Automate kube-proxy configuration and add ipconfigupdate for nodesubnet

Copilot · santhoshmprabhu · Copilot · commit ca05852d9283 · 2025-07-18T19:40:22.000Z
Co-authored-by: santhoshmprabhu &lt;6684582+santhoshmprabhu@users.noreply.github.com&gt;
diff --git a/hack/aks/Makefile b/hack/aks/Makefile
@@ -145,6 +145,10 @@ nodesubnet-byocni-nokubeproxy-up: rg-up ipv4 overlay-net-up ## Brings up an Node
 		$(LTS_ARGS) \
 		--yes
 	@$(MAKE) set-kubeconf
+	@$(MAKE) nodesubnet-ipconfigupdate
+
+nodesubnet-ipconfigupdate: ## Run ipconfigupdate for NodeSubnet clusters
+	RESOURCE_GROUP=MC_$(GROUP)_$(CLUSTER)_$(REGION) go run test/integration/cilium-nodesubnet/ipconfigupdate.go
 
 overlay-byocni-up: rg-up ipv4 overlay-net-up ## Brings up an Overlay BYO CNI cluster
 	$(AZCLI) aks create -n $(CLUSTER) -g $(GROUP) -l $(REGION) \
diff --git a/hack/aks/README-byocni.md b/hack/aks/README-byocni.md
@@ -66,8 +66,6 @@ All parameters have sensible defaults as specified below. Only the `--subscripti
 | `--kubernetes-version` | Kubernetes version for the cluster | `1.33` |
 | `--vm-size` | Azure VM size for cluster nodes | `Standard_B2s` |
 | `--networking-mode` | Networking mode (overlay, swift, nodesubnet, dualstack-overlay, vnetscale-swift) | `overlay` |
-| `--no-kube-proxy` | Create cluster without kube-proxy | `true` |
-| `--with-kube-proxy` | Create cluster with kube-proxy | Overrides --no-kube-proxy |
 | `--cni-plugin` | CNI plugin (cilium, azure-cni, none) | `cilium` |
 | `--cns-version` | CNS version to deploy | `v1.5.38` |
 | `--azure-ipam-version` | Azure IPAM version | `v0.3.0` |
@@ -80,17 +78,17 @@ All parameters have sensible defaults as specified below. Only the `--subscripti
 
 ## Networking Modes
 
-- **overlay**: Standard overlay networking mode (supports kube-proxy and no-kube-proxy)
-- **swift**: SWIFT networking mode (supports kube-proxy and no-kube-proxy)
-- **nodesubnet**: NodeSubnet networking mode (only supports no-kube-proxy)
-- **dualstack-overlay**: Dualstack overlay networking mode (supports kube-proxy and no-kube-proxy)
-- **vnetscale-swift**: VNet Scale SWIFT networking mode (supports kube-proxy and no-kube-proxy)
+- **overlay**: Standard overlay networking mode
+- **swift**: SWIFT networking mode  
+- **nodesubnet**: NodeSubnet networking mode
+- **dualstack-overlay**: Dualstack overlay networking mode
+- **vnetscale-swift**: VNet Scale SWIFT networking mode
 
 ## CNI Plugins
 
-- **cilium**: Deploy Cilium CNI with configurable versions (default)
-- **azure-cni**: Deploy Azure CNI Manager
-- **none**: Deploy only cluster and CNS, no CNI plugin
+- **cilium**: Deploy Cilium CNI with configurable versions (default, automatically disables kube-proxy)
+- **azure-cni**: Deploy Azure CNI Manager (automatically enables kube-proxy)
+- **none**: Deploy only cluster and CNS, no CNI plugin (automatically disables kube-proxy)
 
 ## Supported Cilium Versions
 
@@ -140,16 +138,7 @@ cd /path/to/azure-container-networking
     --subscription 9b8218f9-902a-4d20-a65c-e98acec5362f
 ```
 
-### Example 5: Cluster with kube-proxy enabled
-```bash
-cd /path/to/azure-container-networking
-./hack/aks/create-byocni-cluster.sh \
-    --subscription 9b8218f9-902a-4d20-a65c-e98acec5362f \
-    --networking-mode overlay \
-    --with-kube-proxy
-```
-
-### Example 6: Dualstack cluster with Cilium
+### Example 5: Dualstack cluster with Cilium
 ```bash
 cd /path/to/azure-container-networking
 ./hack/aks/create-byocni-cluster.sh \
@@ -159,7 +148,7 @@ cd /path/to/azure-container-networking
     --cilium-version-tag v1.17.0
 ```
 
-### Example 7: Cluster with specific Kubernetes version
+### Example 6: Cluster with specific Kubernetes version
 ```bash
 cd /path/to/azure-container-networking
 ./hack/aks/create-byocni-cluster.sh \
diff --git a/hack/aks/create-byocni-cluster.sh b/hack/aks/create-byocni-cluster.sh
@@ -46,8 +46,6 @@ OPTIONS:
     -k, --kubernetes-version VER    Kubernetes version for the cluster (default: ${DEFAULT_KUBERNETES_VERSION})
     -v, --vm-size VM_SIZE           Azure VM size for cluster nodes (default: ${DEFAULT_VM_SIZE})
     -n, --networking-mode MODE      Networking mode: overlay, swift, nodesubnet, dualstack-overlay, vnetscale-swift (default: ${DEFAULT_NETWORKING_MODE})
-    --no-kube-proxy                 Create cluster without kube-proxy (default: ${DEFAULT_NO_KUBE_PROXY})
-    --with-kube-proxy               Create cluster with kube-proxy (overrides --no-kube-proxy)
     --cni-plugin PLUGIN             CNI plugin to deploy: cilium, azure-cni, none (default: ${DEFAULT_CNI_PLUGIN})
     --cns-version VERSION           CNS version to deploy (default: ${DEFAULT_CNS_VERSION})
     --azure-ipam-version VERSION    Azure IPAM version (default: ${DEFAULT_AZURE_IPAM_VERSION})
@@ -87,9 +85,6 @@ EXAMPLES:
     # Custom cluster name and resource group
     $0 --cluster my-cluster --resource-group my-rg --subscription 9b8218f9-902a-4d20-a65c-e98acec5362f
 
-    # Cluster with kube-proxy enabled
-    $0 --subscription 9b8218f9-902a-4d20-a65c-e98acec5362f --with-kube-proxy
-
     # Using different Cilium version
     $0 --subscription 9b8218f9-902a-4d20-a65c-e98acec5362f --cilium-dir 1.16 --cilium-version-tag v1.16.0
 
@@ -538,14 +533,6 @@ while [[ $# -gt 0 ]]; do
             NETWORKING_MODE="$2"
             shift 2
             ;;
-        --no-kube-proxy)
-            NO_KUBE_PROXY="true"
-            shift
-            ;;
-        --with-kube-proxy)
-            NO_KUBE_PROXY="false"
-            shift
-            ;;
         --cni-plugin)
             CNI_PLUGIN="$2"
             shift 2
@@ -601,6 +588,13 @@ if [[ -z "${SUBSCRIPTION}" ]]; then
     exit 1
 fi
 
+# Set kube-proxy configuration based on CNI plugin
+if [[ "${CNI_PLUGIN}" == "cilium" || "${CNI_PLUGIN}" == "none" ]]; then
+    NO_KUBE_PROXY="true"
+else
+    NO_KUBE_PROXY="false"
+fi
+
 # Main execution
 main() {
     log "Starting BYO CNI cluster creation..."
