diff --git a/assets/charts/control-plane/kubernetes/templates/kube-proxy.yaml b/assets/charts/control-plane/kubernetes/templates/kube-proxy.yaml
index c00556f3c..811181f97 100644
--- a/assets/charts/control-plane/kubernetes/templates/kube-proxy.yaml
+++ b/assets/charts/control-plane/kubernetes/templates/kube-proxy.yaml
@@ -42,6 +42,9 @@ spec:
         - --proxy-mode=iptables
         - --metrics-bind-address=$(HOST_IP)
         - --healthz-bind-address=$(HOST_IP)
+        {{- if not (eq (int .Values.kubeProxy.conntrackMaxPerCore) 32768) }}
+        - --conntrack-max-per-core={{ .Values.kubeProxy.conntrackMaxPerCore }}
+        {{- end }}
         env:
           - name: NODE_NAME
             valueFrom:
diff --git a/assets/charts/control-plane/kubernetes/values.yaml b/assets/charts/control-plane/kubernetes/values.yaml
index f17890278..ab4328298 100644
--- a/assets/charts/control-plane/kubernetes/values.yaml
+++ b/assets/charts/control-plane/kubernetes/values.yaml
@@ -12,6 +12,7 @@ kubeProxy:
   image: k8s.gcr.io/kube-proxy:v1.19.3
   podCIDR: 10.2.0.0/16
   trustedCertsDir: /usr/share/ca-certificates
+  conntrackMaxPerCore: 32768
 kubeScheduler:
   image: k8s.gcr.io/kube-scheduler:v1.19.3
   controlPlaneReplicas: 1
diff --git a/assets/terraform-modules/aws/flatcar-linux/kubernetes/bootkube.tf b/assets/terraform-modules/aws/flatcar-linux/kubernetes/bootkube.tf
index aaf97d0b3..be65162c9 100644
--- a/assets/terraform-modules/aws/flatcar-linux/kubernetes/bootkube.tf
+++ b/assets/terraform-modules/aws/flatcar-linux/kubernetes/bootkube.tf
@@ -33,4 +33,6 @@ module "bootkube" {
   encrypt_pod_traffic  = var.encrypt_pod_traffic
 
   ignore_x509_cn_check = var.ignore_x509_cn_check
+
+  conntrack_max_per_core = var.conntrack_max_per_core
 }
diff --git a/assets/terraform-modules/aws/flatcar-linux/kubernetes/variables.tf b/assets/terraform-modules/aws/flatcar-linux/kubernetes/variables.tf
index bf3059a66..516649577 100644
--- a/assets/terraform-modules/aws/flatcar-linux/kubernetes/variables.tf
+++ b/assets/terraform-modules/aws/flatcar-linux/kubernetes/variables.tf
@@ -196,3 +196,8 @@ variable "ignore_x509_cn_check" {
   type        = bool
   default     = false
 }
+
+variable "conntrack_max_per_core" {
+  description = "--conntrack-max-per-core value for kube-proxy. Maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore conntrack-min)."
+  type        = number
+}
diff --git a/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/bootkube.tf b/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/bootkube.tf
index 53e8230b7..b283ed088 100644
--- a/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/bootkube.tf
+++ b/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/bootkube.tf
@@ -26,4 +26,6 @@ module "bootkube" {
   encrypt_pod_traffic  = var.encrypt_pod_traffic
 
   ignore_x509_cn_check = var.ignore_x509_cn_check
+
+  conntrack_max_per_core = var.conntrack_max_per_core
 }
diff --git a/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/variables.tf b/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/variables.tf
index aaef0937a..f092b9f92 100644
--- a/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/variables.tf
+++ b/assets/terraform-modules/bare-metal/flatcar-linux/kubernetes/variables.tf
@@ -195,3 +195,8 @@ variable "ignore_x509_cn_check" {
   type        = bool
   default     = false
 }
+
+variable "conntrack_max_per_core" {
+  description = "--conntrack-max-per-core value for kube-proxy. Maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore conntrack-min)."
+  type        = number
+}
diff --git a/assets/terraform-modules/bootkube/assets.tf b/assets/terraform-modules/bootkube/assets.tf
index d56788c45..57f69b94f 100644
--- a/assets/terraform-modules/bootkube/assets.tf
+++ b/assets/terraform-modules/bootkube/assets.tf
@@ -82,6 +82,7 @@ resource "local_file" "kubernetes" {
     serviceaccount_key            = base64encode(tls_private_key.service-account.private_key_pem)
     etcd_endpoints                = var.etcd_endpoints
     enable_tls_bootstrap          = var.enable_tls_bootstrap
+    conntrack_max_per_core        = var.conntrack_max_per_core
   })
 }
 
diff --git a/assets/terraform-modules/bootkube/resources/charts/kubernetes.yaml b/assets/terraform-modules/bootkube/resources/charts/kubernetes.yaml
index 8757d7ffe..cf30acf06 100644
--- a/assets/terraform-modules/bootkube/resources/charts/kubernetes.yaml
+++ b/assets/terraform-modules/bootkube/resources/charts/kubernetes.yaml
@@ -12,6 +12,7 @@ kubeProxy:
   image: ${kube_proxy_image}
   podCIDR: ${pod_cidr}
   trustedCertsDir: ${trusted_certs_dir}
+  conntrackMaxPerCore: ${conntrack_max_per_core}
 kubeScheduler:
   image: ${kube_scheduler_image}
   controlPlaneReplicas: ${control_plane_replicas}
diff --git a/assets/terraform-modules/bootkube/variables.tf b/assets/terraform-modules/bootkube/variables.tf
index d04fdd322..04fac6d18 100644
--- a/assets/terraform-modules/bootkube/variables.tf
+++ b/assets/terraform-modules/bootkube/variables.tf
@@ -185,3 +185,8 @@ variable "encrypt_pod_traffic" {
   type        = bool
   default     = false
 }
+
+variable "conntrack_max_per_core" {
+  description = "--conntrack-max-per-core value for kube-proxy. Maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore conntrack-min)."
+  type        = number
+}
diff --git a/assets/terraform-modules/packet/flatcar-linux/kubernetes/bootkube.tf b/assets/terraform-modules/packet/flatcar-linux/kubernetes/bootkube.tf
index 07e18cb83..3afa5e0d3 100644
--- a/assets/terraform-modules/packet/flatcar-linux/kubernetes/bootkube.tf
+++ b/assets/terraform-modules/packet/flatcar-linux/kubernetes/bootkube.tf
@@ -48,4 +48,6 @@ module "bootkube" {
   encrypt_pod_traffic         = var.encrypt_pod_traffic
 
   ignore_x509_cn_check = var.ignore_x509_cn_check
+
+  conntrack_max_per_core = var.conntrack_max_per_core
 }
diff --git a/assets/terraform-modules/packet/flatcar-linux/kubernetes/variables.tf b/assets/terraform-modules/packet/flatcar-linux/kubernetes/variables.tf
index 43b2db089..b48ed4dbc 100644
--- a/assets/terraform-modules/packet/flatcar-linux/kubernetes/variables.tf
+++ b/assets/terraform-modules/packet/flatcar-linux/kubernetes/variables.tf
@@ -213,3 +213,8 @@ variable "ignore_x509_cn_check" {
   type        = bool
   default     = false
 }
+
+variable "conntrack_max_per_core" {
+  description = "--conntrack-max-per-core value for kube-proxy. Maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore conntrack-min)."
+  type        = number
+}
diff --git a/ci/aws/aws-cluster.lokocfg.envsubst b/ci/aws/aws-cluster.lokocfg.envsubst
index 24e11fb38..bf0428c30 100644
--- a/ci/aws/aws-cluster.lokocfg.envsubst
+++ b/ci/aws/aws-cluster.lokocfg.envsubst
@@ -42,8 +42,9 @@ EOF
     instance_type = "i3.large"
     spot_price    = "0.08"
     labels        = {
-      "testing.io" = "yes",
-      "roleofnode" = "testing",
+      "testing.io"          = "yes",
+      "roleofnode"          = "testing",
+      "conntrack-modified"  = "true",
     }
     tags = {
       "deployment" = "ci"
@@ -62,6 +63,24 @@ storage:
       group:
         id: 500
 EOF
+      ,
+      <<EOF
+storage:
+  files:
+    - path: /etc/modules-load.d/nf.conf
+      filesystem: root
+      mode: 0644
+      contents:
+        inline: |
+          nf_conntrack
+    - path: /etc/sysctl.d/nf.conf
+      filesystem: root
+      mode: 0644
+      contents:
+        inline: |
+          net.netfilter.nf_conntrack_max=50000
+EOF
+      ,
     ]
   }
 
@@ -72,8 +91,9 @@ EOF
     instance_type = "t2.small"
     spot_price    = "0.01"
     labels        = {
-      "testing.io" = "yes",
-      "roleofnode" = "testing",
+      "testing.io"          = "yes",
+      "roleofnode"          = "testing",
+      "conntrack-modified"  = "true",
     }
     taints        = {
       "nodeType" = "storage:NoSchedule"
@@ -99,6 +119,24 @@ storage:
       group:
         id: 500
 EOF
+      ,
+      <<EOF
+storage:
+  files:
+    - path: /etc/modules-load.d/nf.conf
+      filesystem: root
+      mode: 0644
+      contents:
+        inline: |
+          nf_conntrack
+    - path: /etc/sysctl.d/nf.conf
+      filesystem: root
+      mode: 0644
+      contents:
+        inline: |
+          net.netfilter.nf_conntrack_max=50000
+EOF
+      ,
     ]
   }
 
@@ -106,6 +144,10 @@ EOF
   # Acts as a smoke test to check if API server is functional after addition
   # of extra flags.
   oidc {}
+
+  # Disable kube-proxy setting net.netfilter.nf_conntrack_max so we can
+  # set it per worker pool via CLC snippet.
+  conntrack_max_per_core = 0
 }
 
 component "metrics-server" {}
diff --git a/ci/baremetal/baremetal-cluster.lokocfg.envsubst b/ci/baremetal/baremetal-cluster.lokocfg.envsubst
index 89d3985f3..f4ec9f454 100644
--- a/ci/baremetal/baremetal-cluster.lokocfg.envsubst
+++ b/ci/baremetal/baremetal-cluster.lokocfg.envsubst
@@ -40,6 +40,8 @@ cluster "bare-metal" {
     "testing.io" = "yes",
     "roleofnode" = "testing",
   }
+
+  conntrack_max_per_core = 65000
 }
 
 component "inspektor-gadget" {}
diff --git a/ci/packet/packet-cluster.lokocfg.envsubst b/ci/packet/packet-cluster.lokocfg.envsubst
index ddc6fa021..3921e2ce8 100644
--- a/ci/packet/packet-cluster.lokocfg.envsubst
+++ b/ci/packet/packet-cluster.lokocfg.envsubst
@@ -62,6 +62,8 @@ EOF
   oidc {}
 
   ignore_x509_cn_check = true
+
+  conntrack_max_per_core = 65000
 }
 
 component "metrics-server" {}
diff --git a/docs/configuration-reference/platforms/aws.md b/docs/configuration-reference/platforms/aws.md
index 6d8160e08..323657b61 100644
--- a/docs/configuration-reference/platforms/aws.md
+++ b/docs/configuration-reference/platforms/aws.md
@@ -121,6 +121,8 @@ cluster "aws" {
 
   enable_reporting = false
 
+  conntrack_max_per_core = 32768
+
   oidc {
     issuer_url     = var.oidc_issuer_url
     client_id      = var.oidc_client_id
@@ -196,59 +198,59 @@ worker_pool "my-worker-pool" {
 
