mirror of
https://github.com/imjasonh/gcloud-help
synced 2026-07-13 16:37:00 +00:00
gcloud: Thu Jun 22 10:31:35 UTC 2023
This commit is contained in:
parent
2102dc5511
commit
dc0d916cee
219 changed files with 5076 additions and 1639 deletions
|
|
@ -5,6 +5,7 @@ NAME
|
|||
SYNOPSIS
|
||||
gcloud alpha container clusters create NAME
|
||||
[--accelerator=[type=TYPE,[count=COUNT,
|
||||
gpu-driver-version=GPU_DRIVER_VERSION,
|
||||
gpu-partition-size=GPU_PARTITION_SIZE,
|
||||
gpu-sharing-strategy=GPU_SHARING_STRATEGY,
|
||||
max-shared-clients-per-gpu=MAX_SHARED_CLIENTS_PER_GPU],...]]
|
||||
|
|
@ -59,12 +60,14 @@ SYNOPSIS
|
|||
[--private-endpoint-subnetwork=NAME]
|
||||
[--private-ipv6-google-access-type=PRIVATE_IPV6_GOOGLE_ACCESS_TYPE]
|
||||
[--release-channel=CHANNEL] [--security-group=SECURITY_GROUP]
|
||||
[--services-ipv4-cidr=CIDR] [--services-secondary-range-name=NAME]
|
||||
[--security-posture=SECURITY_POSTURE] [--services-ipv4-cidr=CIDR]
|
||||
[--services-secondary-range-name=NAME]
|
||||
[--shielded-integrity-monitoring] [--shielded-secure-boot] [--spot]
|
||||
[--stack-type=STACK_TYPE] [--subnetwork=SUBNETWORK]
|
||||
[--system-config-from-file=SYSTEM_CONFIG_FROM_FILE]
|
||||
[--tags=TAG,[TAG,...]] [--threads-per-core=THREADS_PER_CORE]
|
||||
[--workload-metadata=WORKLOAD_METADATA] [--workload-pool=WORKLOAD_POOL]
|
||||
[--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING]
|
||||
[--additional-zones=ZONE,[ZONE,...] | --node-locations=ZONE,[ZONE,...]]
|
||||
[--binauthz-policy=BINAUTHZ_POLICY
|
||||
--binauthz-evaluation-mode=BINAUTHZ_EVALUATION_MODE
|
||||
|
|
@ -135,7 +138,7 @@ POSITIONAL ARGUMENTS
|
|||
40 characters.
|
||||
|
||||
FLAGS
|
||||
--accelerator=[type=TYPE,[count=COUNT,gpu-partition-size=GPU_PARTITION_SIZE,gpu-sharing-strategy=GPU_SHARING_STRATEGY,max-shared-clients-per-gpu=MAX_SHARED_CLIENTS_PER_GPU],...]
|
||||
--accelerator=[type=TYPE,[count=COUNT,gpu-driver-version=GPU_DRIVER_VERSION,gpu-partition-size=GPU_PARTITION_SIZE,gpu-sharing-strategy=GPU_SHARING_STRATEGY,max-shared-clients-per-gpu=MAX_SHARED_CLIENTS_PER_GPU],...]
|
||||
Attaches accelerators (e.g. GPUs) to all nodes.
|
||||
|
||||
type
|
||||
|
|
@ -148,6 +151,20 @@ FLAGS
|
|||
(Optional) The number of accelerators to attach to the instances.
|
||||
The default value is 1.
|
||||
|
||||
gpu-driver-version
|
||||
(Optional) The NVIDIA driver version to install. GPU_DRIVER_VERSION
|
||||
must be one of:
|
||||
|
||||
`default`: Install the default driver version. If you omit the flag `gpu-driver-version`,
|
||||
this is the default option.
|
||||
|
||||
`latest`: Install the latest available driver version. Available only for
|
||||
nodes that use Container-Optimized OS.
|
||||
|
||||
`disabled`: Skip automatic driver installation. You must [manually install a
|
||||
driver](https://cloud.google.com/kubernetes-engine/docs/how-to/gpus#installing_drivers)
|
||||
after you create the cluster.
|
||||
|
||||
gpu-partition-size
|
||||
(Optional) The GPU partition size used when running multi-instance
|
||||
GPUs. For information about multi-instance GPUs, refer to:
|
||||
|
|
@ -997,6 +1014,18 @@ FLAGS
|
|||
|
||||
If unspecified, no groups will be returned for use with RBAC.
