IPv6 support

All Kuma entities do support running in mixed IPv4 and IPv6 environments as well as pure IPv6 setup. This includes global and zone control planes, the data plane proxy, the accompanying iptables scripts and the CNI.

For the most part any IPv6 setup will work out of the box, but there are some specifics that need to be taken into account:

  • when data plane proxies are run in an IPv6-only environment (i.e. no IPv4 address), the DNS should be set to generate relevant IPv6 addresses using KUMA_DNS_SERVER_CIDR. Please make sure there is no overlap with a pre-existing network in your environment.

    Disabling IPv6

In some cases you might not want to use IPv6 at all.

To turn it off for all workloads set either:

  • config option runtime.kubernetes.injector.sidecarContainer.ipFamilyMode=ipv4
  • the environment variable KUMA_RUNTIME_KUBERNETES_INJECTOR_SIDECAR_CONTAINER_IP_FAMILY_MODE=ipv4

To turn it off for a specific Pod, add the annotation kuma.io/transparent-proxying-ip-family-mode: ipv4.