 ## Attribute reference
 
-| Argument                      | Description                                                                                                                                                                                |     Default     |     Type     | Required |
-|-------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:---------------:|:------------:|:--------:|
-| `asset_dir`                   | Location where Lokomotive stores cluster assets.                                                                                                                                           |        -        |    string    |   true   |
-| `cluster_name`                | Name of the cluster. **NOTE**: It must be unique per DNS Zone and region.                                                                                                                  |        -        |    string    |   true   |
-| `tags`                        | Optional details to tag on AWS resources.                                                                                                                                                  |        -        | map(string)  |  false   |
-| `os_channel`                  | Flatcar Container Linux AMI channel to install from (stable, beta, alpha, edge).                                                                                                           |    "stable"     |    string    |  false   |
-| `os_version`                  | Flatcar Container Linux version to install. Version such as "2303.3.1" or "current".                                                                                                       |    "current"    |    string    |  false   |
-| `dns_zone`                    | Route 53 DNS Zone.                                                                                                                                                                         |        -        |    string    |   true   |
-| `dns_zone_id`                 | Route 53 DNS Zone ID.                                                                                                                                                                      |        -        |    string    |   true   |
-| `oidc`                        | OIDC configuration block.                                                                                                                                                                  |        -        |    object    |  false   |
-| `oidc.issuer_url`             | URL of the provider which allows the API server to discover public signing keys. Only URLs which use the https:// scheme are accepted.                                                     |        -        |    string    |  false   |
-| `oidc.client_id`              | A client id that all tokens must be issued for.                                                                                                                                            |  "clusterauth"  |    string    |  false   |
-| `oidc.username_claim`         | JWT claim to use as the user name.                                                                                                                                                         |     "email"     |    string    |  false   |
-| `oidc.groups_claim`           | JWT claim to use as the user’s group.                                                                                                                                                      |    "groups"     |    string    |  false   |
-| `enable_csi`                  | Set up IAM role needed for dynamic volumes provisioning to work on AWS                                                                                                                     |      false      |     bool     |  false   |
-| `expose_nodeports`            | Expose node ports `30000-32767` in the security group, if set to `true`.                                                                                                                   |      false      |     bool     |  false   |
-| `ssh_pubkeys`                 | List of SSH public keys for user `core`. Each element must be specified in a valid OpenSSH public key format, as defined in RFC 4253 Section 6.6, e.g. "ssh-rsa AAAAB3N...".               |        -        | list(string) |   true   |
-| `controller_count`            | Number of controller nodes.                                                                                                                                                                |        1        |    number    |  false   |
-| `controller_type`             | AWS instance type for controllers.                                                                                                                                                         |   "t3.small"    |    string    |  false   |
-| `controller_clc_snippets`     | Controller Flatcar Container Linux Config snippets.                                                                                                                                        |       []        | list(string) |  false   |
-| `region`                      | AWS region to use for deploying the cluster.                                                                                                                                               | "eu-central-1"  |    string    |  false   |
-| `enable_aggregation`          | Enable the Kubernetes Aggregation Layer.                                                                                                                                                   |      true       |     bool     |  false   |
-| `enable_tls_bootstrap`        | Enable TLS bootstraping for Kubelet.                                                                                                                                                       |      true       |     bool     |  false   |
-| `encrypt_pod_traffic`         | Enable in-cluster pod traffic encryption. If true `network_mtu` is reduced by 60 to make room for the encryption header.                                                                   |      false      |     bool     |  false   |
-| `ignore_x509_cn_check`        | Ignore check of common name in x509 certificates. If any application is built pre golang 1.15 then API server rejects x509 from such application, enable this to get around apiserver.     |      false      |     bool     |  false   |
-| `disk_size`                   | Size of the EBS volume in GB.                                                                                                                                                              |       40        |    number    |  false   |
-| `disk_type`                   | Type of the EBS volume (e.g. standard, gp2, io1).                                                                                                                                          |      "gp2"      |    string    |  false   |
-| `disk_iops`                   | IOPS of the EBS volume (e.g 100).                                                                                                                                                          |        0        |    number    |  false   |
-| `network_mtu`                 | Physical Network MTU. When using instance types with Jumbo frames, use 9001.                                                                                                               |      1500       |    number    |  false   |
-| `host_cidr`                   | CIDR IPv4 range to assign to EC2 nodes.                                                                                                                                                    |  "10.0.0.0/16"  |    string    |  false   |
-| `pod_cidr`                    | CIDR IPv4 range to assign Kubernetes pods.                                                                                                                                                 |  "10.2.0.0/16"  |    string    |  false   |
-| `service_cidr`                | CIDR IPv4 range to assign Kubernetes services.                                                                                                                                             |  "10.3.0.0/16"  |    string    |  false   |
-| `cluster_domain_suffix`       | Cluster's DNS domain.                                                                                                                                                                      | "cluster.local" |    string    |  false   |
-| `enable_reporting`            | Enables usage or analytics reporting to upstream.                                                                                                                                          |      false      |     bool     |  false   |
-| `certs_validity_period_hours` | Validity of all the certificates in hours.                                                                                                                                                 |      8760       |    number    |  false   |
-| `worker_pool`                 | Configuration block for worker pools. There can be more than one. **NOTE**: worker pool name must be unique per DNS zone and region.                                                       |        -        | list(object) |   true   |
-| `worker_pool.count`           | Number of workers in the worker pool. Can be changed afterwards to add or delete workers.                                                                                                  |        -        |    number    |   true   |
-| `worker_pool.instance_type`   | AWS instance type for worker nodes.                                                                                                                                                        |   "t3.small"    |    string    |  false   |
-| `worker_pool.ssh_pubkeys`     | List of SSH public keys for user `core`. Each element must be specified in a valid OpenSSH public key format, as defined in RFC 4253 Section 6.6, e.g. "ssh-rsa AAAAB3N...".               |        -        | list(string) |   true   |
-| `worker_pool.os_channel`      | Flatcar Container Linux channel to install from (stable, beta, alpha, edge).                                                                                                               |    "stable"     |    string    |  false   |
-| `worker_pool.os_version`      | Flatcar Container Linux version to install. Version such as "2303.3.1" or "current".                                                                                                       |    "current"    |    string    |  false   |
-| `worker_pool.labels`          | Map of extra Kubernetes Node labels for worker nodes.                                                                                                                                      |        -        | map(string)  |  false   |
-| `worker_pool.taints`          | Map of Taints to assign to worker nodes.                                                                                                                                                   |        -        | map(string)  |  false   |
-| `worker_pool.disk_size`       | Size of the EBS volume in GB.                                                                                                                                                              |       40        |    number    |  false   |
-| `worker_pool.disk_type`       | Type of the EBS volume (e.g. standard, gp2, io1).                                                                                                                                          |      "gp2"      |    string    |  false   |
-| `worker_pool.disk_iops`       | IOPS of the EBS volume (e.g 100).                                                                                                                                                          |        0        |    number    |  false   |
-| `worker_pool.spot_price`      | Spot price in USD for autoscaling group spot instances. Leave as empty string for autoscaling group to use on-demand instances. Switching in-place from spot to on-demand is not possible. |       ""        |    string    |  false   |
-| `worker_pool.target_groups`   | Additional target group ARNs to which worker instances should be added.                                                                                                                    |       []        | list(string) |  false   |
-| `worker_pool.lb_http_port`    | Port the load balancer should listen on for HTTP connections.                                                                                                                              |       80        |    number    |  false   |
-| `worker_pool.lb_https_port`   | Port the load balancer should listen on for HTTPS connections.                                                                                                                             |       443       |    number    |  false   |
-| `worker_pool.clc_snippets`    | CWorker Flatcar Container Linux Config snippets.                                                                                                                                           |       []        | list(string) |  false   |
-| `worker_pool.tags`            | Optional details to tag on AWS resources.                                                                                                                                                  |        -        | map(string)  |  false   |
-
+| Argument                      | Description                                                                                                                                                                                                                                                                                                  | Default         | Type         | Required |
+|-------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--:-:------------|--:-:---------|--:-:-----|
+| `asset_dir`                   | Location where Lokomotive stores cluster assets.                                                                                                                                                                                                                                                             | -               | string       | true     |
+| `cluster_name`                | Name of the cluster. **NOTE**: It must be unique per DNS Zone and region.                                                                                                                                                                                                                                    | -               | string       | true     |
+| `tags`                        | Optional details to tag on AWS resources.                                                                                                                                                                                                                                                                    | -               | map(string)  | false    |
+| `os_channel`                  | Flatcar Container Linux AMI channel to install from (stable, beta, alpha, edge).                                                                                                                                                                                                                             | "stable"        | string       | false    |
+| `os_version`                  | Flatcar Container Linux version to install. Version such as "2303.3.1" or "current".                                                                                                                                                                                                                         | "current"       | string       | false    |
+| `dns_zone`                    | Route 53 DNS Zone.                                                                                                                                                                                                                                                                                           | -               | string       | true     |
+| `dns_zone_id`                 | Route 53 DNS Zone ID.                                                                                                                                                                                                                                                                                        | -               | string       | true     |
+| `oidc`                        | OIDC configuration block.                                                                                                                                                                                                                                                                                    | -               | object       | false    |
+| `oidc.issuer_url`             | URL of the provider which allows the API server to discover public signing keys. Only URLs which use the https:// scheme are accepted.                                                                                                                                                                       | -               | string       | false    |
+| `oidc.client_id`              | A client id that all tokens must be issued for.                                                                                                                                                                                                                                                              | "clusterauth"   | string       | false    |
+| `oidc.username_claim`         | JWT claim to use as the user name.                                                                                                                                                                                                                                                                           | "email"         | string       | false    |
+| `oidc.groups_claim`           | JWT claim to use as the user’s group.                                                                                                                                                                                                                                                                        | "groups"        | string       | false    |
+| `enable_csi`                  | Set up IAM role needed for dynamic volumes provisioning to work on AWS                                                                                                                                                                                                                                       | false           | bool         | false    |
+| `expose_nodeports`            | Expose node ports `30000-32767` in the security group, if set to `true`.                                                                                                                                                                                                                                     | false           | bool         | false    |
+| `ssh_pubkeys`                 | List of SSH public keys for user `core`. Each element must be specified in a valid OpenSSH public key format, as defined in RFC 4253 Section 6.6, e.g. "ssh-rsa AAAAB3N...".                                                                                                                                 | -               | list(string) | true     |
+| `controller_count`            | Number of controller nodes.                                                                                                                                                                                                                                                                                  | 1               | number       | false    |
+| `controller_type`             | AWS instance type for controllers.                                                                                                                                                                                                                                                                           | "t3.small"      | string       | false    |
+| `controller_clc_snippets`     | Controller Flatcar Container Linux Config snippets.                                                                                                                                                                                                                                                          | []              | list(string) | false    |
+| `region`                      | AWS region to use for deploying the cluster.                                                                                                                                                                                                                                                                 | "eu-central-1"  | string       | false    |
+| `enable_aggregation`          | Enable the Kubernetes Aggregation Layer.                                                                                                                                                                                                                                                                     | true            | bool         | false    |
+| `enable_tls_bootstrap`        | Enable TLS bootstraping for Kubelet.                                                                                                                                                                                                                                                                         | true            | bool         | false    |
+| `encrypt_pod_traffic`         | Enable in-cluster pod traffic encryption. If true `network_mtu` is reduced by 60 to make room for the encryption header.                                                                                                                                                                                     | false           | bool         | false    |
+| `ignore_x509_cn_check`        | Ignore check of common name in x509 certificates. If any application is built pre golang 1.15 then API server rejects x509 from such application, enable this to get around apiserver.                                                                                                                       | false           | bool         | false    |
+| `disk_size`                   | Size of the EBS volume in GB.                                                                                                                                                                                                                                                                                | 40              | number       | false    |
+| `disk_type`                   | Type of the EBS volume (e.g. standard, gp2, io1).                                                                                                                                                                                                                                                            | "gp2"           | string       | false    |
+| `disk_iops`                   | IOPS of the EBS volume (e.g 100).                                                                                                                                                                                                                                                                            | 0               | number       | false    |
+| `network_mtu`                 | Physical Network MTU. When using instance types with Jumbo frames, use 9001.                                                                                                                                                                                                                                 | 1500            | number       | false    |
+| `host_cidr`                   | CIDR IPv4 range to assign to EC2 nodes.                                                                                                                                                                                                                                                                      | "10.0.0.0/16"   | string       | false    |
+| `pod_cidr`                    | CIDR IPv4 range to assign Kubernetes pods.                                                                                                                                                                                                                                                                   | "10.2.0.0/16"   | string       | false    |
+| `service_cidr`                | CIDR IPv4 range to assign Kubernetes services.                                                                                                                                                                                                                                                               | "10.3.0.0/16"   | string       | false    |
+| `cluster_domain_suffix`       | Cluster's DNS domain.                                                                                                                                                                                                                                                                                        | "cluster.local" | string       | false    |
+| `enable_reporting`            | Enables usage or analytics reporting to upstream.                                                                                                                                                                                                                                                            | false           | bool         | false    |
+| `certs_validity_period_hours` | Validity of all the certificates in hours.                                                                                                                                                                                                                                                                   | 8760            | number       | false    |
+| `conntrack_max_per_core`      | Maximum number of entries in conntrack table per CPU on all nodes in the cluster. If you require more fain-grained control over this value, set it to 0 and add CLC snippet setting `net.netfilter.nf_conntrack_max sysctl setting per node pool. See [Flatcar documentation about sysctl] for more details. | 32768           | number       | false    |
+| `worker_pool`                 | Configuration block for worker pools. There can be more than one. **NOTE**: worker pool name must be unique per DNS zone and region.                                                                                                                                                                         | -               | list(object) | true     |
+| `worker_pool.count`           | Number of workers in the worker pool. Can be changed afterwards to add or delete workers.                                                                                                                                                                                                                    | -               | number       | true     |
+| `worker_pool.instance_type`   | AWS instance type for worker nodes.                                                                                                                                                                                                                                                                          | "t3.small"      | string       | false    |
+| `worker_pool.ssh_pubkeys`     | List of SSH public keys for user `core`. Each element must be specified in a valid OpenSSH public key format, as defined in RFC 4253 Section 6.6, e.g. "ssh-rsa AAAAB3N...".                                                                                                                                 | -               | list(string) | true     |
+| `worker_pool.os_channel`      | Flatcar Container Linux channel to install from (stable, beta, alpha, edge).                                                                                                                                                                                                                                 | "stable"        | string       | false    |
+| `worker_pool.os_version`      | Flatcar Container Linux version to install. Version such as "2303.3.1" or "current".                                                                                                                                                                                                                         | "current"       | string       | false    |
+| `worker_pool.labels`          | Map of extra Kubernetes Node labels for worker nodes.                                                                                                                                                                                                                                                        | -               | map(string)  | false    |
+| `worker_pool.taints`          | Map of Taints to assign to worker nodes.                                                                                                                                                                                                                                                                     | -               | map(string)  | false    |
+| `worker_pool.disk_size`       | Size of the EBS volume in GB.                                                                                                                                                                                                                                                                                | 40              | number       | false    |
+| `worker_pool.disk_type`       | Type of the EBS volume (e.g. standard, gp2, io1).                                                                                                                                                                                                                                                            | "gp2"           | string       | false    |
+| `worker_pool.disk_iops`       | IOPS of the EBS volume (e.g 100).                                                                                                                                                                                                                                                                            | 0               | number       | false    |
+| `worker_pool.spot_price`      | Spot price in USD for autoscaling group spot instances. Leave as empty string for autoscaling group to use on-demand instances. Switching in-place from spot to on-demand is not possible.                                                                                                                   | ""              | string       | false    |
+| `worker_pool.target_groups`   | Additional target group ARNs to which worker instances should be added.                                                                                                                                                                                                                                      | []              | list(string) | false    |
+| `worker_pool.lb_http_port`    | Port the load balancer should listen on for HTTP connections.                                                                                                                                                                                                                                                | 80              | number       | false    |
+| `worker_pool.lb_https_port`   | Port the load balancer should listen on for HTTPS connections.                                                                                                                                                                                                                                               | 443             | number       | false    |
+| `worker_pool.clc_snippets`    | CWorker Flatcar Container Linux Config snippets.                                                                                                                                                                                                                                                             | []              | list(string) | false    |
+| `worker_pool.tags`            | Optional details to tag on AWS resources.                                                                                                                                                                                                                                                                    | -               | map(string)  | false    |
 
