apiVersion: apps/v1 kind: DaemonSet metadata: name: loxilb-lb namespace: kube-system spec: selector: matchLabels: app: loxilb-app template: metadata: name: loxilb-lb labels: app: loxilb-app spec: hostNetwork: true dnsPolicy: ClusterFirstWithHostNet tolerations: - key: "node-role.kubernetes.io/master" operator: Exists - key: "node-role.kubernetes.io/control-plane" operator: Exists affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchExpressions: - key: "node-role.kubernetes.io/master" operator: Exists - key: "node-role.kubernetes.io/control-plane" operator: Exists containers: - name: loxilb-app image: "ghcr.io/loxilb-io/loxilb:latest" imagePullPolicy: Always command: [ "/root/loxilb-io/loxilb/loxilb", "--bgp", "--egr-hooks", "--blacklist=cni[0-9a-z]|veth.|flannel.|cali.|tunl.|vxlan[.]calico" ] ports: - containerPort: 11111 - containerPort: 179 - containerPort: 50051 securityContext: privileged: true capabilities: add: - SYS_ADMIN --- apiVersion: v1 kind: Service metadata: name: loxilb-egress-service namespace: kube-system annotations: loxilb.io/usepodnetwork: "yes" spec: externalTrafficPolicy: Local type: LoadBalancer loadBalancerClass: loxilb.io/loxilb selector: app: loxilb-app ports: - name: loxilb-egress port: 2020 targetPort: 8080 protocol: TCP --- apiVersion: v1 kind: Service metadata: name: loxilb-lb-service namespace: kube-system spec: clusterIP: None selector: app: loxilb-app ports: - name: loxilb-app port: 11111 targetPort: 11111 protocol: TCP - name: loxilb-app-bgp port: 179 targetPort: 179 protocol: TCP - name: loxilb-app-gobgp port: 50051 targetPort: 50051 protocol: TCP