apiVersion: apps/v1
kind: Deployment
metadata:
  name:  netshoot
  namespace: test-tool
  labels:
    app:  netshoot
spec:
  selector:
    matchLabels:
      app: netshoot
  replicas: 1
  strategy:
    rollingUpdate:
      maxSurge: 25%
      maxUnavailable: 25%
    type: RollingUpdate
  template:
    metadata:
      labels:
        app:  netshoot
    spec:
      containers:
      - name:  netshoot
        image:  nicolaka/netshoot:latest
        command: ["sleep", "infinity"]
        securityContext:
          capabilities:
            add: ["NET_ADMIN", "SYS_MODULE"]
        resources:
          requests:
            cpu: 100m
            memory: 100Mi
          limits:
            cpu: 100m
            memory: 100Mi
      restartPolicy: Always