 ## Applying
 
@@ -265,3 +267,5 @@ To destroy the Lokomotive cluster, execute the following command:
 ```console
 lokoctl cluster destroy --confirm
 ```
+
+[Flatcar documentation about sysctl](https://docs.flatcar-linux.org/os/other-settings/#tuning-sysctl-parameters)
diff --git a/docs/configuration-reference/platforms/baremetal.md b/docs/configuration-reference/platforms/baremetal.md
index 61ed057b8..42577dbcf 100644
--- a/docs/configuration-reference/platforms/baremetal.md
+++ b/docs/configuration-reference/platforms/baremetal.md
@@ -92,6 +92,8 @@ cluster "bare-metal" {
 
   encrypt_pod_traffic = true
 
+  conntrack_max_per_core = 32768
+
   oidc {
     issuer_url     = var.oidc_issuer_url
     client_id      = var.oidc_client_id
@@ -126,37 +128,37 @@ os_version = var.custom_default_os_version
 
 ## Attribute reference
 
-| Argument                    | Description                                                                                                                                                                            |     Default      |     Type     | Required |
-|-----------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:----------------:|:------------:|:--------:|
-| `asset_dir`                 | Location where Lokomotive stores cluster assets.                                                                                                                                       |        -         |    string    |   true   |
-| `cached_install`            | Whether the operating system should PXE boot and install from matchbox /assets cache. Note that the admin must have downloaded the `os_version` into matchbox assets.                  |     "false"      |    string    |  false   |
-| `cluster_name`              | Name of the cluster.                                                                                                                                                                   |        -         |    string    |   true   |
-| `controller_domains`        | Ordered list of controller FQDNs. Example: ["node1.example.com"]                                                                                                                       |        -         | list(string) |   true   |
-| `controller_macs`           | Ordered list of controller identifying MAC addresses. Example: ["52:54:00:a1:9c:ae"]                                                                                                   |        -         | list(string) |   true   |
-| `controller_names`          | Ordered list of controller names. Example: ["node1"]                                                                                                                                   |        -         | list(string) |   true   |
-| `k8s_domain_name`           | Controller DNS name which resolves to a controller instance. Workers and kubeconfig's will communicate with this endpoint. Example: "cluster.example.com"                              |        -         |    string    |   true   |
-| `labels`                    | Map of extra Kubernetes Node labels for worker nodes.                                                                                                                                  |        -         | map(string)  |  false   |
-| `matchbox_ca_path`          | Path to the CA to verify and authenticate client certificates.                                                                                                                         |        -         |    string    |   true   |
-| `matchbox_client_cert_path` | Path to the server TLS certificate file.                                                                                                                                               |        -         |    string    |   true   |
-| `matchbox_client_key_path`  | Path to the server TLS key file.                                                                                                                                                       |        -         |    string    |   true   |
-| `matchbox_endpoint`         | Matchbox API endpoint.                                                                                                                                                                 |        -         |    string    |   true   |
-| `matchbox_http_endpoint`    | Matchbox HTTP read-only endpoint. Example: "http://matchbox.example.com:8080"                                                                                                          |        -         |    string    |   true   |
-| `network_mtu`               | Physical Network MTU.                                                                                                                                                                  |       1500       |    number    |  false   |
-| `worker_names`              | Ordered list of worker names. Example: ["node2", "node3"]                                                                                                                              |        -         | list(string) |   true   |
-| `worker_macs`               | Ordered list of worker identifying MAC addresses. Example ["52:54:00:b2:2f:86", "52:54:00:c3:61:77"]                                                                                   |        -         | list(string) |   true   |
-| `worker_domains`            | Ordered list of worker FQDNs. Example ["node2.example.com", "node3.example.com"]                                                                                                       |        -         | list(string) |   true   |
-| `ssh_pubkeys`               | List of SSH public keys for user `core`. Each element must be specified in a valid OpenSSH public key format, as defined in RFC 4253 Section 6.6, e.g. "ssh-rsa AAAAB3N...".           |        -         | list(string) |   true   |
-| `os_version`                | Flatcar Container Linux version to install. Version such as "2303.3.1" or "current".                                                                                                   |    "current"     |    string    |  false   |
-| `os_channel`                | Flatcar Container Linux channel to install from ("flatcar-stable", "flatcar-beta", "flatcar-alpha", "flatcar-edge").                                                                   | "flatcar-stable" |    string    |  false   |
-| `enable_tls_bootstrap`      | Enable TLS bootstraping for Kubelet.                                                                                                                                                   |       true       |     bool     |  false   |
-| `encrypt_pod_traffic`       | Enable in-cluster pod traffic encryption. If true `network_mtu` is reduced by 60 to make room for the encryption header.                                                               |      false       |     bool     |  false   |
-| `ignore_x509_cn_check`      | Ignore check of common name in x509 certificates. If any application is built pre golang 1.15 then API server rejects x509 from such application, enable this to get around apiserver. |      false       |     bool     |  false   |
-| `oidc`                      | OIDC configuration block.                                                                                                                                                              |        -         |    object    |  false   |
-| `oidc.issuer_url`           | URL of the provider which allows the API server to discover public signing keys. Only URLs which use the https:// scheme are accepted.                                                 |        -         |    string    |  false   |
-| `oidc.client_id`            | A client id that all tokens must be issued for.                                                                                                                                        |  "clusterauth"   |    string    |  false   |
-| `oidc.username_claim`       | JWT claim to use as the user name.                                                                                                                                                     |     "email"      |    string    |  false   |
-| `oidc.groups_claim`         | JWT claim to use as the user’s group.                                                                                                                                                  |     "groups"     |    string    |  false   |
-
+| Argument                    | Description                                                                                                                                                                                                                                                                                                  | Default          | Type         | Required |
+|-----------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--:-:-------------|--:-:---------|--:-:-----|
+| `asset_dir`                 | Location where Lokomotive stores cluster assets.                                                                                                                                                                                                                                                             | -                | string       | true     |
+| `cached_install`            | Whether the operating system should PXE boot and install from matchbox /assets cache. Note that the admin must have downloaded the `os_version` into matchbox assets.                                                                                                                                        | "false"          | string       | false    |
+| `cluster_name`              | Name of the cluster.                                                                                                                                                                                                                                                                                         | -                | string       | true     |
+| `controller_domains`        | Ordered list of controller FQDNs. Example: ["node1.example.com"]                                                                                                                                                                                                                                             | -                | list(string) | true     |
+| `controller_macs`           | Ordered list of controller identifying MAC addresses. Example: ["52:54:00:a1:9c:ae"]                                                                                                                                                                                                                         | -                | list(string) | true     |
+| `controller_names`          | Ordered list of controller names. Example: ["node1"]                                                                                                                                                                                                                                                         | -                | list(string) | true     |
+| `k8s_domain_name`           | Controller DNS name which resolves to a controller instance. Workers and kubeconfig's will communicate with this endpoint. Example: "cluster.example.com"                                                                                                                                                    | -                | string       | true     |
+| `labels`                    | Map of extra Kubernetes Node labels for worker nodes.                                                                                                                                                                                                                                                        | -                | map(string)  | false    |
+| `matchbox_ca_path`          | Path to the CA to verify and authenticate client certificates.                                                                                                                                                                                                                                               | -                | string       | true     |
+| `matchbox_client_cert_path` | Path to the server TLS certificate file.                                                                                                                                                                                                                                                                     | -                | string       | true     |
+| `matchbox_client_key_path`  | Path to the server TLS key file.                                                                                                                                                                                                                                                                             | -                | string       | true     |
+| `matchbox_endpoint`         | Matchbox API endpoint.                                                                                                                                                                                                                                                                                       | -                | string       | true     |
+| `matchbox_http_endpoint`    | Matchbox HTTP read-only endpoint. Example: "http://matchbox.example.com:8080"                                                                                                                                                                                                                                | -                | string       | true     |
+| `network_mtu`               | Physical Network MTU.                                                                                                                                                                                                                                                                                        | 1500             | number       | false    |
+| `worker_names`              | Ordered list of worker names. Example: ["node2", "node3"]                                                                                                                                                                                                                                                    | -                | list(string) | true     |
+| `worker_macs`               | Ordered list of worker identifying MAC addresses. Example ["52:54:00:b2:2f:86", "52:54:00:c3:61:77"]                                                                                                                                                                                                         | -                | list(string) | true     |
+| `worker_domains`            | Ordered list of worker FQDNs. Example ["node2.example.com", "node3.example.com"]                                                                                                                                                                                                                             | -                | list(string) | true     |
+| `ssh_pubkeys`               | List of SSH public keys for user `core`. Each element must be specified in a valid OpenSSH public key format, as defined in RFC 4253 Section 6.6, e.g. "ssh-rsa AAAAB3N...".                                                                                                                                 | -                | list(string) | true     |
+| `os_version`                | Flatcar Container Linux version to install. Version such as "2303.3.1" or "current".                                                                                                                                                                                                                         | "current"        | string       | false    |
+| `os_channel`                | Flatcar Container Linux channel to install from ("flatcar-stable", "flatcar-beta", "flatcar-alpha", "flatcar-edge").                                                                                                                                                                                         | "flatcar-stable" | string       | false    |
+| `enable_tls_bootstrap`      | Enable TLS bootstraping for Kubelet.                                                                                                                                                                                                                                                                         | true             | bool         | false    |
+| `encrypt_pod_traffic`       | Enable in-cluster pod traffic encryption. If true `network_mtu` is reduced by 60 to make room for the encryption header.                                                                                                                                                                                     | false            | bool         | false    |
+| `ignore_x509_cn_check`      | Ignore check of common name in x509 certificates. If any application is built pre golang 1.15 then API server rejects x509 from such application, enable this to get around apiserver.                                                                                                                       | false            | bool         | false    |
+| `oidc`                      | OIDC configuration block.                                                                                                                                                                                                                                                                                    | -                | object       | false    |
+| `oidc.issuer_url`           | URL of the provider which allows the API server to discover public signing keys. Only URLs which use the https:// scheme are accepted.                                                                                                                                                                       | -                | string       | false    |
+| `oidc.client_id`            | A client id that all tokens must be issued for.                                                                                                                                                                                                                                                              | "clusterauth"    | string       | false    |
+| `oidc.username_claim`       | JWT claim to use as the user name.                                                                                                                                                                                                                                                                           | "email"          | string       | false    |
+| `oidc.groups_claim`         | JWT claim to use as the user’s group.                                                                                                                                                                                                                                                                        | "groups"         | string       | false    |
+| `conntrack_max_per_core`    | Maximum number of entries in conntrack table per CPU on all nodes in the cluster. If you require more fain-grained control over this value, set it to 0 and add CLC snippet setting `net.netfilter.nf_conntrack_max sysctl setting per node pool. See [Flatcar documentation about sysctl] for more details. | 32768            | number       | false    |
 
