From c92c8d06846b2268f1b0daa1955697fc6f83d402 Mon Sep 17 00:00:00 2001
From: actions <actions@github.com>
Date: Mon, 15 Nov 2021 20:47:14 +0000
Subject: [PATCH] bump versions for v1.21.6 r2 rc1 (#186)

Signed-off-by: Brian Downs <brian.downs@gmail.com>
---
 ...e-proxy-v1.21.6-rke2r2-build2021111501.tgz | Bin 0 -> 4333 bytes
 .../v1.21.6-rke2r2-build2021111501/Chart.yaml |  12 ++
 .../templates/NOTES.txt                       |   2 +
 .../templates/_helpers.tpl                    |  21 +++
 .../templates/config.yaml                     |  69 +++++++++
 .../templates/daemonset.yaml                  |  78 ++++++++++
 .../templates/rbac.yaml                       |  12 ++
 .../templates/serviceaccount.yaml             |   5 +
 .../values.yaml                               | 142 ++++++++++++++++++
 index.yaml                                    |  16 ++
 10 files changed, 357 insertions(+)
 create mode 100755 assets/rke2-kube-proxy-1.21/rke2-kube-proxy-v1.21.6-rke2r2-build2021111501.tgz
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/Chart.yaml
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/NOTES.txt
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/_helpers.tpl
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/config.yaml
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/daemonset.yaml
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/rbac.yaml
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/serviceaccount.yaml
 create mode 100755 charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/values.yaml

diff --git a/assets/rke2-kube-proxy-1.21/rke2-kube-proxy-v1.21.6-rke2r2-build2021111501.tgz b/assets/rke2-kube-proxy-1.21/rke2-kube-proxy-v1.21.6-rke2r2-build2021111501.tgz
new file mode 100755
index 0000000000000000000000000000000000000000..ceb86d63f395017efeae5e5c5cf2ee7bb5ad6c3c
GIT binary patch
literal 4333
zcmV<J5EAbniwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PH+#bK5qy{mfr+Cg~m9b4}{uM_SHi=Q>W(^|VQJ?X>;S>0}`C
