Applying Tags to Load Balancers

Find out how to apply tags to load balancer resources, and how to override initial load balancer tags, when using Container Engine for Kubernetes (OKE).

Note

References to load balancer in this section apply to both OCI load balancer resources and OCI network load balancer resources, unless explicitly stated otherwise.

When you create a cluster, you can optionally define tags to apply to load balancer resources created when Kubernetes services of type LoadBalancer are defined. These tags are referred to as initial load balancer tags. You can specify both defined tags and free-form tags as initial load balancer tags.

You can override initial load balancer tags using annotations on the Kubernetes service (see Overriding Initial Load Balancer Tags). If you specify the annotations when defining the Kubernetes service, none of the initial load balancer tags specified in the cluster definition are applied to the load balancer resource. Instead, the tags specified by the annotations are applied to the load balancer resource.

Tag defaults with default values that are specified for the compartment are automatically applied to the load balancer resource as well. Note that Container Engine for Kubernetes does not currently support tag defaults with user-applied values.

Note the following:

Tags are only applied to load balancers when the load balancers are first created. If you update the initial load balancer tags, the changes only apply to new load balancers (assuming the tags are not overridden by annotations on the Kubernetes service). Tags applied to existing load balancers are unaffected.
If you apply a cost-tracking defined tag to a load balancer resource, you can include load balancer usage in budgets (see Using Cost-Tracking Tags).
To apply defined tags from a tag namespace belonging to one compartment to a load balancer resource belonging to a different compartment, you must include a policy statement to allow the cluster to use the tag namespace. See Additional IAM Policy when a Cluster and a Tag Namespace are in Different Compartments.

Using the Console to Specify Initial Load Balancer Tags

To specify an initial load balancer tag to apply to load balancer resources created for a new cluster:

Follow the instructions in Using the Console to create a Cluster with Explicitly Defined Settings in the 'Custom Create' workflow to create a new cluster.
Display the Initial load balancer tags section of the Create Cluster page.
To add a defined tag to load balancer resources:
- Tag Namespace: Select the tag namespace to which the tag belongs.
- Tag Key: Select the name of the defined tag to apply to load balancer resources.
- Tag Value: Either select the value for the tag from a pre-defined list of values, or enter a new value, or leave blank (depending on how the defined tag has been set up).
To add a free-form tag to load balancer resources:
- Tag Namespace: Set to None (free-form tags do not belong to a tag namespace).
- Tag Key: Enter a name for the free-form tag to apply to load balancer resources.
- Tag Value: Enter a value for the tag to apply to load balancer resources.

To update initial load balancer tags to apply to new load balancer resources created for a cluster:

Follow the instructions in Updating a Cluster to update an existing cluster.
Display the Initial Load Balancer Tags tab of the Cluster Details page.
Click Add Tags to add, remove, and change the value of defined tags and free-form tags applied to new load balancer resources.
Note that tags are only applied to load balancers when the load balancers are first created. So if you update initial load balancer tags, the changes only apply to new load balancer resources. Tags already applied to existing load balancer resources are unaffected.

Using the CLI to Specify Initial Load Balancer Tags

oci ce node-pool create \
--cluster-id <cluster-ocid> \
--compartment-id <compartment-ocid> \
--kubernetes-version <kubernetes-version> \
--name <node-pool-name> \
--node-shape <node-shape>  \
--service-lb-defined-tags <json-name-value-pairs> \
--service-lb-freeform-tags <json-name-value-pairs>

For example:

oci ce node-pool create \
--cluster-id ocid1.cluster.oc1.iad.aaaaaaaaaf______jrd \
--compartment-id ocid1.compartment.oc1..aaaaaaaay______t6q \
--kubernetes-version v1.20.11 \
--name Finance-Node-Pool \
--node-shape VM.Standard2.1 \
--service-lb-defined-tags {"Operations": {"CostCenter": "42"}} \
--service-lb-freeform-tags {"Department": "Finance"}

Using the API to Specify Initial Load Balancer Tags

Use the freeformTags and definedTags attributes of the ServiceLbConfigDetails object used by the CreateCluster and Update Cluster operations to add and update initial load balancer tags.

Overriding Initial Load Balancer Tags

You can override initial load balancer tags specified for a cluster using annotations in the definition of a Kubernetes service of type LoadBalancer, as follows:

For load balancer resources:
- To override defined initial load balancer tags for load balancer resources, add the following annotation in the metadata section of the manifest file:
```
oci.oraclecloud.com/initial-defined-tags-override: '{"<tag-namespace>": {"<tag-key>": "<tag-value>"}}'
```
- To override free-form initial load balancer tags for load balancer resources, add the following annotation in the metadata section of the manifest file:
```
oci.oraclecloud.com/initial-freeform-tags-override: '{"<tag-key>": "<tag-value>"}'
```
For network load balancer resources:
- To override defined initial load balancer tags for network load balancer resources, add the following annotation in the metadata section of the manifest file:
```
oci-network-load-balancer.oraclecloud.com/initial-defined-tags-override: '{"<tag-namespace>": {"<tag-key>": "<tag-value>"}}'
```
- To override free-form initial load balancer tags for network load balancer resources, add the following annotation in the metadata section of the manifest file:
```
oci-network-load-balancer.oraclecloud.com/initial-freeform-tags-override: '{"<tag-key>": "<tag-value>"}'
```