 ## Applying
 
@@ -173,3 +175,5 @@ To destroy the Lokomotive cluster, execute the following command:
 ```console
 lokoctl cluster destroy --confirm
 ```
+
+[Flatcar documentation about sysctl](https://docs.flatcar-linux.org/os/other-settings/#tuning-sysctl-parameters)
diff --git a/docs/configuration-reference/platforms/packet.md b/docs/configuration-reference/platforms/packet.md
index 716511e47..c86e392a4 100644
--- a/docs/configuration-reference/platforms/packet.md
+++ b/docs/configuration-reference/platforms/packet.md
@@ -120,6 +120,8 @@ cluster "packet" {
 
   certs_validity_period_hours = 8760
 
+  conntrack_max_per_core = 32768
+
   oidc {
     issuer_url     = var.oidc_issuer_url
     client_id      = var.oidc_client_id
@@ -230,6 +232,7 @@ node_type = var.custom_default_worker_type
 | `reservation_ids`                     | Block with Packet hardware reservation IDs for controller nodes. Each key must have the format `controller-${index}` and the value is the reservation UUID. Can't be combined with `reservation_ids_default`. Key indexes must be sequential and start from 0. Example: `reservation_ids = { controller-0 = "<reservation_id>" }`. | -               | map(string)  | false    |
 | `reservation_ids_default`             | Default reservation ID for controllers. The value`next-available` will choose any reservation that matches the pool's device type and facility. Can't be combined with `reservation_ids`                                                                                                                                           | -               | string       | false    |
 | `certs_validity_period_hours`         | Validity of all the certificates in hours.                                                                                                                                                                                                                                                                                         | 8760            | number       | false    |
+| `conntrack_max_per_core`      				| Maximum number of entries in conntrack table per CPU on all nodes in the cluster. If you require more fain-grained control over this value, set it to 0 and add CLC snippet setting `net.netfilter.nf_conntrack_max sysctl setting per node pool. See [Flatcar documentation about sysctl] for more details.                       | 32768           | number       | false    |
 | `worker_pool`                         | Configuration block for worker pools. There can be more than one.                                                                                                                                                                                                                                                                  | -               | list(object) | true     |
 | `worker_pool.count`                   | Number of workers in the worker pool. Can be changed afterwards to add or delete workers.                                                                                                                                                                                                                                          | 1               | number       | true     |
 | `worker_pool.clc_snippets`            | Flatcar Container Linux Config snippets for nodes in the worker pool.                                                                                                                                                                                                                                                              | []              | list(string) | false    |
diff --git a/examples/aws-testing/cluster.lokocfg b/examples/aws-testing/cluster.lokocfg
index 926f270f2..fe3327a31 100644
--- a/examples/aws-testing/cluster.lokocfg
+++ b/examples/aws-testing/cluster.lokocfg
@@ -33,6 +33,8 @@ cluster "aws" {
   //os_channel       = "stable"
   //os_version       = "current"
 
+  conntrack_max_per_core = 0
+
   worker_pool "my-wp-name" {
     count         = var.workers_count
     instance_type = var.workers_type
@@ -40,6 +42,32 @@ cluster "aws" {
 
     //os_channel    = "stable"
     //os_version    = "current"
+
+    labels        = {
+      "testing.io"         = "yes",
+      "roleofnode"         = "testing",
+      "conntrack-modified" = "true",
+    }
+
+    clc_snippets = [
+      <<EOF
+storage:
+  files:
+    - path: /etc/modules-load.d/nf.conf
+      filesystem: root
+      mode: 0644
+      contents:
+        inline: |
+          nf_conntrack
+    - path: /etc/sysctl.d/nf.conf
+      filesystem: root
+      mode: 0644
+      contents:
+        inline: |
+          net.netfilter.nf_conntrack_max=50000
+EOF
+      ,
+    ]
   }
 }
 