zNJIq!3;@d3dh_4!9Dt-qO0wOio1NWjbf%Vo^TNS-;i2dSj>APc#jw!oW;Hm^n6}Z1
z<>IS9tqq66;py?Q`#T&C`+tYW<Kb7M<I(Z)$??(2==iH4eHnfQ!#_`i-K{j1>92;L
z&8t7Tf0M=v{u64$m5gCI3RqFJzDDCwbQ+S0=y8yuNi;948@rIkG9lpma*8k^%ZY*o
zuCA3%O&o-<wx}RyTw2B@YBz#8<06KH?9BX+W-`f8M~TV<0LgNU;nMfP4{T}z-_^6y
zz^GCu=;&qE7A77H=G<oGln4zfq63HJ83oJjvkIpr7wLF79*st$li?`%SFgvHZhik>
zGEt)Wa|6KL{y#bzKO6V`|9JT9(f_|h3&Su7o&wL=9AT!k^IY#_t}hM%G#1KmtMn>{
z+P5;MQ<RuG+tCs&ngGDE`Q08yyxwOB7ZYG<s?iw7)Mf~dDHzmC)L@nW1WH2i6!r~T
z>f0Me?!P^UMFHqyvOESZE$SId&;XMu?8R{h;IsvB5KOsD&phuKDtaW=#SE-25fXt+
zmId&_vZ<&@@?vQ~m-Sb?;Wi2?$QbHbonO4XBn{0G)C>xh8sO4RE)k`%s3V%p&lyTc
zl$`N-sWCkStJ!SE6EG;<EE!y(Uh<?tBX!NR%0ZRZ@D#yj+*FK$r*O@MfGI-G%*PTn
zOEGm)cIY~MClYaxfHxMkWP%9%pji5X2__TIt0tIojfusSP-qq!O@WE!%Z_AR8jCCq
zsxDGO45MLmJSNo+MyIuU3TCsKR6T!2`2=QMU=;X1ug<@zYfv-W(o_XW(;xz@;FYbA
zDsZOJWSB<qrZkphpKD|!pv{<sVNLvMC6ftiuF@DrC;89>G$5^J$%0J%DZF7fJTG&Q
zWj;ks>-hHUJqaOc=1MyKId~{g!};V#NR&p{AJTw8wnQhN;5oOzOvoz>no9y}xP>{F
z2T=f!vzrO(bEPqcqw%xTZ@d^>_QYr~0j1R({Xz<%5@zubG|rh$1$k5(ILz5iSfCEQ
zkmN_($DZ$&-;2p*45Opb@Y&c2NLsNxM^#$qYwyn|9W7OcfBwU}t5+X>KD&4i#xjc(
zB$DF2M?4qG;LnWP7)IHUR)Z*Cqyjsn(U2!{THg&eZMA!0I~-oEQDYb%dnUnCc%#UR
z6qLsONzr0rfpjTqw+Vdb57bBC-Y(C8RH$aKz}0h?ETLdr8?rMCzDAlN%#hhqBg~ma
zQ^lepV*|V?Q1cw6WugW$aZr8wj-c1!q!lEuxy_(Z+BV@bLndqnNruT{OVr#FG~>~5
zd~$kE==>#)f87Gu384{Op#{tfyK>6oh5}_2c#;18VoQMaBxzz9ilRw0RXIm}e%co^
zkV=M*_MwkMZiy(~8LPRR12e!=l$OtU;$uP;fM``*WJqku1Z2ussve`D{`78%T64dW
zb#(Vme=&p75OJ4?XyKaZ?<72gE3$V|MklB)`L<YXVBZNW6**g;D=AhW5mQVLoWs{)
z`b>xz9w-0}Ou4NmIlIo8UVtfB;w;#GD_F8XOX2Wi$(^#C*knBGz)0UJ=kyumm*F8C
zjed<fqP=iVdF+HETg<C?<ji2n1j&&#F`9@q0{b+XFiG5+$V}^oGA$IB*4vu#iZiqq
zAUXCinn$pAV)hPUZ<N#j$JuzC@73|A9lY0qRq=YeU_GIjZcB6r!<}gaz_g?|qG&?3
zfj6Twx7;i=STM~faSCqSl2KCJGjN^pB&)Qw^h?W8gUM7WQfDt#l}QHIu0){nf)=qX
z;9~OAm7fENfH#RKQ#|LXt~ft*iI!h_c^pfVWSEwM)VM0p&(4>7ImKaa92n`g2K2Lf
zC28@T<0lr*E+;Uh3ej2@2XyhFN~%`D$jMB7OiEQs?-i7)JocF`euvR4|Ct6;3(-z-
zoN}I9<X(b1gnojH?pcX-@@q}F&1)MQU^5b0V}g9?v<t5<-c|wS56Lj&vKC{v6hFS4
