--- apiVersion: extensions/v1beta1 kind: DaemonSet metadata: labels: k8s-app: kube-proxy eks.amazonaws.com/component: kube-proxy name: kube-proxy namespace: kube-system spec: selector: matchLabels: k8s-app: kube-proxy updateStrategy: type: RollingUpdate rollingUpdate: maxUnavailable: 10% template: metadata: labels: k8s-app: kube-proxy spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchExpressions: - key: "beta.kubernetes.io/os" operator: In values: - linux - key: "beta.kubernetes.io/arch" operator: In values: - arm64 hostNetwork: true tolerations: - operator: "Exists" priorityClassName: system-node-critical containers: - name: kube-proxy image: 602401143452.dkr.ecr.us-west-2.amazonaws.com/eks/kube-proxy-arm64:v1.15.10 resources: requests: cpu: 100m command: - /bin/sh - -c - kube-proxy --v=2 --config=/var/lib/kube-proxy-config/config securityContext: privileged: true volumeMounts: - mountPath: /var/log name: varlog readOnly: false - mountPath: /run/xtables.lock name: xtables-lock readOnly: false - mountPath: /lib/modules name: lib-modules readOnly: true - name: kubeconfig mountPath: /var/lib/kube-proxy/ - name: config mountPath: /var/lib/kube-proxy-config/ volumes: - name: varlog hostPath: path: /var/log - name: xtables-lock hostPath: path: /run/xtables.lock type: FileOrCreate - name: lib-modules hostPath: path: /lib/modules - name: kubeconfig configMap: name: kube-proxy - name: config configMap: name: kube-proxy-config serviceAccountName: kube-proxy