diff --git a/pkg/assets/generated_assets.go b/pkg/assets/generated_assets.go
index cab5a50e3..325ad8a20 100644
--- a/pkg/assets/generated_assets.go
+++ b/pkg/assets/generated_assets.go
@@ -5020,9 +5020,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/charts/control-plane/kubernetes/templates/kube-proxy.yaml": &vfsgen۰CompressedFileInfo{
 			name:             "kube-proxy.yaml",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 2124,
+			uncompressedSize: 2299,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xac\x54\x4d\x6f\xdb\x46\x10\xbd\xeb\x57\xcc\x21\x40\xd2\x03\xc5\xba\x40\x8a\x82\x80\x0e\x81\xe5\xb6\x01\x6a\xd9\xb0\x9a\x5c\x83\xd1\xee\x48\x1a\x68\xbf\xb0\x3b\x64\xa5\x06\xfe\xef\xc5\x52\xa2\x45\xca\x74\x75\xc9\xde\x38\xf3\xe6\xed\xdb\x37\xc3\xc1\xc0\x5f\x29\x26\xf6\xae\x02\x0c\x21\x95\xcd\xcd\x64\xc7\x4e\x57\x30\x47\xb2\xde\x2d\x49\x26\x96\x04\x35\x0a\x56\x13\x00\x87\x96\x2a\xd8\xd5\x2b\x2a\x42\xf4\xfb\xc3\x29\x94\x02\xaa\x2e\x9e\x0e\x49\xc8\x4e\x00\x0c\xae\xc8\xa4\x5c\x05\x20\x4c\xb1\x02\xe7\x35\xb5\x9f\xbb\xdf\x52\x81\x21\x0c\x98\x52\x20\x95\xc1\x89\x0c\x29\xf1\xf1\x58\x68\x51\xd4\xf6\xaf\x1e\xd3\x2b\xae\x71\x36\x80\x3a\x68\x14\x5a\x4a\x44\xa1\xcd\xe1\x24\xe3\x10\xa8\x82\x27\x6f\x0c\xbb\xcd\x97\x16\xd0\xc6\x63\x3f\xd2\xdd\x63\x71\xff\xc5\x61\x83\x6c\x70\x65\xa8\x82\x9b\x09\x80\x90\x0d\xe6\x05\xd3\x77\x26\x1f\x33\xd0\x39\xa2\xf4\x2d\xad\xf9\xa0\x73\x5e\x50\xd8\xbb\x1e\x43\x22\xa5\xbc\x0d\xd3\x44\xaa\x8e\x2c\x87\x29\x9a\xb0\xc5\x69\x2e\x8e\x8e\x84\xd2\x94\x7d\x19\xbc\xae\xe0\xbd\xf6\x6a\x47\xb1\xd4\xb4\xc6\xda\xc8\xfb\x96\xa2\xf3\x34\x9f\xad\x4f\xb2\x20\xf9\xc7\xc7\x5d\x05\x12\xeb\x4e\x53\x88\xec\x33\xf5\xad\xc1\x94\x16\x6d\x7f\x8f\x2d\x2c\xb2\xf0\x42\x45\x16\x56\x68\x26\x9d\xa0\xd8\xb0\xa2\x4f\x4a\xf9\xda\xc9\xe2\xf5\x38\xb4\xef\xf6\x86\xe2\xf0\x29\x05\xd0\x7a\x4d\x4a\x2a\x58\xf8\xa5\xda\x92\xae\xcd\xd9\x14\x1f\x32\xdc\xc7\x0a\xee\xf6\x9c\x24\x8d\xd4\xdc\xed\x49\xd5\x72\xb5\x44\x79\x27\xc8\x8e\x62\xef\xe2\x91\x99\x3d\x1e\xb6\xb8\xa1\x0a\xbe\x7f\x87\xe9\x57\x34\x35\xa5\xd6\xd7\xc7\x8c\x99\xb6\x39\x78\x7e\x7e\x01\x2b\x6f\x2d\x3a\x7d\x6e\x4d\x31\x46\x59\x40\x51\x28\x53\x27\xa1\x58\x28\xd6\x71\x36\x4a\x1e\xbc\xbe\xfd\x3c\x7f\xea\xd3\xe7\xc2\xdc\xa1\x2c\xb6\xf0\x0d\xc5\xc8\x9a\x66\xef\x3e\x2c\x1e\xe6\x77\xdf\x16\x9f\xee\xef\x7e\x1a\x40\x33\x97\xf2\x6e\xcd\x9b\x59\x49\xa2\xca\xf3\x40\x94\xe7\xd4\xa0\xa2\xd5\x59\x58\xaf\x69\xc6\x41\xf2\x44\xa7\x41\xde\x92\x44\x56\xa9\x58\xb1\xd3\x05\x6a\x1d\x29\xa5\xd9\xbb\x0f\x7f\x3e\x2c\xff\xfe\xf6\xf9\x71\x78\xfb\x96\xd0\xc8\xf6\xdf\xab\x58\x72\xcd\xd9\xaf\x73\x2b\x5e\xde\xd4\xcb\x01\x34\xd9\xa5\xdf\xa3\xb7\xd5\x20\x0c\xb0\x66\x32\xfa\x89\xd6\x97\xf1\x53\xe6\x11\x65\x5b\xb5\x93\x3e\xcd\x03\x9b\x47\x72\xe4\xce\x93\xb6\x1f\x79\xa3\xa0\xd4\x69\x9a\x9b\xd6\xe3\x35\xdc\x90\xa3\x94\x1e\xa3\x5f\x51\xbf\x7e\x2b\x12\xfe\x20\x19\x52\x86\x96\xa9\x3c\xf9\x39\x4c\xf9\x28\x15\xdc\xfc\xfc\xcb\xc7\x5f\x7b\x71\x76\x2c\x8c\x66\x4e\x06\x0f\xcb\xdc\x66\x9d\x2a\xb8\xf9\xd8\x43\x08\x5b\xf2\xb5\x8c\x25\xbb\x25\x72\xeb\x9d\xd0\x7e\x20\x25\x44\x6e\xd8\xd0\x86\xf4\x60\x37\x00\x34\xde\xd4\x96\xee\xf3\xcf\x9e\xfa\xb3\x7f\xfe\xa9\x2e\x66\x0d\xc0\x66\xf0\xd1\xa3\x8b\xd9\xec\x81\x22\xa1\x7e\x70\xe6\x70\x71\x5d\x47\x6c\x78\x95\x67\xb5\x36\x83\xa2\x3e\xb3\xe1\x55\xf9\x1a\x71\x85\x36\x25\x53\x28\x8a\x92\xda\x7f\xed\x7f\x34\xa7\x64\xca\x16\x78\x8d\xfb\xe8\xcf\xe8\xb6\xb9\x30\xe6\xf8\x79\x8f\xa1\xef\xfb\x25\xba\x60\xd7\xed\x8f\xc9\x75\x47\xf2\x23\x5a\xd1\xfd\x4e\xbe\x65\xcf\x15\x0f\xde\xe6\x1a\x5d\x61\x12\xb3\x48\x7d\x9b\x89\xe6\x1c\xf3\x2a\xfb\x2f\x00\x00\xff\xff\x54\xa8\xfd\xad\x4c\x08\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xac\x54\x4d\x6f\x1b\x37\x10\xbd\xeb\x57\xcc\x21\x40\x9c\x03\xa5\x3a\x45\xd2\x60\x01\x1d\x02\xc9\x6d\x03\xd4\xb2\x60\x35\xb9\x06\x23\x72\x24\x11\xe2\x72\x58\x72\x76\x2b\xd5\xc8\x7f\x2f\xb8\x92\xac\x5d\x79\x5d\x5d\xca\xdb\x0e\xdf\x3c\xbe\x7d\xf3\x81\xc1\x7e\xa3\x98\x2c\xfb\x02\x30\x84\x34\xaa\x6f\x07\x5b\xeb\x4d\x01\x53\xa4\x92\xfd\x82\x64\x50\x92\xa0\x41\xc1\x62\x00\xe0\xb1\xa4\x02\xb6\xd5\x92\x54\x88\xbc\xdb\x1f\x43\x29\xa0\x3e\xc5\xd3\x3e\x09\x95\x03\x00\x87\x4b\x72\x29\x67\x01\x88\xa5\x58\x80\x67\x43\xcd\xe7\xf6\x53\x52\x18\x42\x87\x29\x05\xd2\x19\x9c\xc8\x91\x16\x8e\x87\xc4\x12\x45\x6f\xfe\x68\x31\xbd\xe0\xea\x67\x03\xa8\x82\x41\xa1\x85\x44\x14\x5a\xef\x8f\x32\xf6\x81\x0a\x78\x64\xe7\xac\x5f\x7f\x6d\x00\x4d\x3c\xb6\x23\xa7\x77\x4a\xdc\x7d\xf5\x58\xa3\x75\xb8\x74\x54\xc0\xed\x00\x40\xa8\x0c\xee\x19\xd3\x76\x26\x1f\xd7\xd1\xd9\xa3\xf4\x35\xad\xf9\xa0\xf7\x2c\x28\x96\x7d\x8b\x21\x91\xd6\x5c\x86\x61\x22\x5d\x45\x2b\xfb\x21\xba\xb0\xc1\x61\x4e\x8e\x9e\x84\xd2\xd0\xf2\x28\xb0\x29\xe0\xad\x61\xbd\xa5\x38\x32\xb4\xc2\xca\xc9\xdb\x86\xe2\xe4\x69\x3e\x1b\x4e\x32\x23\xf9\x9b\xe3\xb6\x00\x89\xd5\x49\x53\x88\x96\x33\xf5\xc4\x61\x4a\xb3\xa6\xbe\x87\x12\xaa\x2c\x5c\xe9\x68\xc5\x6a\x74\x83\x93\xa0\x58\x5b\x4d\x9f\xb5\xe6\xca\xcb\xec\x65\x3b\x34\xff\xcd\x8e\x62\xf7\x57\x14\xd0\x6a\x45\x5a\x0a\x98\xf1\x42\x6f\xc8\x54\xee\x6c\x0a\x87\x0c\xe7\x58\xc0\xdd\xce\x26\x49\x3d\x39\x77\x3b\xd2\x95\x5c\x4d\xd1\xec\x05\xad\xa7\xd8\x7a\xb8\xa7\x67\x0f\xc7\x96\xb8\xa6\x02\x9e\x9e\x60\xf8\x0d\x5d\x45\xa9\xf1\x75\x9e\x31\xc3\xe6\x0e\x7e\xfc\x78\x06\x6b\x2e\x4b\xf4\xe6\x5c\x1a\xd5\x47\xa9\x40\x29\xed\xaa\x24\x14\x95\xb6\x26\x8e\x7b\xc9\x03\x9b\xc9\x97\xe9\x63\x9b\x3e\x27\xe6\x0a\x65\xb1\x8a\x6b\x8a\xd1\x1a\x1a\xbf\xb9\x99\x3d\x4c\xef\xbe\xcf\x3e\xdf\xdf\xbd\xeb\x40\x33\x97\x66\xbf\xb2\xeb\xf1\x88\x44\x8f\xce\x0d\x31\x3a\x5f\x75\x32\x1a\x9d\xaa\x64\x43\x63\x1b\x24\x77\x74\xea\xdc\x97\x24\xd1\xea\xa4\x96\xd6\x1b\x85\xc6\x44\x4a\x69\xfc\xe6\xe6\xf7\x87\xc5\x9f\xdf\xbf\xcc\xbb\xaf\x6f\x08\x9d\x6c\xfe\xb9\x8a\x7d\x7a\x52\x60\x57\xe0\x59\xe0\x86\xfe\x82\x1b\xeb\xa5\xc7\x0d\xcd\xde\x4b\x44\xbd\xbd\xc7\xdd\x9c\xe2\x84\x23\xbd\x83\x9f\xdf\xff\xf2\xf1\xd3\xbb\x4b\x87\x9e\xa1\xaa\xc4\x9d\x0a\xd9\x64\x8e\xd4\x6f\x72\x0f\x6d\x9b\x2e\x6b\x23\x6f\xda\x21\xf2\xf5\xb9\xbc\xe7\xce\x79\x2e\x41\xeb\x0e\xa0\xce\xef\xfd\x1a\xb9\x2c\x3a\x61\x80\x95\x25\x67\x1e\x69\x75\x19\x3f\xde\xcc\x51\x36\x45\x33\x98\xc3\x3c\x5f\x79\x82\x7a\xde\x3c\x5a\xf9\x7f\xbe\x28\x28\x55\x1a\xe6\x1e\x6b\xf1\x3a\x5b\x93\xa7\x94\xe6\x91\x97\xd4\xce\xdf\x88\x84\xdf\x48\xba\x94\xa1\x61\x1a\x1d\xcb\xdf\xbd\xe2\x28\x05\xdc\xfe\xf4\xfe\xc3\xc7\x56\xdc\x7a\x2b\x16\xdd\x94\x1c\xee\x17\xb9\x2b\x4d\x2a\xe0\xf6\x43\x0b\x21\xb6\x24\xae\xa4\xef\xf2\xb4\xf3\x26\xec\x85\x76\x1d\x29\x21\xda\xda\x3a\x5a\x93\xe9\xac\x32\x80\x9a\x5d\x55\xd2\x7d\xde\x4d\xa9\x3d\xaa\xe7\x1d\x70\x31\x1a\x00\x65\x06\x1f\x3c\xba\x18\xa5\x16\x28\x12\x9a\x07\xef\xf6\x17\xcf\x9d\x88\x9d\x5d\xe6\xd1\xaa\x5c\x27\xa9\xcd\xec\xec\x72\xf4\x12\x71\x85\x36\x25\xa7\x34\x45\x49\xcd\x6a\xf8\x0f\xcd\x29\xb9\x51\x03\xbc\xc6\x7d\xf0\xa7\x77\x39\x5e\x18\x73\xf8\xbc\xc7\xd0\xf6\xfd\x12\xad\xac\x3f\xad\xbb\xc1\x75\x47\xf2\x4f\x34\xa2\xdb\x95\x7c\xcd\x9e\x2b\x1e\xbc\xce\xd5\xbb\x0c\x24\x66\x91\x66\x92\x89\xa6\x36\xe6\xa9\xff\x37\x00\x00\xff\xff\x69\xef\x73\xb5\xfb\x08\x00\x00"),