z)Isa_Gbz(%qCpTOf}^zO&6HxOn&bYW)W+5c|2pGTVKA|vnYz@v-o>m7%K+%J!=!rF
z(K%Prx+<OQSj}9dMPtpncCWD`k6t0XUlr)}@V}F*-!I3<!o+am@F!IfO_08(b=9*+
zXQj=Q=6|pA;!Nq>f8Mvw>|KU(C8Gl{u9}&ypfx%ZZ0_{C<`BbR$@D<*Y3FQZz~(6J
zpxH4-YYbOoZB){RMpFY*wAY9dgqp)llqN$H2sM9AA749_%48M8i3x(b7OD%OD*b)G
z*3;SKqOO1TRh8i>f~~-pXI!>sauE1gKCsBjk%EVL;I5R4oa1jFSYY)4A5>sf;&ckE
z(fFC;KJrAX8r7FdMo?j*W?mC@`k_4>pZPVfrtUWrWRoP)Tb1HOX=~he^(T*;vlWH6
zB@;X)rA>uO7N&C1Q8bQ@qTyhCd{})x9vqDiBB$XLXRH+Ud^)1-|MKer<j7>hpVZ;Y
z@J6&KkSax5m$SMnu2)Z~JT$a@30eAEwcy?2k`hgV#zf6TcGf}RXgC}m0{#EjK&kwS
z2%n|D#Snh`?YHeS0+dZ{HsgZkLzUn)PS>kQHZn+YTFwUrfkDP(Dkv^ANO2H25q)6z
z*)2{hEqaZ_uvZ$?uF%_qeI-)V2cR_U)wRtY?9ZH0*WF9A7d2(&R4}<Xtg2{)DH<EH
zCF8=SR?lufDYZsv#i}Wo4%QSp#hpiRfkU{nf&R`jQ`d(uEv-W{D`PR=GoIFhTvm{f
z4Y}%A)+bsnO-Z#i1@c2*^D}YHRt9EF2m@2v{8r}&jZVBot^}b?TJRJu>jN07`<*`<
z*q`E@OET&ZWlDb!f$D8i0Xe+V&_MjRn#~MlJua!H=Sw^wKX4no$_o-DO_^g#!A0rR
zhlce57MXUnPjD`DF@yb5dcWhOvf&|d9EQUKnvAT3tdCtZlc~zZ3X)72lr%R2aPw*`
zztFhks%%u~%-%crN|kWUd_FQ%)?_?QQP$DSiS&;4B(_Z_=Thm08aK`_xtz~RaR|z0
zsGBfCa#FE6b^fZZF^wvze8M5@zvS#UrT-fJ#nJuiAyA-*VQ&<TPWOCZC`w%@gFdEn
z(?ZVK!kugx+6mEgviev;6{Lz%avvI{vZQS8tyJQT1&sokL7Fth+%)Bs>zJsge@KKi
za}#n!+7w+tDs`c`!PJ+hHp7)O$^v!Hq<0RDxmx;F_s3zLldqk~KB9p1{WquXH=f;V
zrRy7&`dmvWDzKz4`ltk27h;VKEU>Vk3Y2vbG(H*Tt_~U-DmN*=Zm&4~(z2ouJaIlw
zhT&{8BoBGscuvqNpumwQ0VkT%#<n(tRtZ7r>to67`YxpkiOyNBHMf3=>UiHhxT|c(
zxi76X)hz3yREK@;5Z<dem<u&!B6h_yMUa=C<R#9zv3eE5lPCZ0ZfgEHt$+VxF)swO
zXa;ZJy?=ET*&F-WJnp;y9Uk}Ze@{*y?|;8c`+i+0WsE9w^yg_z2#V^DUiKf}cKiQ_
z3`K$3M7H?MtKfV5e>6II*7N_<ljEaD|Nj#0_BN!1%_YJUpKCu<`TK*evh5QHKYa=a
zkk26UyQs)#=xA$tZr}^5C1&vCzs%st@54l4u=(<2Edk1O>*sn3WX>N_X4!|7>$?Oe
zz?aOjmt1cVcSG83;9VKFo{&6T@a7QZ!}_q|kIR3@$;|Jc+BUWHPup4y?ws<!+T0&o
zukDWiel`D$mq7Q#|C6Jme*JfPbo}`K=Zmy341?YqKnkC<^{Nbj{>1Q)FaU5T+70MB
zx>S&hZ%oA1U^#Mk-6Mz4d2Mrh+XRqSKl}qemdYZ0`s7eHPVxhPkk66?3)?zS?^4_d
zNt^I}P5@JXx_=iL2eQUUS_k@f;<W%b`L@s2Z*TocQ@S$^M4JTMjlf;(KNbc)eS%7(
zt(Q5sw~#0%&?MMT1ueK1;dNhsp*Eh>v<2!7wvg7(ZK$>1zjX0ET(kyQPv5;p*$&O+
