KOPS v1.20.0 will start creating new clusters with `gp3` type and volume encryption enabled for ETCD and root volumes.
We have an existing cluster running and I wonder which of the operations are permitted for a running cluster. From what I saw one can change volume type and enable encryption of root volumes but not of etcd volumes. Does that also apply to upgrade from etcd volume gp2
to gp3
?
Is there any way to enable encryption of etcd volumes of an existing cluster?
Thanks
I just read a thread in Kubernetes/kops-dev slack channel where someone upgraded the node
rootVolumeType
volume type fromgp2
togp3
successfully but ran into IOPS/VolumeSize issues when changing the volume type for ETCD. You have to tune the parameters correctly to make it work. If all settings line up, you should be able to change the volume type.