1
0
Fork 0
mirror of https://github.com/imjasonh/gcloud-help synced 2026-07-13 16:37:00 +00:00

gcloud: Thu Jun 22 10:31:35 UTC 2023

This commit is contained in:
Automated 2023-06-22 10:31:35 +00:00
parent 2102dc5511
commit dc0d916cee
219 changed files with 5076 additions and 1639 deletions

View file

@ -5,6 +5,7 @@ NAME
SYNOPSIS
gcloud alpha container clusters create NAME
[--accelerator=[type=TYPE,[count=COUNT,
gpu-driver-version=GPU_DRIVER_VERSION,
gpu-partition-size=GPU_PARTITION_SIZE,
gpu-sharing-strategy=GPU_SHARING_STRATEGY,
max-shared-clients-per-gpu=MAX_SHARED_CLIENTS_PER_GPU],...]]
@ -59,12 +60,14 @@ SYNOPSIS
[--private-endpoint-subnetwork=NAME]
[--private-ipv6-google-access-type=PRIVATE_IPV6_GOOGLE_ACCESS_TYPE]
[--release-channel=CHANNEL] [--security-group=SECURITY_GROUP]
[--services-ipv4-cidr=CIDR] [--services-secondary-range-name=NAME]
[--security-posture=SECURITY_POSTURE] [--services-ipv4-cidr=CIDR]
[--services-secondary-range-name=NAME]
[--shielded-integrity-monitoring] [--shielded-secure-boot] [--spot]
[--stack-type=STACK_TYPE] [--subnetwork=SUBNETWORK]
[--system-config-from-file=SYSTEM_CONFIG_FROM_FILE]
[--tags=TAG,[TAG,...]] [--threads-per-core=THREADS_PER_CORE]
[--workload-metadata=WORKLOAD_METADATA] [--workload-pool=WORKLOAD_POOL]
[--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING]
[--additional-zones=ZONE,[ZONE,...] | --node-locations=ZONE,[ZONE,...]]
[--binauthz-policy=BINAUTHZ_POLICY
--binauthz-evaluation-mode=BINAUTHZ_EVALUATION_MODE
@ -135,7 +138,7 @@ POSITIONAL ARGUMENTS
40 characters.
FLAGS
--accelerator=[type=TYPE,[count=COUNT,gpu-partition-size=GPU_PARTITION_SIZE,gpu-sharing-strategy=GPU_SHARING_STRATEGY,max-shared-clients-per-gpu=MAX_SHARED_CLIENTS_PER_GPU],...]
--accelerator=[type=TYPE,[count=COUNT,gpu-driver-version=GPU_DRIVER_VERSION,gpu-partition-size=GPU_PARTITION_SIZE,gpu-sharing-strategy=GPU_SHARING_STRATEGY,max-shared-clients-per-gpu=MAX_SHARED_CLIENTS_PER_GPU],...]
Attaches accelerators (e.g. GPUs) to all nodes.
type
@ -148,6 +151,20 @@ FLAGS
(Optional) The number of accelerators to attach to the instances.
The default value is 1.
gpu-driver-version
(Optional) The NVIDIA driver version to install. GPU_DRIVER_VERSION
must be one of:
`default`: Install the default driver version. If you omit the flag `gpu-driver-version`,
this is the default option.
`latest`: Install the latest available driver version. Available only for
nodes that use Container-Optimized OS.
`disabled`: Skip automatic driver installation. You must [manually install a
driver](https://cloud.google.com/kubernetes-engine/docs/how-to/gpus#installing_drivers)
after you create the cluster.
gpu-partition-size
(Optional) The GPU partition size used when running multi-instance
GPUs. For information about multi-instance GPUs, refer to:
@ -997,6 +1014,18 @@ FLAGS
If unspecified, no groups will be returned for use with RBAC.
--security-posture=SECURITY_POSTURE
Sets the mode of the Kubernetes security posture API's off-cluster
features.
To enable in standard mode explicitly set the flag to
--security-posture=standard
To disable in an existing cluster, explicitly set the flag to
--security-posture=disabled.
SECURITY_POSTURE must be one of: disabled, standard.
--services-ipv4-cidr=CIDR
Set the IP range for the services IPs.
@ -1158,6 +1187,18 @@ FLAGS
https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
Sets the mode of the Kubernetes security posture API's workload
vulnerability scanning.
To enable in standard mode explicitly set the flag to
--workload-vulnerability-scanning=standard.
To disable in an existing cluster, explicitly set the flag to
--workload-vulnerability-scanning=disabled.
WORKLOAD_VULNERABILITY_SCANNING must be one of: disabled, standard.
At most one of these can be specified:
--additional-zones=ZONE,[ZONE,...]