|
||||
|
||||
--security-posture=SECURITY_POSTURE
|
||||
Sets the mode of the Kubernetes security posture API's off-cluster
|
||||
features.
|
||||
|
||||
To enable in standard mode explicitly set the flag to
|
||||
--security-posture=standard
|
||||
|
||||
To disable in an existing cluster, explicitly set the flag to
|
||||
--security-posture=disabled.
|
||||
|
||||
SECURITY_POSTURE must be one of: disabled, standard.
|
||||
|
||||
--services-ipv4-cidr=CIDR
|
||||
Set the IP range for the services IPs.
|
||||
|
||||
|
|
@ -1158,6 +1187,18 @@ FLAGS
|
|||
|
||||
https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
|
||||
|
||||
--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
|
||||
Sets the mode of the Kubernetes security posture API's workload
|
||||
vulnerability scanning.
|
||||
|
||||
To enable in standard mode explicitly set the flag to
|
||||
--workload-vulnerability-scanning=standard.
|
||||
|
||||
To disable in an existing cluster, explicitly set the flag to
|
||||
--workload-vulnerability-scanning=disabled.
|
||||
|
||||
WORKLOAD_VULNERABILITY_SCANNING must be one of: disabled, standard.
|
||||
|
||||
At most one of these can be specified:
|
||||
|
||||
--additional-zones=ZONE,[ZONE,...]
|
||||
|
|
|
|||
|
|
@ -17,8 +17,10 @@ SYNOPSIS
|
|||
[--logging=[COMPONENT,...]] [--monitoring=[COMPONENT,...]]
|
||||
[--network=NETWORK] [--private-endpoint-subnetwork=NAME]
|
||||
[--release-channel=CHANNEL] [--security-group=SECURITY_GROUP]
|
||||
[--services-ipv4-cidr=CIDR] [--services-secondary-range-name=NAME]
|
||||
[--subnetwork=SUBNETWORK]
|
||||
[--security-posture=SECURITY_POSTURE] [--services-ipv4-cidr=CIDR]
|
||||
[--services-secondary-range-name=NAME] [--subnetwork=SUBNETWORK]
|
||||
[--workload-policies=WORKLOAD_POLICIES]
|
||||
[--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING]
|
||||
[--binauthz-evaluation-mode=BINAUTHZ_EVALUATION_MODE
|
||||
--binauthz-policy=BINAUTHZ_POLICY]
|
||||
[--enable-master-authorized-networks
|
||||
|
|
@ -269,6 +271,18 @@ FLAGS
|
|||
|
||||
If unspecified, no groups will be returned for use with RBAC.
|
||||
|
||||
--security-posture=SECURITY_POSTURE
|
||||
Sets the mode of the Kubernetes security posture API's off-cluster
|
||||
features.
|
||||
|
||||
To enable in standard mode explicitly set the flag to
|
||||
--security-posture=standard
|
||||
|
||||
To disable in an existing cluster, explicitly set the flag to
|
||||
--security-posture=disabled.
|
||||
|
||||
SECURITY_POSTURE must be one of: disabled, standard.
|
||||
|
||||
--services-ipv4-cidr=CIDR
|
||||
Set the IP range for the services IPs.
|
||||
|
||||
|
|
@ -297,6 +311,28 @@ FLAGS
|
|||
|
||||
Cannot be used with the "--create-subnetwork" option.
|
||||
|
||||
--workload-policies=WORKLOAD_POLICIES
|
||||
Add Autopilot workload policies to the cluster.
|
||||
|
||||
Examples:
|
||||
|
||||
$ gcloud alpha container clusters create-auto example-cluster \
|
||||
--workload-policies=allow-net-admin
|
||||
|
||||
The only supported workload policy is 'allow-net-admin'.
|
||||
|
||||
--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
|
||||
Sets the mode of the Kubernetes security posture API's workload
|
||||
vulnerability scanning.
|
||||
|
||||
To enable in standard mode explicitly set the flag to
|
||||
--workload-vulnerability-scanning=standard.
|
||||
|
||||
To disable in an existing cluster, explicitly set the flag to
|
||||
--workload-vulnerability-scanning=disabled.
|
||||
|
||||
WORKLOAD_VULNERABILITY_SCANNING must be one of: disabled, standard.
|
||||
|
||||
Flags for Binary Authorization:
|
||||
|
||||
--binauthz-evaluation-mode=BINAUTHZ_EVALUATION_MODE
|
||||
|
|
|
|||
|
|
@ -29,11 +29,16 @@ SYNOPSIS
|
|||
pubsub-topic=TOPIC,...]