z8q6j|^Twn(>e!051#(mAHYr*UO711N3EL;R@x-J>syEh0^+(W?<}A65+8e7;w!P12
zVQmigd2T+WXruQA`^fDV7k=G4&mdZqYRISq(pvoPD}}o;U+|XmlB><OK({ZiJ4Uv{
zxbMTfy>%5&^WEG-#%$229~HQzuCDtpUS66W{?bJ4(M^->&v^NVX1g0}W2Vgw{sx8h
zD}W6tt2_G3$rh}7=mFYXZqwve9oVFJ-CR(29DLoqNqh%ZUkBUyZDV#9r$54GeWJSt
zYoGG=*=&RFvRQDM#_qb+z4AYApXoY)ZFiC_Hk-r!)zABZ&({?BmY652i^=spAjnb(
zH`ckYYf)?U*JRe0DVuDYu|Ds+4))t*?ttr)EYsp56}WA6S_{)d>O2(;{DOtm4JLfO
zz||pq?e9V3=MA|wQfH+J0X}_lyeqV7xZbr@U$43J*LO`&ayjPZ)nyDbCJa{H6799p
zi?{A)8&96p9_xOu@e?mxpSLM*N^e*Z<Y-x4bP6^_QB8~$McjTSSpPs|qsv`qRQ>*3
z;c=t+z_xq;mom(iH2C?y2D@kfcRbwq{l~N6>Erp|7isMc9V-emSdJ?HeCgKz3hhq+
zTzq4~&+$=HVB+rh+*1OjJ=L7qB>SPoW*4K{RO31iH9}Go9SXZ>0MtTMdz0puYQ87*
zFFIwqCKSS;G<x73sSKuE4tfMVOc?qN(DUY8u;pZ}oplGLE}_Hv9n<r#_usyI`Rc>l
zvp25}8c>wWwm4ql4O}w<{?7HaR(ag&1ekFY=_Ss(z1_|Ia?~4iNE2qW*r_a{Tuf2E
z0rNi>qC`?J%pE7n5q$d8E=CA9TK~?7Qqsn-W%G6Js`yPxAtp-jWEI23?5(mBjRvJ{
zpte|Jm69+iHMc8wK5%2(x+pYXa)EP9WB1&r8Coh)=J-aH(wg=P<kaJJvt_wkly^$g
zq0v!c??jsv=TCPx$P#4r`ffd>k)`jXSoLPom06c^a8qqXgi010q^rTOGuWj;bIujj
z_htiK@M*X?wpFxLntDCY{mH{?u1!5za*(&a!suX;F<y0|2vmnG{*hqB)j$~%M3y%}
zv&zaDfMCY>dc~V-NYuhabITJZf?8P06SkJ^%)LwM?|D3x%G$%GJJ@b<aNBHX{F|Y(
zBq4=vF_136+wE3lQRiH`%KSUc67<`kEC1#)hNEE(rv&-}z7^&cNE)x^e3qt48d{r1
zm#QEfrDJ$?!;Li!;*J6DDlG=Ibk0=Tj`qjQ-MX{4rnuZ`|6z4P^@bJkL!5BOz+JN6
z<vL!>*IeK`eeT}q^f+ztsylgYcd;GX==xk)q|D-#)y(32<!Ngr1efz4-B9Z^?nl|Y
z4~)U50ng*Ijqq4u|3|dl^}n97<j?sX`2GL>L%;q%9S%<)>;Es&+BKhB@y<^O)>k_9
zrrqb{OC|6HmnoO?&hB6xh+~&Ts~<Q8S_!NQPFC>mv?_}`*ah{mQ;S<e+~?>nc~ee*
z!^HZ3dBR~{brR;|$-&OH+yASYgLxHxP9(U`|3^nX{~r%Wqw%Bve~Gr$U3weAO%H$c
bqsR8x9@}I4cW?g}00960)I#1&08Rh^;eVSs

literal 0
HcmV?d00001

diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/Chart.yaml b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/Chart.yaml
new file mode 100755
index 0000000..f58bb83
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/Chart.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+appVersion: v1.21.6-rke2r2
+description: Install Kube Proxy.