 		},
 		"/charts/control-plane/kubernetes/templates/kube-scheduler-disruption.yaml": &vfsgen۰CompressedFileInfo{
 			name:             "kube-scheduler-disruption.yaml",
@@ -5116,9 +5116,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/charts/control-plane/kubernetes/values.yaml": &vfsgen۰CompressedFileInfo{
 			name:             "values.yaml",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 676,
+			uncompressedSize: 705,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x94\x91\xc1\x6e\xa3\x30\x10\x86\xef\x3c\x85\x5f\x00\x08\xd9\x28\xda\xf5\x6d\x4b\x2e\x51\x5b\x09\x25\xbd\x55\x3d\x38\xe3\x81\x58\x31\x1e\x34\x36\x51\xfa\xf6\x95\x81\x90\xf6\x90\x48\x15\x07\xac\x7f\xec\x7f\xbe\xf9\x07\xc8\x05\x26\x6b\x91\x5f\x95\x53\x0d\xb2\x4c\x84\xf0\xc8\x67\x03\xf8\x1f\x80\x7a\x17\x9e\xf1\x33\x8a\xa0\x4a\xe4\x30\x9e\x26\xc9\xb4\xaa\x41\x29\x4e\x7f\x7d\xd6\x00\x67\x86\xf2\x53\x7f\xc0\xf4\xe6\x99\xb6\x93\xe9\xb9\xc8\x8a\x7f\xd9\x9f\xf8\xd8\x52\xaf\x2b\xa6\xb3\xd1\x3f\x9a\x95\xdb\xcd\x4e\x8a\x62\x91\x0d\x5f\xbe\x5c\x25\x42\x74\xa4\x67\x79\x39\xc8\xc5\x3a\x5a\x8c\xfe\x95\x55\x0e\x77\xd8\x59\x03\xca\x4b\x51\x24\x42\x04\xee\x7d\x40\x1d\x41\xfd\xc6\xb0\x14\x79\xef\x39\xf7\x47\xc5\x98\x83\x4a\x01\x39\x98\xda\x80\x0a\xe8\x93\x88\x5a\x31\x5d\x1e\x4d\xd2\x0d\xf5\x1b\xfc\x1d\xa0\xdf\xb6\xdd\xc3\x11\x75\x6f\xc7\xf9\xef\xb4\xf6\xf3\x9d\x6f\xd9\xdd\x19\x3c\x3e\x28\xc9\xd5\xa6\xd9\xba\xd2\x46\x96\x39\xd9\x78\x02\x62\xd4\xce\x0f\xab\x1b\xab\x1b\x6a\x95\x71\xfb\xbe\xae\xcd\x45\x5e\xc5\xcc\x12\x28\xfb\x30\xdf\x89\x75\x32\xcc\xaf\xc6\xd3\x3f\x55\xad\x5e\xaf\x6e\x5d\xb6\xd5\xbc\xd0\x62\x91\x60\x00\x1d\x11\xd0\xe9\x8e\x8c\x0b\x5e\x8a\xf7\x8f\x01\xdd\x62\x18\x0b\xea\x60\xf1\xed\x65\xff\x44\x14\x7c\x60\xd5\xc9\x98\x2c\x26\x5f\x01\x00\x00\xff\xff\xf8\x99\xcc\xc9\xa4\x02\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x94\x91\xc1\xee\x9a\x40\x10\xc6\xef\x3c\xc5\xbe\x00\x20\x6a\xac\xdd\x5b\x8b\x17\xd3\x9a\x10\xed\xad\xe9\x61\xdc\x1d\x70\xe3\xb2\x43\x66\x17\x63\xdf\xbe\x59\x40\xec\xff\xa0\xc9\x3f\x1c\x98\x7c\xc3\x7c\xf3\xe3\x1b\x45\x2e\x30\x59\x8b\x7c\x00\x07\x0d\xb2\x4c\x84\xf0\xc8\x37\xa3\xf0\x9b\x52\xd4\xbb\xf0\x03\xff\x46\x51\x41\x89\x1c\xc6\x6a\x92\x4c\x0b\x0d\x4a\x71\xdd\xfa\xac\x51\x9c\x19\xca\xaf\xfd\x19\xd3\xa7\x67\xda\x4e\xa6\xb7\x22\x2b\xbe\x66\xab\x38\x6c\xa9\xd7\x15\xd3\xcd\xe8\x0f\xcb\xca\xfd\xee\x28\x45\xb1\xc8\x86\x27\x5f\xae\x13\x21\x3a\xd2\xb3\xbc\x1c\xe4\x62\x13\x2d\x46\xff\xca\x82\xc3\x23\x76\xd6\x28\xf0\x52\x14\x89\x10\x81\x7b\x1f\x50\x47\x50\xbf\x33\x2c\x45\xde\x7b\xce\xfd\x05\x18\x73\x05\xa9\x42\x0e\xa6\x36\x0a\x02\xfa\x24\xa2\x56\x4c\xf7\x77\x7f\xd2\x0d\xfd\x27\xfc\x0b\xa0\xcf\xac\x1d\xf0\x5d\x60\x50\xd7\x03\xdc\x2b\xe4\x92\x18\xa5\x58\x2d\xbf\x6c\xb6\x03\xd3\x49\x5d\x50\xf7\x76\x0c\xe7\x05\x97\x9f\xbf\xf9\x2f\xd8\x17\xa9\xc4\x81\x92\x5c\x6d\x9a\xbd\x2b\x6d\x04\x9d\x63\x8f\x95\x22\x46\xed\xfc\x70\xd7\xb1\xbb\xa3\x16\x8c\x3b\xf5\x75\x6d\xee\xf2\x21\x66\x96\x14\xd8\xb7\xe1\x4f\xac\x93\x61\xfe\x30\x9e\xde\x29\xb4\x7a\xb3\x7e\x6e\xd9\x57\xf3\xb5\x8b\x45\x82\x41\xe9\x88\x80\x4e\x77\x64\x5c\xf0\x52\xfc\xfe\x33\xa0\x5b\x0c\x63\x03\xce\x16\x7f\xfd\x3c\x7d\x27\x0a\x3e\x30\x74\x32\xc6\x8e\xc9\xbf\x00\x00\x00\xff\xff\x43\xf3\x35\x7c\xc1\x02\x00\x00"),
 		},
 		"/charts/control-plane/lokomotive": &vfsgen۰DirInfo{
 			name:    "lokomotive",
@@ -5294,9 +5294,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/aws/flatcar-linux/kubernetes/bootkube.tf": &vfsgen۰CompressedFileInfo{
 			name:             "bootkube.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 1467,
+			uncompressedSize: 1522,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x7c\x94\x5b\x6b\x2b\x37\x10\xc7\xdf\xf5\x29\x06\x87\x40\x52\x12\x6d\xeb\x34\x85\x04\x4c\x49\x2f\xf4\xa1\x8f\xa1\xe4\x21\x18\x31\x96\x66\x6d\x61\xad\xb4\xd5\xcc\x3a\x97\x43\xbe\xfb\x41\x5e\x6f\xec\xf8\x72\x8c\xc1\xa0\xf9\xfd\x35\xff\xd1\xcc\x38\x24\x8b\x81\xe1\x9b\x02\xc0\xd6\x1b\xa6\xbc\xa2\x0c\x13\xa8\x53\x6e\x50\x2e\x46\xe7\xac\xcf\x79\x74\x05\x2b\xcc\xda\x86\x8e\x85\xb2\x89\xd8\x50\x7f\xe2\x22\x9b\xf7\x14\xe9\x52\x7d\x28\x75\x06\x8f\x14\xea\xeb\x45\x62\x21\x07\xff\x76\x33\xca\x91\x84\x18\x90\x99\x84\xe1\x62\xd9\xcd\xc8\xa6\x58\xfb\xf9\x15\x34\x18\x7d\x4d\x2c\x7c\xa9\x9a\xe4\xba\x40\x30\x9a\xa5\x24\x05\x19\xad\xdd\x70\xea\xb2\x25\x98\xc0\x48\xeb\xaa\xff\x7e\x02\x4a\x01\xec\x9a\x81\xbd\xcf\xe4\xc0\xee\x97\xf2\x78\x9f\x87\x09\x3c\xaf\x1f\x42\x6f\xa1\xa9\x02\x20\xb1\xee\x94\x66\x02\xf8\xc2\x26\xa7\x4e\xe8\xf6\xc6\x64\xb2\x29\x3b\x5d\x04\xac\x7f\xd2\xf5\xff\x2e\x0e\x7a\x8a\xae\x4d\x3e\x0a\x1f\xd3\xfb\xc8\x82\xd1\x92\xb6\x29\x4a\x4e\x21\x50\x2e\xfa\x36\xfb\x15\x0a\x19\xdf\x16\xe3\xe5\xf9\x8c\xf3\xf9\xc0\xf6\x50\xe9\x27\xa1\x00\x22\xc9\x4b\xca\x4b\xd3\x48\x77\x82\xde\x21\x14\x40\x9b\x9c\xb1\xde\x1d\xbb\x7c\xc3\x0f\x44\x69\x0a\xe5\x95\xb7\x74\x54\xd0\xc3\xbb\xc4\x4e\x97\x5c\x6a\xd0\x47\xc3\x5d\x5d\xfb\xd7\xa3\x5d\xfa\x42\x94\xb7\x8b\x38\x0b\x64\x32\xb5\x29\x8b\x8f\xf3\xc3\x54\xfb\xc4\x56\x84\xf3\x79\xa6\x39\x8a\x4f\xf1\x84\x68\x87\x50\x00\x65\xa8\x0c\xb6\xbe\x6f\xb5\xa1\x57\xc9\x68\xea\x80\x73\x1e\x64\xa7\x89\x52\x24\x65\x61\xb3\xc2\xe0\x9d\x97\x37\xd3\x52\xf6\xc9\x99\x45\xea\x32\x0f\x45\x9e\x26\xca\x2c\x9f\xc1\x5f\x9e\x8b\x2f\x90\x05\x01\x53\xa8\x61\xb3\x45\x25\x6f\x20\xd1\x0a\xc0\xf5\x88\x29\x61\xd3\x87\xcd\x26\xbc\xc9\xf2\x03\xa2\xcf\xf2\x47\x48\x76\x09\x68\x2d\x31\x83\x24\x78\x78\x7a\x84\x86\x04\x1d\x0a\x96\x8d\x07\x0c\xa1\x0c\x04\x97\x7c\x67\x6b\xc9\x42\xa4\xe5\xfb\xaa\x72\xc9\xb2\xc6\x17\xd6\xd8\xe0\x7b\x8a\xda\xa6\xa6\x7a\x78\x7a\xfc\xfb\xcf\x71\x15\x50\x88\xa5\xfa\x8f\x29\xff\xd3\x79\x47\x15\xd9\xf1\xf5\x30\xd8\xd7\xc3\xfd\x7a\x21\x4d\x50\x00\xb3\xe2\x81\x9c\x19\xce\xd7\x93\x52\xde\xe9\x79\xf4\xcb\x6f\x77\x7a\x7c\xfb\xab\xde\xfc\x56\x37\xe3\xd1\xb4\x18\x2f\x7b\xcf\x92\xb1\x35\x92\x96\x14\xf9\xb0\x9d\x12\xd8\x7c\x52\xf0\x3b\xd8\x14\x2d\xca\xc5\x66\xa9\xb7\xbb\x65\xf6\xae\x9a\xf6\x7f\x63\x65\x1d\x0e\x83\x7c\x09\xf7\xf0\x3c\xdd\x8e\xd5\xd7\x2c\xa7\x0d\xac\x15\x36\xbf\xb5\x62\xca\xee\x48\xc6\xba\xf6\x76\x6b\xf9\x20\x54\x8a\xf4\xf3\x98\x32\x99\xd7\xdb\x9f\xef\x8c\x8d\xc6\x2e\xc8\x2e\x37\x8a\x63\x21\xf5\xa1\xbe\x07\x00\x00\xff\xff\xd7\x99\xd0\x65\xbb\x05\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x7c\x94\xdd\x6a\x1b\x3d\x10\x86\xcf\xf7\x2a\x06\x87\x40\xf2\x91\x68\xbf\x3a\x4d\x21\x01\x53\xd2\x1f\x7a\xd0\xc3\x50\x72\x10\x8c\x18\x4b\xb3\xb6\xb0\x56\xda\x6a\x66