amazon-eks-ami
amazon-eks-ami copied to clipboard
awslabs
Packer configuration for building a custom EKS AMI
Hey Guys, In the docs you have a an IAM Policy [listed](https://github.com/awslabs/amazon-eks-ami/blob/main/doc/usage/overview.md), however this policy isn't suitable for the kubetest portion of the workflow. Wondering if you'd mind sharing it...
**Description of changes:** When using hardened images (i.e. CIS or STIG) there are a few changes required to get everything running and have nodes join the cluster. **Testing Done** Here's...
**What would you like to be added**: Currently, you can find the AMI ID for an AMI by retrieving a public SSM parameter. The path varies by Kubernetes Version, OS,...
**What happened**: I wanted to install additional packages with cloud-init. I added a packages to the `packages:` array in cloud-init yaml and applied. The package was not installed. **What you...
Hi, So I was trying to create an instance group with `inf2.xlarge` instance type in an eks cluster. According to the AWS docs: [here](https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html#gpu-ami) & AWS Neuron Docs: [here](https://awsdocs-neuron.readthedocs-hosted.com/en/latest/containers/kubernetes-getting-started.html), the...
**What would you like to be added**: The log scraping script should start pulling netfilter ipvs virtual endpoint to associated destination endpoint mapping, along with the [iptables-legacy information](https://github.com/awslabs/amazon-eks-ami/blob/fbfa1bc129f57f514b0fb04ab77dbb5d726364a3/log-collector-script/linux/eks-log-collector.sh#L331) relied on...
**What happened**: Trying to build in the gov cloud region is was noticed that the BINARY_BUCKET_REGION is being used to assume the region of ecr when utilizing cached images. According...
**Issue #, if available:** Fixes #1490 **Description of changes:** This PR's goal is to add a default CPU and memory reservation for the `/system` cgroup. We do not intend to...
**Issue #, if available:** **Description of changes:** When nodes failover in EKS, regardless of their size, the default RegistryPullQPS of 5 highly limits their ability to startup cleanly when running...
**Issue #1791** **Description of changes:** - After the command to `start the kubelet`, a conditional check is added. The `systemctl is-active --quiet kubelet` command will succeed (exit code 0) if...