+keywords:
+- kube-proxy
+maintainers:
+- email: charts@rancher.com
+  name: Rancher Labs
+name: rke2-kube-proxy
+sources:
+- https://github.com/rancher/rke2-charts
+version: v1.21.6-rke2r2-build2021111501
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/NOTES.txt b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/NOTES.txt
new file mode 100755
index 0000000..2da0e24
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/NOTES.txt
@@ -0,0 +1,2 @@
+Kube-proxy has been installed.
+
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/_helpers.tpl b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/_helpers.tpl
new file mode 100755
index 0000000..cb64d1f
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/_helpers.tpl
@@ -0,0 +1,21 @@
+{{- define "system_default_registry" -}}
+{{- if .Values.global.systemDefaultRegistry -}}
+{{- printf "%s/" .Values.global.systemDefaultRegistry -}}
+{{- else -}}
+{{- "" -}}
+{{- end -}}
+{{- end -}}
+{{- define "rke2_data_dir" -}}
+{{- if .Values.global.rke2DataDir -}}
+{{- printf "%s" .Values.global.rke2DataDir -}}
+{{- else -}}
+{{- "/var/lib/rancher/rke2" -}}
+{{- end -}}
+{{- end -}}
+{{- define "kubeproxy_kubeconfig" -}}
+{{- if .Values.global.rke2DataDir -}}
+{{- printf "%s/agent/kubeproxy.kubeconfig" .Values.global.rke2DataDir -}}
+{{- else -}}
+{{- printf "%s" .Values.clientConnection.kubeconfig -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/config.yaml b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/config.yaml
new file mode 100755
index 0000000..f8bb5cc
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/config.yaml
@@ -0,0 +1,69 @@
+---
+apiVersion: v1
+data:
+  config.conf: |-
+    apiVersion: kubeproxy.config.k8s.io/v1alpha1
+    bindAddress: {{ .Values.bindAddress | quote }}
+    clientConnection:
+      acceptContentTypes: {{ .Values.clientConnection.acceptContentTypes | quote }}
+      burst: {{ .Values.clientConnection.burst }}
+      contentType: {{ .Values.clientConnection.contentType | quote }}
+      kubeconfig: {{ include "kubeproxy_kubeconfig" . | quote }}
+      qps: {{ .Values.clientConnection.qps }} 
+    clusterCIDR: {{ coalesce .Values.global.clusterCIDR .Values.clusterCIDR | quote }}
+    configSyncPeriod: {{ .Values.configSyncPeriod }}
+    conntrack:
+      maxPerCore: {{ .Values.conntrack.maxPerCore }}
+      min: {{ .Values.conntrack.min }}
+      tcpCloseWaitTimeout: {{ .Values.conntrack.tcpCloseWaitTimeout | quote }}
+      tcpEstablishedTimeout: {{ .Values.conntrack.tcpEstablishedTimeout | quote }}
+    detectLocalMode: {{ .Values.detectLocalMode | quote }}
+    enableProfiling: {{ .Values.enableProfiling }}
+    healthzBindAddress: {{ .Values.healthzBindAddress | quote }}
+    hostnameOverride: {{ .Values.hostnameOverride | quote }}
+    iptables:
+      masqueradeAll: {{ .Values.iptables.masqueradeAll }}
+      masqueradeBit: {{ .Values.iptables.masqueradeBit }}
+      {{ if .Values.iptables.minSyncPeriod }}
+      minSyncPeriod: {{ .Values.iptables.minSyncPeriod }}
+      {{ end }}
+      syncPeriod: {{ .Values.iptables.syncPeriod }}
+    ipvs:
+      excludeCIDRs: {{ .Values.ipvs.excludeCIDRs | quote }}
+      {{ if .Values.ipvs.minSyncPeriod }}
+      minSyncPeriod: {{ .Values.ipvs.minSyncPeriod }}
+      {{ end }}
+      scheduler: {{ .Values.ipvs.scheduler | quote }}
+      strictARP: {{ .Values.ipvs.strictARP }}
+      syncPeriod: {{ .Values.ipvs.syncPeriod }}
+      {{ if .Values.ipvs.tcpFinTimeout }}
+      tcpFinTimeout: {{ .Values.ipvs.tcpFinTimeout }}
+      {{ end }}
+      {{ if .Values.ipvs.tcpTimeout }}
+      tcpTimeout: {{ .Values.ipvs.tcpTimeout }}
+      {{ end }}
+      {{ if .Values.ipvs.udpTimeout }}
+      udpTimeout: {{ .Values.ipvs.udpTimeout }}
+      {{ end }}
+    kind: KubeProxyConfiguration
+    metricsBindAddress: {{ .Values.metricsBindAddress | quote }}
+    mode: {{ .Values.proxy.mode | quote }}
+    nodePortAddresses: null
+    oomScoreAdj: {{ .Values.oomScoreAdj }}
+    portRange: {{ .Values.proxy.portRange | quote }}
+    showHiddenMetricsForVersion: {{ .Values.showHiddenMetricsForVersion | quote }}
+    udpIdleTimeout: {{ .Values.udpTimeout | quote }}
+    featureGates:
