CCE allows you to manage cluster parameters, through which you can let core components work under your requirements.
This function is supported only in clusters of v1.15 and later. It is not displayed for versions earlier than v1.15.
Item |
Parameter |
Description |
Value |
|---|---|---|---|
Toleration time for nodes in NotReady state |
default-not-ready-toleration-seconds |
Specifies the default tolerance time. The configuration takes effect for all pods by default. You can configure different tolerance time for pods. In this case, the tolerance time configured for the pod is used. For details, see Taints and Tolerations. If the specified tolerance time is too short, pods may be frequently migrated in scenarios like a network jitter. If the specified tolerance time is too long, services may be interrupted during this period after the node is faulty. |
Default: 300s |
Toleration time for nodes in unreachable state |
default-unreachable-toleration-seconds |
Specifies the default tolerance time. The configuration takes effect for all pods by default. You can configure different tolerance time for pods. In this case, the tolerance time configured for the pod is used. For details, see Taints and Tolerations. If the specified tolerance time is too short, pods may be frequently migrated in scenarios like a network jitter. If the specified tolerance time is too long, services may be interrupted during this period after the node is faulty. |
Default: 300s |
Maximum Number of Concurrent Modification API Calls |
max-mutating-requests-inflight |
Maximum number of concurrent mutating requests. When the value of this parameter is exceeded, the server rejects requests. The value 0 indicates that there is no limitation on the maximum number of concurrent modification requests. This parameter is related to the cluster scale. You are advised not to change the value. |
Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.
|
Maximum Number of Concurrent Non-Modification API Calls |
max-requests-inflight |
Maximum number of concurrent non-mutating requests. When the value of this parameter is exceeded, the server rejects requests. The value 0 indicates that there is no limitation on the maximum number of concurrent non-modification requests. This parameter is related to the cluster scale. You are advised not to change the value. |
Manual configuration is no longer supported since cluster v1.21. The value is automatically specified based on the cluster scale.
|
NodePort port range |
service-node-port-range |
NodePort port range. After changing the value, go to the security group page and change the TCP/UDP port range of node security groups 30000 to 32767. Otherwise, ports other than the default port cannot be accessed externally. If the port number is smaller than 20106, a conflict may occur between the port and the CCE health check port, which may further lead to unavailable cluster. If the port number is greater than 32767, a conflict may occur between the port and the ports in net.ipv4.ip_local_port_range, which may further affect the network performance. |
Default: 30000 to 32767 Value range: Min > 20105 Max < 32768 |
Request Timeout |
request-timeout |
Default request timeout interval of kube-apiserver. Exercise caution when changing the value of this parameter. Ensure that the changed value is proper to prevent frequent API timeout or other errors. This parameter is available only in clusters of v1.19.16-r30, v1.21.10-r10, v1.23.8-r10, v1.25.3-r10, or later versions. |
Default: 1m0s Value range: Min ≥ 1s Max ≤ 1 hour |
Overload Control |
support-overload |
Cluster overload control. If enabled, concurrent requests are dynamically controlled based on the resource pressure of master nodes to keep them and the cluster available. This parameter is available only in clusters of v1.23 or later. |
|
Item |
Parameter |
Description |
Value |
|---|---|---|---|
Qps for communicating with kube-apiserver |
kube-api-qps |
QPS for communicating with kube-apiserver. |
|
Burst for communicating with kube-apiserver |
kube-api-burst |
Burst for communicating with kube-apiserver. |
|
Whether to enable GPU sharing |
enable-gpu-share |
Whether to enable GPU sharing. This parameter is supported only by clusters of v1.23.7-r10, v1.25.3-r0, and later.