\x1d\x27\x25\xf7\x5e\xe4\xf5\xc6\x8e\x7f\x6a\x0c\x0b\x3b\xcf\xab\x79\x47\x33\xb3\x3e\x1a\xf4\x0c\x7f\x0a\x00\x6c\x9c\x66\x4a\x0b\x4a\x30\x82\x2a\xa6\x1a\xe5\x6c\x70\xca\xea\x94\x07\x17\xb0\xc0\xa4\x8c\x6f\x59\x28\xe9\x80\x35\x75\x6f\x6c\x60\xfd\x12\x03\x9d\x17\xaf\x45\x71\x02\xf7\xe4\xab\xcb\x59\x64\x21\x0b\x3f\xdb\x09\xa5\x40\x42\x0c\xc8\x4c\xc2\x70\x36\x6f\x27\x64\x62\xa8\xdc\xf4\x02\x6a\x0c\xae\x22\x16\x3e\x2f\xea\x68\x5b\x4f\x30\x98\xc4\x28\x19\x19\xac\xdc\x70\x6c\x93\x21\x18\xc1\x40\xa9\xb2\xfb\xbf\x01\x45\x01\xb0\x6d\x06\x76\x7e\xa3\x3d\xbb\xef\xca\xe3\x5d\x1e\x46\xf0\xb8\xba\x08\xb5\x81\xc6\x05\x00\x89\xb1\xc7\x34\x23\xc0\x27\xd6\x29\xb6\x42\xd7\x57\x3a\x91\x89\xc9\xaa\x2c\x60\xf5\x9f\xaa\x7e\xdb\xd0\xeb\x29\xd8\x26\xba\x20\x7c\x48\xef\x02\x0b\x06\x43\xca\xc4\x20\x29\x7a\x4f\x29\xeb\x9b\xe4\x16\x28\xa4\x5d\x93\x8d\xe7\xeb\xd3\xd6\xa5\x3d\xdb\x7d\xa5\x6f\x44\x01\x10\x48\x9e\x62\x9a\xeb\x5a\xda\x23\xf4\x16\x51\x00\x34\xd1\x6a\xe3\xec\xa1\xc3\xd7\x7c\x4f\xe4\xa6\x50\x5a\x38\x43\x07\x05\x1d\xbc\x4d\x6c\x75\xc9\xc6\x1a\x5d\xd0\xdc\x56\x95\x5b\x1e\xec\xd2\x3b\x22\xdf\x5d\xc0\x89\x27\x9d\xa8\x89\x49\x5c\x98\xee\xa7\xda\x25\x36\x22\x9c\x4e\x13\x4d\x51\x5c\x0c\x47\x44\x5b\x44\x01\x90\x87\x4a\x63\xe3\xba\x56\x6b\x5a\x4a\x42\x5d\x79\x9c\x72\x2f\x3b\x4e\xe4\x22\x29\x09\xeb\x05\x7a\x67\x9d\x3c\xeb\x86\x92\x8b\x56\xcf\x62\x9b\xb8\x2f\xf2\x38\x91\x67\xf9\x04\xbe\x39\xce\xbe\x40\x66\x04\x4c\xbe\x82\xf5\x16\xe5\xbc\x9e\x44\x15\x00\xb6\x43\x74\x0e\xeb\x2e\xac\xd7\xe1\x75\x96\x7f\x10\x5d\x96\x2f\x3e\x9a\x39\xa0\x31\xc4\x0c\x12\xe1\xee\xe1\x1e\x6a\x12\xb4\x28\x98\x37\x1e\xd0\xfb\x3c\x10\x9c\xf3\x9d\xac\x24\x33\x91\x86\x6f\xcb\xd2\x46\xc3\x0a\x9f\x58\x61\x8d\x2f\x31\x28\x13\xeb\xf2\xee\xe1\xfe\xfb\xd7\x61\xe9\x51\x88\xa5\xfc\xc5\x94\x7e\xb4\xce\x52\x49\x66\x78\xd9\x0f\xf6\x65\x7f\xbe\x9a\x49\xed\x0b\x80\x49\xf6\x40\x56\xf7\xef\x57\x93\x92\xef\xe9\x71\xf0\xe1\xd3\x8d\x1a\x5e\x7f\x54\xeb\x67\x79\x35\x1c\x8c\xb3\xf1\xbc\xf7\x2c\x09\x1b\x2d\x71\x4e\x81\xf7\xdb\x29\x9e\xf5\x1b\x05\x9f\xc1\xc4\x60\x50\xce\xd6\x4b\xbd\xd9\x2d\xbd\x73\xd4\xb8\xfb\x8c\xe5\x75\xd8\x0f\xf2\x39\xdc\xc2\xe3\x78\x33\x56\xef\xb3\x1c\x37\xb0\x52\x98\xf4\xdc\x88\xce\xbb\x23\x09\xab\xca\x99\x8d\xe5\xbd\x50\x2e\xd2\x4d\x43\x4c\xa4\x97\xd7\xff\xdf\x68\x13\xb4\x99\x91\x99\xaf\x15\x87\x42\xab\x4f\x60\x0c\x41\x12\x9a\xb9\xae\x71\x99\x87\x4a\x9b\x98\xa8\x1f\xb9\x83\xc1\xe2\xb5\xf8\x1b\x00\x00\xff\xff\x2b\xda\x59\x00\xf2\x05\x00\x00"),
 		},
 		"/terraform-modules/aws/flatcar-linux/kubernetes/bootstrap-configs.tf": &vfsgen۰CompressedFileInfo{
 			name:             "bootstrap-configs.tf",
@@ -5368,9 +5368,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/aws/flatcar-linux/kubernetes/variables.tf": &vfsgen۰CompressedFileInfo{
 			name:             "variables.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 4954,
+			uncompressedSize: 5192,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xa4\x58\x5f\x6f\x1b\x37\x12\x7f\xd7\xa7\x18\x38\x0f\xb1\x01\x79\x4f\xb6\xdb\xe4\x02\x34\x0f\xb2\x9d\x6b\x7d\xf1\xbf\x8b\x92\x06\xe8\xe1\xb0\xa0\xc8\xd9\x5d\xc2\x5c\x72\x8f\x43\xca\x56\x0e\xfd\xee\x87\xe1\xae\x65\x49\xbb\x4a\xed\x36\x79\x88\x14\xce\xcc\xef\x37\x7f\x38\x33\xd4\x42\x78\x2d\xe6\x06\x61\x4f\x9a\x48\x01\x7d\x6e\x45\x8d\x7b\xf0\xbf\x11\x40\x58\x36\x08\xdd\x9f\xf7\x40\xc1\x6b\x5b\x8e\x00\x14\x92\xf4\xba\x09\xda\x59\x78\x0f\x7b\x5f\xac\xfe\x6f\x44\xe8\xd4\x81\xd5\x61\xbf\xf1\xd8\xa0\x55\xa8\x20\x38\x50\x96\xf2\x6f\xce\xe2\xc1\xde\xe8\xf7\xd1\xe8\x15\x4c\xbf\xce\x46\xa3\x27\xe0\xc7\xe3\x97\x80\x4e\xbf\xce\xe0\x93\x8b\x01\x7f\x3c\x81\xf3\xeb\x19\xfc\xe6\x2c\xc2\x3e\x66\x65\x06\xe2\x9e\x32\x7c\x10\x75\x63\x30\x93\xae\x6e\x41\xfb\x68\xb9\x56\x7f\x19\xf0\xe2\xbc\xc3\xfc\xed\xe4\x76\x3a\x3d\x3d\x3d\xfb\xc7\xf4\xe3\x87\xb3\xc9\x36\x24\x3e\x34\x8e\x30\xb7\x4e\x61\xe3\x7c\xa0\x21\xdc\xb9\x73\x26\xa1\x16\x22\x9a\xd0\xfd\x67\x21\x0c\x61\x9f\xcb\x87\x64\x0f\xd8\x1e\x24\x83\x70\x32\x99\x4c\x26\x87\x27\xc7\x6f\xdf\xbc\x05\x6d\x21\x54\x08\x84\x32\x7a\x1d\x96\x50\x7a\x17\x9b\x2e\xf2\xda\x52\x10\x56\x22\xad\xd3\x93\xce\x06\xef\x8c\x41\x9f\x4b\x17\x6d\x18\xa2\x67\x63\x3d\x47\xdf\x23\x78\xd4\x27\x77\x9d\x24\xc1\x15\xf0\x64\x97\x60\x5f\x67\x98\x41\x2d\xb8\x44\x68\x3b\x3e\x6b\x04\x18\x75\x0d\x7f\x2d\x1f\xaf\xe0\x6b\x85\x16\x94\xd3\xb6\x4c\x0e\xc6\xa6\xf4\x42\x21\xad\x41\x35\x46\x58\x04\x67\x21\x9c\x64\x54\x0b\x63\x56\x0e\xb7\xe6\xee\x2b\xb4\xc9\x54\x25\x16\x6c\x86\x73\x48\xda\x96\x06\x37\x2d\x70\x64\xc7\x4f\x46\x2a\x41\x60\x5d\x00\xb4\x2e\x96\x15\xd4\x58\x3b\xbf\x84\xfd\xe3\x9f\x4f\x0f\x92\xb5\xe0\xc0\x47\x0b\xb5\xf3\x08\xa1\x12\x36\xd9\x5d\x21\xbb\x02\xee\xe2\x1c\x0f\x45\xa3\x09\xfd\x02\x3d\x67\xa8\x11\x5e\x18\x83\x66\x0c\xe4\xe0\x1e\xc1\x62\x7b\x55\x62\xca\xf7\x2b\x10\x30\xd7\x65\x99\x64\x5b\x33\x19\x7c\xd5\xa1\x82\x5f\xa6\x1b\x4c\xd7\x48\x52\xe5\xa2\x51\x30\x47\x28\x74\x3a\xa8\x12\xd9\xc2\xf9\x64\xb0\xf1\x4e\x45\x99\x92\x44\x18\x62\x43\x63\xd0\xe1\x35\x81\x47\xe9\xea\x7a\x75\x55\x23\x3d\x31\x27\xb8\x67\xc8\xe4\xd6\xa7\xe9\xd5\x18\x82\x4b\xa6\x4a\xbd\x40\x68\x0c\xda\xb0\x64\xe7\x22\xa5\x2c\x76\x51\x29\x9c\x07\x0c\x52\x81\xb0\x6a\xcb\xef\xac\x57\x3e\x7b\xe1\x24\xab\x51\xe9\x58\xef\x0d\x54\xf9\xd9\xf1\x56\xfa\xd8\xf6\x5a\x51\x6d\x55\x91\xa3\xe7\xb4\xae\x0d\xf8\xc2\x88\x20\x85\x1f\x00\xbf\xe6\x2e\xe6\x0a\xb8\x69\xd0\x8b\xc0\xb5\x32\x5b\x52\xc0\x1a\xf6\xa5\xf3\xe8\x08\x9c\x87\x4e\x7b\xbb\x9a\x1d\xe5\xb2\x12\xd6\xa2\x79\x09\x15\x0a\xac\x3d\xc0\x64\x7a\x75\x01\x9d\xbd\x14\x00\x2e\xfd\x9b\x19\xec\xb7\x0a\x63\x98\x63\x10\x63\x10\xa6\xa9\xc4\x18\x50\x95\x38\xc0\x67\x81\x9e\xb4\xb3\x2f\xe1\x23\xa3\xf7\x68\xc3\x00\xa1\x5f\x5b\x63\x1c\x9d\x47\x2e\x9d\x30\x07\xc5\xc6\x1a\xbd\x96\xd0\x41\x02\x45\x59\x81\x20\x38\x3e\x7e\x73\x94\xbd\x7b\x97\xf5\x9a\xa3\xd2\x74\x97\x93\xfe\x36\x98\xb8\x1d\x6d\xe7\x87\x49\x9f\xd6\x4c\x7f\xc3\x47\x4e\x1f\x4e\x67\xb0\x70\x26\xd6\x5c\xcc\xf0\xf3\xe9\x10\xe4\x56\xa7\xf9\xc3\x80\x94\xcd\xf1\x40\x30\x3e\xb3\x6e\x1f\xb5\x9d\x0a\x5c\xbb\x4a\x78\x35\x86\xb2\x39\x1e\x83\x76\x47\x83\xce\x6b\xd7\x0c\x8e\x84\x1d\xce\x0f\xf8\x7e\x71\x73\x3b\xdb\xc9\xe2\x68\xd2\x8b\xf9\x7a\xc7\x37\x32\x27\xab\x9b\x06\x87\xe7\x92\xd1\x14\xf6\xdb\x98\x1c\xf4\x81\xcf\x56\x86\x80\x3f\x0a\x6d\xd1\xc3\xa5\xb6\xf1\x81\xbf\x17\xba\x84\x95\xed\x9e\x1f\xff\xfe\xcf\x26\xa9\x20\x4a\xda\x68\xfd\xb5\x68\xd6\x94\xde\xa7\x23\x80\xbd\x2b\x61\x45\x89\xea\x74\xb9\xc7\x0c\x2e\xdd\x9d\xab\x5d\xd0\x8b\x74\x77\x00\xf6\xce\x3c\x8a\xb0\x3a\xfe\x62\xa9\x41\xa9\x0b\x8d\x8a\xcf\x7f\xef\xbb\x70\x93\x3e\x09\x03\x0a\x83\xd0\x86\xb8\x0b\x06\xc1\xb3\x81\xf7\x14\xf0\x48\x2e\x7a\x89\xdb\xdd\x06\x2d\xff\x9b\x4b\xd2\x7f\x75\x9a\xcf\x30\x40\x6c\xe0\x62\x7a\x05\xde\x99\x76\x14\xa0\x4a\x77\x5d\x2d\xad\xa8\xf9\x32\xa