+    {{- range  $key, $value := .Values.featureGates }}
+      {{ $key }}: {{ $value }}
+    {{- end }}
+    winkernel:
+      enableDSR: false
+      networkName: ""
+      sourceVip: ""
+kind: ConfigMap
+metadata:
+  labels:
+    app: kube-proxy
+  name: kube-proxy
+  namespace: kube-system
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/daemonset.yaml b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/daemonset.yaml
new file mode 100755
index 0000000..1267df8
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/daemonset.yaml
@@ -0,0 +1,78 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    k8s-app: kube-proxy
+  name: kube-proxy
+  namespace: kube-system
+spec:
+  selector:
+    matchLabels:
+      k8s-app: kube-proxy
+  template:
+    metadata:
+      labels:
+        k8s-app: kube-proxy
+    spec:
+      containers:
+      - command:
+        - /usr/local/bin/kube-proxy
+        - --config=/var/lib/kube-proxy/config.conf
+        - --hostname-override=$(NODE_NAME)
+        env:
+        - name: NODE_NAME
+          valueFrom:
+            fieldRef:
+              apiVersion: v1
+              fieldPath: spec.nodeName
+        image: {{ template "system_default_registry" . }}{{ .Values.image.repository }}:{{ .Values.image.tag }}
+        imagePullPolicy: IfNotPresent
+        name: kube-proxy
+        securityContext:
+          privileged: true
+        volumeMounts:
+        - mountPath: /var/lib/kube-proxy
+          name: kube-proxy
+        - mountPath: {{ template "rke2_data_dir" . }}/agent
+          name: rke2config
+          readOnly: true
+        - mountPath: /run/xtables.lock
+          name: xtables-lock
+        - mountPath: /lib/modules
+          name: lib-modules
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      hostNetwork: true
+      nodeSelector:
+        kubernetes.io/os: linux
+      priorityClassName: system-node-critical
+      restartPolicy: Always
+      schedulerName: default-scheduler
+      securityContext: {}
+      serviceAccount: kube-proxy
+      serviceAccountName: kube-proxy
+      terminationGracePeriodSeconds: 30
+      tolerations:
+      - key: CriticalAddonsOnly
+        operator: Exists
+      - operator: Exists
+      volumes:
+      - hostPath:
+          path: {{ template "rke2_data_dir" . }}/agent
+          type: ""
+        name: rke2config
+      - configMap:
+          name: kube-proxy
+        name: kube-proxy
+      - hostPath:
+          path: /run/xtables.lock
+          type: FileOrCreate
+        name: xtables-lock
+      - hostPath:
+          path: /lib/modules
+          type: ""
+        name: lib-modules
+  updateStrategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/rbac.yaml b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/rbac.yaml
new file mode 100755
index 0000000..d98f84c
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/rbac.yaml
@@ -0,0 +1,12 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: rke2:node-proxier
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: system:node-proxier
+subjects:
+- kind: ServiceAccount
+  name: kube-proxy
+  namespace: kube-system
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/serviceaccount.yaml b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/serviceaccount.yaml
new file mode 100755
index 0000000..59408a2
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/templates/serviceaccount.yaml
@@ -0,0 +1,5 @@
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+  name: kube-proxy
+  namespace: kube-system
diff --git a/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/values.yaml b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/values.yaml
new file mode 100755
index 0000000..abc3d38
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.21/rke2-kube-proxy/v1.21.6-rke2r2-build2021111501/values.yaml
@@ -0,0 +1,142 @@
+---
+
+# image for kubeproxy
+image:
+  repository: rancher/hardened-kubernetes
+  tag: v1.21.6-rke2r2-build20211115
+
+# The IP address for the proxy server to serve on 
+# (set to '0.0.0.0' for all IPv4 interfaces and '::' for all IPv6 interfaces)
+bindAddress: 0.0.0.0
+
+# If true cleanup iptables and ipvs rules and exit.