|
Default: true |
Item |
Parameter |
Description |
Value |
|---|---|---|---|
Number of concurrent processing of deployment |
concurrent-deployment-syncs |
Number of deployment objects that are allowed to sync concurrently |
Default: 5 |
Concurrent processing number of endpoint |
concurrent-endpoint-syncs |
Number of endpoint syncing operations that will be done concurrently |
Default: 5 |
Concurrent number of garbage collector |
concurrent-gc-syncs |
Number of garbage collector workers that are allowed to sync concurrently |
Default: 20 |
Number of job objects allowed to sync simultaneously |
concurrent-job-syncs |
Number of job objects that are allowed to sync concurrently |
Default: 5 |
Number of CronJob objects allowed to sync simultaneously |
concurrent-cron-job-syncs |
Number of scheduled jobs that can be synchronized concurrently. |
Default: 5 |
Number of concurrent processing of namespace |
concurrent-namespace-syncs |
Number of namespace objects that are allowed to sync concurrently |
Default: 10 |
Concurrent processing number of replicaset |
concurrent-replicaset-syncs |
Number of replica sets that are allowed to sync concurrently |
Default: 5 |
ResourceQuota |
concurrent-resource-quota-syncs |
Number of resource quotas that are allowed to sync concurrently |
Default: 5 |
Concurrent processing number of service |
concurrent-service-syncs |
Number of services that are allowed to sync concurrently |
Default: 10 |
Concurrent processing number of serviceaccount-token |
concurrent-serviceaccount-token-syncs |
Number of service account token objects that are allowed to sync concurrently |
Default: 5 |
Concurrent processing of ttl-after-finished |
concurrent-ttl-after-finished-syncs |
Number of ttl-after-finished-controller workers that are allowed to sync concurrently |
Default: 5 |
RC |
concurrent-rc-syncs |
Number of replication controllers that are allowed to sync concurrently NOTE:
This parameter is used only in clusters of v1.21 to v1.23. In clusters of v1.25 and later, this parameter is deprecated (officially deprecated from v1.25.3-r0 on). |
Default: 5 |
HPA |
concurrent-horizontal-pod-autoscaler-syncs |
Number of HPA auto scaling requests that can be concurrently processed. |
Default 1 for clusters earlier than v1.27 and 5 for clusters earlier than v1.27 Value range: 1 to 50 |
Cluster elastic computing period |
horizontal-pod-autoscaler-sync-period |
How often HPA audits metrics in a cluster. |
Default: 15 seconds |
Qps for communicating with kube-apiserver |
kube-api-qps |
QPS for communicating with kube-apiserver |
|
Burst for communicating with kube-apiserver |
kube-api-burst |
Burst for communicating with kube-apiserver. |
|
The maximum number of terminated pods that can be kept before the Pod GC deletes the terminated pod |
terminated-pod-gc-threshold |
Number of terminated pods that can exist in a cluster. If there are more terminated pods than the expected number in the cluster, the terminated pods that exceed the number will be deleted. NOTE:
If this parameter is set to 0, all pods in the terminated state are retained. |
Default: 1000 Value range: 10 to 12500 If the cluster version is v1.21.11-r40, v1.23.8-r0, v1.27.3-r0, v1.25.6-r0, or later, the value range is changed to 0 to 100000. |
Item |
Parameter |
Description |
Value |
|---|---|---|---|
The minimum number of network cards bound to the container at the cluster level |
nic-minimum-target |
Minimum number of container ENIs bound to a node The parameter value must be a positive integer. The value 10 indicates that at least 10 container ENIs must be bound to a node. If the number you specified exceeds the container ENI quota of the node, the ENI quota will be used. |
Default: 10 |
Cluster-level node preheating container NIC upper limit check value |
nic-maximum-target |
After the number of ENIs bound to a node exceeds the nic-maximum-target value, CCE will not proactively pre-bind ENIs. Checking the upper limit of pre-bound container ENIs is enabled only when the value of this parameter is greater than or equal to the minimum number of container ENIs (nic-minimum-target) bound to a node. The parameter value must be a positive integer. The value 0 indicates that checking the upper limit of pre-bound container ENIs is disabled. If the number you specified exceeds the container ENI quota of the node, the ENI quota will be used. |
Default: 0 |
Number of NICs for dynamically warming up containers at the cluster level |
nic-warm-target |
Extra ENIs will be pre-bound after the nic-minimum-target is used up in a pod. The value can only be a number. When the value of nic-warm-target + the number of bound ENIs is greater than the value of nic-maximum-target, the system will pre-bind ENIs based on the difference between the value of nic-maximum-target and the number of bound ENIs. |
Default: 2 |
Cluster-level node warm-up container NIC recycling threshold |
nic-max-above-warm-target |
Only when the number of idle ENIs on a node minus the value of nic-warm-target is greater than the threshold, the pre-bound ENIs will be unbound and reclaimed. Only numbers are allowed.
|
Default: 2 |
Low threshold of the number of container ENIs bound to a node in a cluster |
prebound-subeni-percentage |
High threshold of the number of bound ENIs NOTE:
This parameter is being discarded. Use the dynamic pre-binding parameters of the other four ENIs. |
Default: 0:0 |
Item |
Parameter |
Description |
Value |
|---|---|---|---|
Enable resource quota management |
enable-resource-quota |
Indicates whether to automatically create a ResourceQuota when creating a namespace. With quota management, you can control the number of workloads of each type and the upper limits of resources in a namespace or related dimensions.
|
Default: false |