPC | Virtual networking resources | IPv4 CIDR block:
Number of public subnets:
Number of private subnets:
NAT gateways:
| ||||||||||||||||||||
NAT Gateway | Network address translation service to connect private subnets to other internet |
| |||||||||||||||||||||
Security Group | Virtual firewall to control inbound and outbound traffic Inbound Rules: Outbound Rules: | ||||||||||||||||||||||
Cluster Endpoint Access | Kubernetes API server endpoint access | Allow:
| |||||||||||||||||||||
Created by CloudFormation Template. | |||||||||||||||||||||||
Compute | Node Groups IAM | Allows EC2 instances to call AWS services on your behalf | Required Policies: [AWS managed]
| ||||||||||||||||||||
Launch Templates | Add-ons | CoreDNS | Enables service discovery | v1.11.1-eksbuild.6+ (Latest Recommended) | Kube-proxy | Enables service networking | v.1.29.1-eksbuild.2+ (Latest Recommended) | ||||||||||||||||
Amazon VPC CNI | Enables pod networking | v1.16.3-eksbuild.2+ (Latest Recommended) | |||||||||||||||||||||
Amazon EBS CSI Driver | Enables EBS within cluster | - | |||||||||||||||||||||
Exostellar Karpenter | Integrates with X-IO | v0.0.36+
| |||||||||||||||||||||
Kubernetes | ConfigMap |
|
...
IO+EKS Requirements
Number | Component | Item | Detail | Requirements | |||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Controller | Instance Type | Instance typr type for the controller | m5d.xlarger (Recommended) | |||||||||
VPC | Virtual networking resources | Select the virtual networking resources created above | |||||||||||
Security Group | Virtual firewall to control inbound and outbound traffic | Select the security group created above by the EKS cluster | |||||||||||
IAM | Instance profile | Required Policies: [Customer inline]
| |||||||||||
| Worker | IAM | Instance profile | Required Policies: [AWS managed]
[Customer inline]
|