+cleanup: 
+
+# The CIDR range of pods in the cluster. 
+# When configured, traffic sent to a Service cluster IP from outside this range 
+# will be masqueraded and traffic sent from pods to an external 
+# LoadBalancer IP will be directed to the respective cluster IP instead
+clusterCIDR: 10.42.0.0/16
+
+# The path to the configuration file.
+config: 
+
+# How often configuration from the apiserver is refreshed. Must be greater than 0.
+configSyncPeriod: 15m0s
+
+conntrack:
+  # Maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore conntrack-min).
+  maxPerCore: 32768
+  # Minimum number of conntrack entries to allocate, regardless of conntrack-max-per-core (set conntrack-max-per-core=0 to leave the limit as-is).
+  min: 131072
+  # NAT timeout for TCP connections in the CLOSE_WAIT state
+  tcpTimeoutCloseWait: 1h0m0s
+  # Idle timeout for established TCP connections (0 to leave as-is)
+  tcpTimeoutEstablished: 24h0m0s
+
+# Mode to use to detect local traffic
+detectLocalMode: 
+
+# A set of key=value pairs that describe feature gates for alpha/experimental features:
+featureGates: 
+
+# The IP address with port for the health check server to serve on
+# (set to '0.0.0.0:10256' for all IPv4 interfaces and '[::]:10256' for all IPv6 interfaces). Set empty to disable.
+healthzBindAddress: 0.0.0.0:10256
+
+# help for kube-proxy
+help: 
+
+# If non-empty, will use this string as identification instead of the actual hostname.
+hostnameOverride: 
+
+iptables:
+  # If using the pure iptables proxy, SNAT all traffic sent via Service cluster IPs (this not commonly needed)
+  masqueradeAll: 
+  # If using the pure iptables proxy, the bit of the fwmark space to mark packets requiring SNAT with. Must be within the range [0, 31].
+  masqueradeBit: 14
+  # The minimum interval of how often the iptables rules can be refreshed as endpoints and services change (e.g. '5s', '1m', '2h22m').
+  minSyncPeriod: 
+  # The maximum interval of how often iptables rules are refreshed (e.g. '5s', '1m', '2h22m'). Must be greater than 0.
+  syncPeriod: 30s
+
+ipvs:
+  # A comma-separated list of CIDR's which the ipvs proxier should not touch when cleaning up IPVS rules.
+  excludeCidrs:
+  # The minimum interval of how often the ipvs rules can be refreshed as endpoints and services change (e.g. '5s', '1m', '2h22m').
+  minSyncPeriod: 
+  # The ipvs scheduler type when proxy mode is ipvs
+  scheduler:
+  # Enable strict ARP by setting arp_ignore to 1 and arp_announce to 2
+  strictArp: 
+  # The maximum interval of how often ipvs rules are refreshed (e.g. '5s', '1m', '2h22m'). Must be greater than 0.
+  syncPeriod: 30s
+  # The timeout for idle IPVS TCP connections, 0 to leave as-is. (e.g. '5s', '1m', '2h22m').
+  tcpTimeout: 
+  # The timeout for IPVS TCP connections after receiving a FIN packet, 0 to leave as-is. (e.g. '5s', '1m', '2h22m').
+  tcpfinTimeout:
+  # The timeout for IPVS UDP packets, 0 to leave as-is. (e.g. '5s', '1m', '2h22m').
