From 4ffa2dfa2107b30e564617009ff43372b9325454 Mon Sep 17 00:00:00 2001
From: Chris O'Haver <cohaver@infoblox.com>
Date: Mon, 27 Aug 2018 09:41:07 -0400
Subject: [PATCH] move coredns pods to 10053, and redirect service (#90)

---
 kubernetes/coredns.yaml.sed | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/kubernetes/coredns.yaml.sed b/kubernetes/coredns.yaml.sed
index fe59fc1..a28d8c7 100644
--- a/kubernetes/coredns.yaml.sed
+++ b/kubernetes/coredns.yaml.sed
@@ -46,7 +46,7 @@ metadata:
   namespace: kube-system
 data:
   Corefile: |
-    .:53 {
+    .:10053 {
         errors
         health
         kubernetes CLUSTER_DOMAIN REVERSE_CIDRS {
@@ -105,10 +105,10 @@ spec:
           mountPath: /etc/coredns
           readOnly: true
         ports:
-        - containerPort: 53
+        - containerPort: 10053
           name: dns
           protocol: UDP
-        - containerPort: 53
+        - containerPort: 10053
           name: dns-tcp
           protocol: TCP
         - containerPort: 9153
@@ -117,8 +117,6 @@ spec:
         securityContext:
           allowPrivilegeEscalation: false
           capabilities:
-            add:
-            - NET_BIND_SERVICE
             drop:
             - all
           readOnlyRootFilesystem: true
@@ -160,6 +158,8 @@ spec:
   - name: dns
     port: 53
     protocol: UDP
+    targetPort: 10053
   - name: dns-tcp
     port: 53
     protocol: TCP
+    targetPort: 10053