View file

@ -17,8 +17,10 @@ SYNOPSIS
[--logging=[COMPONENT,...]] [--monitoring=[COMPONENT,...]]
[--network=NETWORK] [--private-endpoint-subnetwork=NAME]
[--release-channel=CHANNEL] [--security-group=SECURITY_GROUP]
[--services-ipv4-cidr=CIDR] [--services-secondary-range-name=NAME]
[--subnetwork=SUBNETWORK]
[--security-posture=SECURITY_POSTURE] [--services-ipv4-cidr=CIDR]
[--services-secondary-range-name=NAME] [--subnetwork=SUBNETWORK]
[--workload-policies=WORKLOAD_POLICIES]
[--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING]
[--binauthz-evaluation-mode=BINAUTHZ_EVALUATION_MODE
--binauthz-policy=BINAUTHZ_POLICY]
[--enable-master-authorized-networks
@ -269,6 +271,18 @@ FLAGS
If unspecified, no groups will be returned for use with RBAC.
--security-posture=SECURITY_POSTURE
Sets the mode of the Kubernetes security posture API's off-cluster
features.
To enable in standard mode explicitly set the flag to
--security-posture=standard
To disable in an existing cluster, explicitly set the flag to
--security-posture=disabled.
SECURITY_POSTURE must be one of: disabled, standard.
--services-ipv4-cidr=CIDR
Set the IP range for the services IPs.
@ -297,6 +311,28 @@ FLAGS
Cannot be used with the "--create-subnetwork" option.
--workload-policies=WORKLOAD_POLICIES
Add Autopilot workload policies to the cluster.
Examples:
$ gcloud alpha container clusters create-auto example-cluster \
--workload-policies=allow-net-admin
The only supported workload policy is 'allow-net-admin'.
--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
Sets the mode of the Kubernetes security posture API's workload
vulnerability scanning.
To enable in standard mode explicitly set the flag to
--workload-vulnerability-scanning=standard.
To disable in an existing cluster, explicitly set the flag to
--workload-vulnerability-scanning=disabled.
WORKLOAD_VULNERABILITY_SCANNING must be one of: disabled, standard.
Flags for Binary Authorization:
--binauthz-evaluation-mode=BINAUTHZ_EVALUATION_MODE

View file

@ -29,11 +29,16 @@ SYNOPSIS
pubsub-topic=TOPIC,...]
| --private-ipv6-google-access-type=PRIVATE_IPV6_GOOGLE_ACCESS_TYPE
| --release-channel=CHANNEL | --remove-labels=[KEY,...]
| --remove-workload-policies=REMOVE_WORKLOAD_POLICIES
| --security-group=SECURITY_GROUP
| --security-posture=SECURITY_POSTURE
| --security-profile=SECURITY_PROFILE | --set-password
| --stack-type=STACK_TYPE | --start-credential-rotation
| --start-ip-rotation | --update-addons=[ADDON=ENABLED|DISABLED,...]
| --update-labels=[KEY=VALUE,...] | --workload-pool=WORKLOAD_POOL
| --update-labels=[KEY=VALUE,...]
| --workload-policies=WORKLOAD_POLICIES
| --workload-pool=WORKLOAD_POOL
| --workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
| --additional-pod-ipv4-ranges=NAME,[NAME,...]
--remove-additional-pod-ipv4-ranges=NAME,[NAME,...]
| --additional-zones=[ZONE,...] | --node-locations=ZONE,[ZONE,...]
@ -499,6 +504,16 @@ REQUIRED FLAGS
$ gcloud alpha container clusters update example-cluster \
--remove-labels=label_a,label_b
--remove-workload-policies=REMOVE_WORKLOAD_POLICIES
Remove Autopilot workload policies from the cluster.
Examples:
$ gcloud alpha container clusters update example-cluster \
--remove-workload-policies=allow-net-admin
The only supported workload policy is 'allow-net-admin'.
--security-group=SECURITY_GROUP
The name of the RBAC security group for use with Google security
groups in Kubernetes RBAC
@ -510,6 +525,18 @@ REQUIRED FLAGS
If unspecified, no groups will be returned for use with RBAC.
--security-posture=SECURITY_POSTURE
Sets the mode of the Kubernetes security posture API's off-cluster
features.
To enable in standard mode explicitly set the flag to
--security-posture=standard
To disable in an existing cluster, explicitly set the flag to
--security-posture=disabled.
SECURITY_POSTURE must be one of: disabled, standard.
--security-profile=SECURITY_PROFILE
Name and version of the security profile to be applied to the
cluster. If not specified, the current setting of security profile
@ -570,6 +597,16 @@ REQUIRED FLAGS
$ gcloud alpha container clusters update example-cluster \
--update-labels=label_a=value1,label_b=value2
--workload-policies=WORKLOAD_POLICIES
Add Autopilot workload policies to the cluster.
Examples:
$ gcloud alpha container clusters update example-cluster \
--workload-policies=allow-net-admin
The only supported workload policy is 'allow-net-admin'.
--workload-pool=WORKLOAD_POOL
Enable Workload Identity on the cluster.
@ -583,6 +620,18 @@ REQUIRED FLAGS
https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
--workload-vulnerability-scanning=WORKLOAD_VULNERABILITY_SCANNING
Sets the mode of the Kubernetes security posture API's workload
vulnerability scanning.
To enable in standard mode explicitly set the flag to
--workload-vulnerability-scanning=standard.
To disable in an existing cluster, explicitly set the flag to
--workload-vulnerability-scanning=disabled.
WORKLOAD_VULNERABILITY_SCANNING must be one of: disabled, standard.
--additional-pod-ipv4-ranges=NAME,[NAME,...]
Additional IP address ranges(by name) for pods that need to be added
to the cluster.