Cleanup fedora coreos with crio container (#5887)

* fix upgrade of crio on fcos - update documents * install conntrack required by kube-proxy - like commit 48c41bcbe7 * enable fedora modular repo for crio * allow to override crio configuration - set cgroup manager same to kubelet_cgroup_driver if defined - path of seccomp_profile depends on distribution * allow to override crio configuration - fix path for ubuntu * allow to override crio configuration - fix cni path for fcos
2026-02-16 02:30:03 -03:30 · 2020-04-11 08:51:47 +02:00
parent 7d6ef61491
commit 9c3b573f8e
10 changed files with 60 additions and 27 deletions
--- a/docs/fcos.md
+++ b/docs/fcos.md
@@ -1,6 +1,7 @@
 # Fedora CoreOS

-Tested with stable version 31.20200223.3.0
+Tested with stable version 31.20200223.3.0.
+
 Because package installation with `rpm-ostree` requires a reboot, playbook may fail while bootstrap.
 Restart playbook again.

@@ -35,11 +36,25 @@ systemd:
        WantedBy=multi-user.target
 ```

+## Network
+
+### calico
+
+To use calico create sysctl file with ignition:
+
+```yaml
+files:
+    - path: /etc/sysctl.d/reverse-path-filter.conf
+      contents:
+        inline: |
+          net.ipv4.conf.all.rp_filter=1
+```
+
 ## libvirt setup

 ### Prepare

-Prepare ignition and serve via http (a.e. python -m SimpleHTTPServer )
+Prepare ignition and serve via http (a.e. python -m http.server )

 ```json
 {
@@ -50,10 +65,9 @@ Prepare ignition and serve via http (a.e. python -m SimpleHTTPServer )
  "passwd": {
    "users": [
      {
-        "name": "adi",
-        "passwordHash": "$1$.RGu8J4x$U7uxcOg/eotTEIRxhk62I0",
+        "name": "ansibleUser",
        "sshAuthorizedKeys": [
-          "ssh-rsa ..fillyouruser"
+          "ssh-rsa ..publickey.."
        ],
        "groups": [ "wheel" ]
      }