Complete the code to specify the CNI plugin for EKS cluster networking.
eksctl create cluster --name my-cluster --version 1.24 --region us-west-2 --nodegroup-name standard-workers --node-type t3.medium --nodes 3 --nodes-min 1 --nodes-max 4 --managed --[1]
The AWS VPC CNI plugin is specified with the vpc-cni option when creating an EKS cluster with eksctl.
Complete the code to enable pod networking with the VPC CNI plugin in the EKS cluster.
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/[1]/config/v1.7/aws-k8s-cni.yaml
The VPC CNI plugin manifest is applied from the release-1.7 branch to match version 1.7 of the plugin.
Fix the error in the IAM policy statement to allow the VPC CNI plugin to manage ENIs.
{
"Effect": "Allow",
"Action": [
"ec2:CreateNetworkInterface",
"ec2:DescribeNetworkInterfaces",
"ec2:DeleteNetworkInterface",
"ec2:AttachNetworkInterface"
],
"Resource": [1]
}The resource must be set to "*" to allow the plugin to manage all network interfaces as required.
Fill both blanks to configure the environment variables for the VPC CNI plugin to enable custom networking and set the IP target.
env: - name: [1] value: "true" - name: [2] value: "10"
The environment variable AWS_VPC_K8S_CNI_CUSTOM_NETWORK_CFG enables custom networking, and AWS_VPC_K8S_CNI_TARGET_IP sets the target number of IP addresses per ENI.
Fill all three blanks to create a Kubernetes ConfigMap for the VPC CNI plugin with custom network config and enable prefix delegation.
apiVersion: v1 kind: ConfigMap metadata: name: aws-node namespace: kube-system data: [1]: "true" [2]: "true" [3]: "true"
The ConfigMap keys custom-network-config, enable-prefix-delegation, and enable-warm-ip-target are used to configure the VPC CNI plugin for advanced networking features.