+  udpTimeout:
+
+
+clientConnection:        
+  # Burst to use while talking with kubernetes apiserver
+  apiBurst: 10
+  # Content type of requests sent to apiserver.
+  apiContentType:
+  # QPS to use while talking with kubernetes apiserver
+  qps: 5
+  # Path to kubeconfig file with authorization information (the master location is set by the master flag).
+  kubeconfig: /var/lib/rancher/rke2/agent/kubeproxy.kubeconfig
+
+# Maximum number of seconds between log flushes
+logFlushFrequency: 5s
+
+
+
+# The address of the Kubernetes API server (overrides any value in kubeconfig)
+master: 
+
+# The IP address with port for the metrics server to serve on 
+# (set to '0.0.0.0:10249' for all IPv4 interfaces and '[::]:10249' for all IPv6 interfaces). Set empty to disable.
+metricsBindAddress: 127.0.0.1:10249
+
+# A string slice of values which specify the addresses to use for NodePorts. 
+# Values may be valid IP blocks (e.g. 1.2.3.0/24, 1.2.3.4/32). The default empty string slice ([]) means to use all local addresses.
+nodeportAddresses:
+
+# The oom-score-adj value for kube-proxy process. Values must be within the range [-1000, 1000]
+oomScoreAdj: -999
+
+# If true enables profiling via web interface on /debug/pprof handler.
+profiling:
+
+proxy:
+  # Which proxy mode to use: 'userspace' (older) or 'iptables' (faster) or 'ipvs'. 
+  # If blank, use the best-available proxy (currently iptables). 
+  # If the iptables proxy is selected, regardless of how, but the system's 
+  # kernel or iptables versions are insufficient, this always falls back to the userspace proxy.
+  mode:
+# Range of host ports (beginPort-endPort, single port or beginPort+offset, inclusive) 
+# that may be consumed in order to proxy service traffic. 
+# If (unspecified, 0, or 0-0) then ports will be randomly chosen.
+  portRange:
+
+# The previous version for which you want to show hidden metrics. 
+# Only the previous minor version is meaningful, other values will not be allowed.
+# The format is <major>.<minor>, e.g.: '1.16'. The purpose of this format is make 
+# sure you have the opportunity to notice if the next release hides additional metrics, 
+# rather than being surprised when they are permanently removed in the release after that.
+showHiddenMetricsForVersion:
+
+# How long an idle UDP connection will be kept open (e.g. '250ms', '2s'). 
+# Must be greater than 0. Only applicable for proxy-mode=userspace
+udpTimeout: 250ms
+
+# Print version information and quit
+version: 
+
+# If set, write the default configuration values to this file and exit.
+writeConfigTo:
+global:
+  systemDefaultRegistry: ""
diff --git a/index.yaml b/index.yaml
index 1c3225d..ef6077e 100755
--- a/index.yaml
+++ b/index.yaml
@@ -1885,6 +1885,22 @@ entries:
     - assets/rke2-ingress-nginx/rke2-ingress-nginx-1.36.300.tgz
     version: 1.36.300
   rke2-kube-proxy:
+  - apiVersion: v1
+    appVersion: v1.21.6-rke2r2
+    created: "2021-11-15T20:47:13.901735103Z"
+    description: Install Kube Proxy.
+    digest: 3518b8dcc18c2bbe79b7ea14b911d4425bd3c83082c6e05e7cac9efcf3ea8ad5
+    keywords:
+    - kube-proxy
+    maintainers:
+    - email: charts@rancher.com
+      name: Rancher Labs
+    name: rke2-kube-proxy
+    sources:
+    - https://github.com/rancher/rke2-charts
+    urls:
+    - assets/rke2-kube-proxy-1.21/rke2-kube-proxy-v1.21.6-rke2r2-build2021111501.tgz
+    version: v1.21.6-rke2r2-build2021111501
   - apiVersion: v1
     appVersion: v1.21.6-rke2r1
     created: "2021-10-28T16:18:09.942938144Z"