|
||||
| --private-ipv6-google-access-type=PRIVATE_IPV6_GOOGLE_ACCESS_TYPE
|
||||
| --release-channel=CHANNEL | --remove-labels=[KEY,...]
|
||||
| --remove-workload-policies=REMOVE_WORKLOAD_POLICIES
|
||||
| --security-group=SECURITY_GROUP
|
||||
| --security-posture=SECURITY_POSTURE
|
||||
| --security-profile=SECURITY_PROFILE | --set-password
|
||||
| --stack-type=STACK_TYPE | --start-credential-rotation
|
||||
| --start-ip-rotation | --update-addons=[ADDON=ENABLED|DISABLED,...]
|
||||
| --update-labels=[KEY=VALUE,...] | --workload-pool=WORKLOAD_POOL
|
||||
| --update-labels=[KEY=VALUE,...]
|
||||
| --workload-policies=WORKLOAD_POLICIES
|
||||
| --workload-pool=WORKLOAD_POOL
|
||||
| --workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
|
||||
| --additional-pod-ipv4-ranges=NAME,[NAME,...]
|
||||
--remove-additional-pod-ipv4-ranges=NAME,[NAME,...]
|
||||
| --additional-zones=[ZONE,...] | --node-locations=ZONE,[ZONE,...]
|
||||
|
|
@ -499,6 +504,16 @@ REQUIRED FLAGS
|
|||
$ gcloud alpha container clusters update example-cluster \
|
||||
--remove-labels=label_a,label_b
|
||||
|
||||
--remove-workload-policies=REMOVE_WORKLOAD_POLICIES
|
||||
Remove Autopilot workload policies from the cluster.
|
||||
|
||||
Examples:
|
||||
|
||||
$ gcloud alpha container clusters update example-cluster \
|
||||
--remove-workload-policies=allow-net-admin
|
||||
|
||||
The only supported workload policy is 'allow-net-admin'.
|
||||
|
||||
--security-group=SECURITY_GROUP
|
||||
The name of the RBAC security group for use with Google security
|
||||
groups in Kubernetes RBAC
|
||||
|
|
@ -510,6 +525,18 @@ REQUIRED FLAGS
|
|||
|
||||
If unspecified, no groups will be returned for use with RBAC.
|
||||
|
||||
--security-posture=SECURITY_POSTURE
|
||||
Sets the mode of the Kubernetes security posture API's off-cluster
|
||||
features.
|
||||
|
||||
To enable in standard mode explicitly set the flag to
|
||||
--security-posture=standard
|
||||
|
||||
To disable in an existing cluster, explicitly set the flag to
|
||||
--security-posture=disabled.
|
||||
|
||||
SECURITY_POSTURE must be one of: disabled, standard.
|
||||
|
||||
--security-profile=SECURITY_PROFILE
|
||||
Name and version of the security profile to be applied to the
|
||||
cluster. If not specified, the current setting of security profile
|
||||
|
|
@ -570,6 +597,16 @@ REQUIRED FLAGS
|
|||
$ gcloud alpha container clusters update example-cluster \
|
||||
--update-labels=label_a=value1,label_b=value2
|
||||
|
||||
--workload-policies=WORKLOAD_POLICIES
|
||||
Add Autopilot workload policies to the cluster.
|
||||
|
||||
Examples:
|
||||
|
||||
$ gcloud alpha container clusters update example-cluster \
|
||||
--workload-policies=allow-net-admin
|
||||
|
||||
The only supported workload policy is 'allow-net-admin'.
|
||||
|
||||
--workload-pool=WORKLOAD_POOL
|
||||
Enable Workload Identity on the cluster.
|
||||
|
||||
|
|
@ -583,6 +620,18 @@ REQUIRED FLAGS
|
|||
|
||||
https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
|
||||
|
||||
--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
|
||||
Sets the mode of the Kubernetes security posture API's workload
|
||||
vulnerability scanning.
|
||||
|
||||
To enable in standard mode explicitly set the flag to
|
||||
--workload-vulnerability-scanning=standard.
|
||||
|
||||
To disable in an existing cluster, explicitly set the flag to
|
||||
--workload-vulnerability-scanning=disabled.
|
||||
|
||||
WORKLOAD_VULNERABILITY_SCANNING must be one of: disabled, standard.
|
||||
|
||||
--additional-pod-ipv4-ranges=NAME,[NAME,...]
|
||||
Additional IP address ranges(by name) for pods that need to be added
|
||||
to the cluster.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue