IPv6 support
All Kuma entities do support running in mixed IPv4 and IPv6 environments as well as pure IPv6 setup. This includes global and zone control planes, the data plane proxy, the accompanying iptables scripts and the CNI.
For the most part any IPv6 setup will work out of the box, but there are some specifics that need to be taken into account:
- when data plane proxies are run in an IPv6-only environment (i.e. no IPv4 address), the DNS should be set to generate relevant IPv6 addresses using
KUMA_DNS_SERVER_CIDR
. Please make sure there is no overlap with a pre-existing network in your environment.
Disabling IPv6
In some cases you might not want to use IPv6 at all.
To turn it off for all workloads set either:
- config option
runtime.kubernetes.injector.sidecarContainer.ipFamilyMode=ipv4
- the environment variable
KUMA_RUNTIME_KUBERNETES_INJECTOR_SIDECAR_CONTAINER_IP_FAMILY_MODE=ipv4
To turn it off for a specific Pod, add the annotation kuma.io/transparent-proxying-ip-family-mode: ipv4
.
In your Dataplane resource, set networking.transparentProxying.ipFamilyMode=IPv4
.