Cilium is a networking, security, and observability solution for Kubernetes, built on eBPF. It provides high-performance networking with support for Layer 3-7 policies, load balancing, and transparent encryption. With Cilium, you can enforce fine-grained security policies, observe network flows in real time, and integrate seamlessly with service meshes. It also offers eBPF-powered network policies and cluster mesh capabilities, enabling secure communication across multiple Kubernetes clusters.
Install with:
helm repo add cilium https://helm.cilium.io/
helm install cilium cilium/cilium -f values.yamlSee examples from other people.
| Name | Repo | Stars | Version | Timestamp |
|---|---|---|---|---|
| cilium | JJGadgets/Biohazard | 82 | 1.18.4 | 9 days ago |
| cilium | axeII/home-ops | 49 | 1.18.6 | 16 days ago |
| cilium | mchestr/home-cluster | 150 | 1.18.6 | 19 days ago |
| cilium | larivierec/home-cluster | 139 | 1.18.6 | 22 days ago |
| cilium | gavinmcfall/home-ops | 32 | 1.18.6 | 22 days ago |
See the most popular values for this chart:
| Key | Types |
|---|---|
| boolean | |
| boolean | |
| boolean | |
| boolean | |
hubble.ui.ingress.hosts[] (54) - hubble.${SECRET_DOMAIN} | string |
hubble.ui.ingress.className (50) internal | string |
hubble.ui.ingress.tls[].hosts[] (33) - hubble.${SECRET_DOMAIN} | string |
hubble.ui.ingress.tls[].secretName (11) hubble-tls | string |
hubble.ui.ingress.annotations."hajimari.io/icon" (9) simple-icons:cilium | string |
hubble.ui.ingress.annotations."cert-manager.io/cluster-issuer" (8) letsencrypt-production | string |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| number | |
| boolean | |
| boolean, string | |
| boolean | |
| boolean | |
| string | |
| string | |
| string | |
| number | |
| boolean | |
hubble.metrics.enabled[] (62) - dns:query | string |
| boolean, string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| boolean, string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| boolean | |
hubble.dashboards.namespace (4) monitoring | string |
hubble.dashboards.label (3) grafana_dashboard | string |
| string | |
| string | |
| boolean | |
| string | |
| number | |
| string | |
| string | |
| string | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| boolean, string | |
| boolean, string | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| boolean, string | |
| boolean | |
| boolean, string | |
| boolean | |
| string | |
| string | |
| string | |
| string | |
| string | |
| number | |
| boolean | |
| boolean | |
| string | |
| string | |
| string | |
| string | |
| boolean, string | |
k8sServiceHost (35) 127.0.0.1 | string |
| number, string | |
ipam.mode (33) kubernetes | string |
| number | |
| string | |
| number | |
| string | |
| boolean | |
| string | |
| string | |
| string | |
| boolean | |
ipv4NativeRoutingCIDR (27) ${CLUSTER_CIDR} | string |
| string | |
| string | |
| string | |
| boolean | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
bpf.datapathMode (6) netkit | string |
bpf.tproxy (4) true | boolean |
| boolean | |
| string | |
| number | |
| boolean | |
| boolean | |
| number | |
| number | |
| number, string | |
cluster.name (26) home-cluster | string |
| boolean | |
kubeProxyReplacementHealthzBindAddr (26) 0.0.0.0:10256 | string |
routingMode (22) native | string |
securityContext.capabilities.ciliumAgent[] (21) - CHOWN | string |
securityContext.capabilities.cleanCiliumState[] (21) - NET_ADMIN | string |
| string | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| string | |
| boolean | |
cgroup.hostRoot (15) /sys/fs/cgroup | string |
| boolean | |
| boolean | |
envoy.enabled (15) false | boolean |
| boolean, string | |
| boolean | |
| boolean | |
| boolean | |
cni.exclusive (12) false | boolean |
cni.binPath (4) /var/lib/rancher/k3s/data/cni | string |
cni.confPath (4) /var/lib/rancher/k3s/agent/etc/cni/net.d | string |
containerRuntime.integration (11) containerd | string |
containerRuntime.socketPath (11) /var/run/k3s/containerd/containerd.sock | string |
| boolean | |
| boolean | |
bgp.enabled (9) false | boolean |
| boolean | |
| boolean | |
| boolean | |
| boolean | |
| number | |
| boolean | |
| string | |
| boolean | |
| boolean | |
| boolean | |
tunnel (7) disabled | string |
| string | |
| string | |
| boolean | |
ipv6.enabled (4) true | boolean |
l7Proxy (4) true | boolean |
| boolean | |
| boolean | |
| boolean | |
| string | |
| string | |
| number | |
| number | |
| boolean | |
| boolean | |
| string | |
| string | |
| boolean | |
| boolean | |
| number | |
| boolean | |
| string | |
| boolean | |
| boolean | |
| string | |
| string | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| string | |
| string | |
| boolean | |
| boolean | |
| boolean | |
| string | |
| boolean | |
| number | |
| string | |
| string | |
| string | |
| string | |
| number | |
| string | |
| boolean |