5\x7c\x12\x37\xf1\x85\xe6\x6b\x95\x66\xa0\x83\x7b\xe7\xef\x3a\xa2\xdd\x80\x97\x29\xea\x91\x7b\x96\xb3\xeb\x7c\x89\xaa\xfc\x0e\x97\x7f\x22\xc7\xb3\xd9\x2f\xd0\xc4\xb9\xd1\x12\xd8\x40\x22\x16\x09\x3d\xbc\xe6\x56\xf8\x7a\x2b\x2e\x82\x08\x43\xae\xb4\x6f\x81\xb6\x6c\xdd\x8a\x50\x31\x71\x01\x4a\x7b\x94\x81\x27\xc6\x7d\x85\x1e\xa1\x44\xcb\x9d\x16\x15\x24\x0b\xb4\x36\xcf\x1a\x23\x24\x2a\xee\xbc\xa9\xc2\x88\x57\x1b\x8f\x81\xd7\x88\x1d\x97\x77\x83\x91\xc5\xc0\x71\xca\xeb\x10\x87\x39\x55\x4b\xd2\x52\x18\xb8\x6e\x05\xe1\xea\xf3\x97\x0c\xbe\x10\xc2\xbb\xc9\xe4\x08\x34\x4f\x38\x8e\xf7\xd3\x58\x64\xcc\x6e\x38\xfe\x33\xd6\x73\x07\x85\x17\x35\x52\xd6\xe7\xd3\x5d\xe1\x0d\x3e\x95\xa3\x90\x4b\xad\x86\x23\x74\x76\x71\xfe\x09\x2e\x6e\x17\x3f\x80\x17\xb6\xc4\x14\x2c\x22\x5d\x5a\xfe\xc4\x23\x91\x77\x13\xda\xe9\x79\xaf\x6d\x1d\x4d\xb2\xf4\xf7\x6f\x47\x6f\xb6\x32\xd5\x38\xf5\x67\x68\x7c\x8c\x73\xf4\x16\x03\x97\xa3\x53\x2f\x63\x72\x3c\xcc\x84\xd7\x03\x2d\x71\x27\x9b\x9f\x7e\xfa\x70\x73\x3e\x7a\x16\xa5\xce\x14\x65\xa3\xcf\x15\xc2\x11\x05\xb8\xb8\x85\x7b\x6d\x0c\x17\x92\xc7\xb4\x88\xb4\x77\x8b\x77\x93\x7c\xb5\x9b\x8c\x53\xef\x3c\x9a\x84\x6a\xa7\x02\x57\xbb\xb2\x94\x8d\x98\xcc\x68\xcd\xed\x01\x97\x5b\x77\x4f\x86\xdd\x7d\x7c\x68\x29\x57\x0b\x6d\x73\x8a\x45\xa1\x1f\x06\xb3\xf0\xaf\x88\x5e\x63\x7b\xe5\x5a\xe9\xae\xec\xd2\x82\x9f\xf4\x56\x5c\x85\xa5\x7b\xf4\xa8\x60\xbe\x5c\x51\x85\xf3\x8e\x8f\xa6\xc7\xf7\x59\x66\x1c\xd7\x7a\x3b\x1a\x0a\xe7\xb2\x8e\x72\x46\x0b\x99\x6d\xc8\x1c\xc0\xf3\x73\xbb\xa1\x38\xdc\x29\x7d\x7a\xfb\x68\x5b\x7e\xb7\x5f\x6e\x6e\x80\x49\x93\x17\xcc\x12\x79\xb7\x10\x56\x98\x65\xd0\x92\xb7\xd6\xce\x58\xda\x59\x1b\x0a\x1e\x45\x4d\xb0\x7f\x26\x8c\x96\xee\xa0\x3f\x6c\xda\xde\x3b\xc4\x4b\x94\xa5\xc7\x32\xf5\xcb\xc1\x1c\x74\x24\x38\xe2\x6b\x75\x36\x7d\xd2\x82\x4b\xb1\x44\x0f\xfb\x1d\x60\x3b\x40\x7c\xc4\x81\xf6\x34\x38\x16\x58\xb6\xb7\x15\x24\x6a\x84\xa6\xc8\xb9\x5d\xa0\xca\xb9\x5c\x0d\x86\x41\x8a\xe7\xad\x7c\xf7\xec\x33\x05\xb4\x3a\xd0\xe9\xb4\x9d\xcb\x98\xb6\x36\x3a\xf0\x1d\xe4\x86\x22\x14\x0c\xe5\x73\xe7\x02\x05\x2f\x9a\xef\xc5\xe8\xf3\xe5\x0c\x4e\x1f\x05\x53\xd1\x7e\x6c\x19\x0c\x74\xc6\x3e\x1a\xf7\x5e\xf4\x4f\x48\x79\x70\x77\x68\x69\x10\xf0\x52\x53\x48\x0b\x0f\x8b\x1c\xea\xf6\xb5\xd1\x7e\x69\x87\x03\x1f\xa2\x90\x55\x6a\x97\x03\xf0\x69\xe4\x09\xbb\x3c\x68\xc7\xe6\x19\xfa\xa0\x0b\x2d\x45\xd8\x7a\x1a\xa3\x0f\x94\x2f\x84\xd1\x4a\x87\x65\xde\xa0\xd7\x4e\xe5\x95\x8b\x7e\x98\xd7\xaf\x9d\x24\xc3\xf3\xa3\x8c\x33\x22\xd7\x6c\xf3\x3a\xda\x6a\x3f\x77\xdb\xfb\xfb\xdb\x37\x93\xcd\x38\x6d\x36\xae\x1c\x1f\x82\x17\x79\x61\x56\xdb\x53\xef\xc7\x82\xe0\x05\xa4\x73\x68\x78\xb6\xa6\x77\x1e\x97\xc9\xe1\x5a\x99\xac\xbd\xd2\x76\x04\x6b\x7d\x3f\xf8\xde\x1a\x87\x56\xfa\x65\x13\x72\x1e\x2f\xc1\x8b\xa2\xd0\xf2\x7b\x35\xa3\xed\xe1\xe3\x2f\x47\x8d\x53\xd0\x69\x40\x67\x45\x3b\xbb\xab\x76\x9e\x71\xc3\x75\x69\x9d\xc7\xfc\xe1\xc7\xc9\xbb\x5c\xda\x5c\x56\x28\xef\x06\xb9\x5c\x24\x41\x38\xbb\x86\x24\x93\xd2\xc4\x5a\x1b\xb9\x7b\x29\x91\xff\x07\x00\x00\xff\xff\x3b\x16\x7c\xeb\x5a\x13\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xa4\x58\xdb\x6e\x1b\x39\xd2\xbe\xd7\x53\x14\x9c\x8b\xc8\x80\xd4\xbf\x6c\xcf\x24\x7f\x80\xc9\x85\x6c\x67\x67\xbc\xf1\x69\x23\x7b\x02\xcc\x62\xd1\xa0\xd8\xd5\xdd\x84\xd9\x64\x2f\x8b\x94\xa5\x2c\xe6\xdd\x17\xc5\x6e\xcb\x92\xba\xe5\x75\x26\xc9\x45\xa4\xb0\x0e\x5f\x1d\xf8\x55\x51\x0b\xe1\x94\x98\x6b\x84\x03\xa9\x03\x79\x74\xa9\x11\x15\x1e\xc0\x7f\x06\x00\x7e\x55\x23\xb4\x7f\x3e\x02\x79\xa7\x4c\x31\x00\xc8\x90\xa4\x53\xb5\x57\xd6\xc0\x47\x38\xb8\x37\xea\xdf\x01\xa1\x55\x07\x56\x87\x61\xed\xb0\x46\x93\x61\x06\xde\x42\x66\x28\xfd\x66\x0d\x1e\x1e\x0c\xfe\x1c\x0c\xde\xc0\xf4\xeb\x6c\x30\x78\x76\xfc\x74\xfc\x3d\x4e\xa7\x5f\x67\xf0\xc5\x06\x8f\x3f\x9f\xc0\xf9\xf5\x0c\xfe\xb0\x06\x61\x88\x49\x91\x80\x78\xa4\x04\x97\xa2\xaa\x35\x26\xd2\x56\x8d\xd3\xae\xb7\x54\x65\x3f\xec\xf0\xe2\xbc\xf5\xf9\xc7\xc9\xed\x74\x7a\x7a\x7a\xf6\xb7\xe9\xe7\x4f\x67\x93\x5d\x97\xb8\xac\x2d\x61\x6a\x6c\x86\xb5\x75\x9e\xfa\xfc\xce\xad\xd5\xd1\x6b\x2e\x82\xf6\xed\x7f\xe6\x42\x13\x76\xb1\x7c\x8a\xf6\x80\xed\x41\x34\x08\x27\x93\xc9\x64\x32\x3e\x39\x7e\xff\xee\x3d\x28\x03\xbe\x44\x20\x94\xc1\x29\xbf\x82\xc2\xd9\x50\xb7\x99\x57\x86\xbc\x30\x12\x69\x13\x9e\xb4\xc6\x3b\xab\x35\xba\x54\xda\x60\x7c\x1f\x3c\x13\xaa\x39\xba\x0e\xc0\xa3\x2e\xb8\xeb\x28\x09\x36\x87\x67\xbb\x04\x43\x95\x60\x02\x95\xe0\x16\xa1\xdd\xfc\x6c\x00\x60\xaf\x1b\xfe\x37\xea\xf1\x06\xbe\x96\x68\x20\xb3\xca\x14\x31\xc0\x50\x17\x4e\x64\x48\x1b\xae\x6a\x2d\x0c\x82\x35\xe0\x4f\x12\xaa\x84\xd6\xeb\x80\x1b\x73\x8f\x25\x9a\x68\xaa\x14\x0b\x36\xc3\x35\x24\x65\x0a\x8d\xdb\x16\x38\xb3\xa3\x67\x23\xa5\x20\x30\xd6\x03\x1a\x1b\x8a\x12\x2a\xac\xac\x5b\xc1\xf0\xf8\xd7\xd3\xc3\x68\xcd\x5b\x70\xc1\x40\x65\x1d\x82\x2f\x85\x89\x76\xd7\x9e\x6d\x0e\x0f\x61\x8e\x63\x51\x2b\x42\xb7\x40\xc7\x15\xaa\x85\x13\x5a\xa3\x1e\x01\x59\x78\x44\x30\xd8\x5c\x95\x10\xeb\xfd\x06\x04\xcc\x55\x51\x44\xd9\xc6\x4c\x02\x5f\x95\x2f\xe1\xb7\xe9\x16\xd2\x0d\x90\x54\xda\xa0\x33\x98\x23\xe4\x2a\x1e\x94\x11\x6c\x6e\x5d\x34\x58\x3b\x9b\x05\x19\x8b\x44\xe8\x43\x4d\x23\x50\xfe\x2d\x81\x43\x69\xab\x6a\x7d\x55\x03\x3d\x23\x27\x78\x64\x97\x31\xac\x2f\xd3\xab\x11\x78\x1b\x4d\x15\x6a\x81\x50\x6b\x34\x7e\xc5\xc1\x05\x8a\x55\x6c\xb3\x92\x5b\x07\xe8\x65\x06\xc2\x64\x3b\x71\x27\x9d\xf6\x39\xf0\x27\x49\x85\x99\x0a\xd5\x41\x4f\x97\x9f\x1d\xef\x94\x8f\x6d\x6f\x34\xd5\x4e\x17\x59\x7a\x0d\x75\x6d\xb9\xcf\xb5\xf0\x52\xb8\x1e\xe7\xd7\xcc\x62\x36\x87\x9b\x1a\x9d\xf0\xdc\x2b\xb3\x15\x79\xac\x60\x28\xad\x43\x4b\x60\x1d\xb4\xda\xbb\xdd\x6c\x29\x95\xa5\x30\x06\xf5\xf7\x40\x21\xcf\xda\x3d\x48\xa6\x57\x17\xd0\xda\x8b\x09\xe0\xd6\xbf\x99\xc1\xb0\x51\x18\xc1\x1c\xbd\x18\x81\xd0\x75\x29\x46\x80\x59\x81\x3d\x78\x16\xe8\x48\x59\xf3\x3d\x78\x64\x70\x0e\x8d\xef\x01\xf4\x7b\x63\x8c\xb3\xf3\x84\xa5\x15\xe6\xa4\x98\x50\xa1\x53\x12\x5a\x97\x40\x41\x96\x20\x08\x8e\x8f\xdf\x1d\x25\x1f\x3e\x24\x1d\x72\xcc\x14\x3d\xa4\xa4\xbe\xf5\x16\x6e\x0f\xed\xfc\x34\xe9\xc2\x9a\xa9\x6f\xf8\x84\xe9\xd3\xe9\x0c\x16\x56\x87\x8a\x9b\x19\x7e\x3d\xed\x73\xb9\xc3\x34\xff\x33\x21\x45\x7d\xdc\x93\x8c\x3b\xd6\xed\x7a\x6d\xa6\x02\xf7\x6e\x26\x5c\x36\x82\xa2\x3e\x1e\x81\xb2\x47\xbd\xc1\x2b\x5b\xf7\x8e\x84\x3d\xc1\xf7\xc4\x7e\x71\x73\x3b\xdb\x8b\xe2\x68\xd2\xc9\xf9\x26\xe3\x6b\x99\x92\x51\x75\x8d\xfd\x73\x49\x2b\xf2\xc3\x26\x27\x87\x5d\xc7\x67\x6b\x43\xc0\x1f\x85\x32\xe8\xe0\x52\x99\xb0\xe4\xef\xb9\x2a\x60\x6d\xbb\x13\xc7\x3f\xff\xb5\x0d\xca\x8b\x82\xb6\xa8\xbf\x12\xf5\x86\xd2\xc7\x78\x04\x70\x70\x25\x8c\x28\x30\x3b\x5d\x1d\x30\x82\x4b\xfb\x60\x2b\xeb\xd5\x22\xde\x1d\x80\x83\x33\x87\xc2\xaf\x8f\xef\x0d\xd5\x28\x55\xae\x30\xe3\xf3\x3f\xbb\x21\xdc\xc4\x4f\x42\x43\x86\x5e\x28\x4d\xcc\x82\x5e\xf0\x6c\xe0\x3d\x05\x1c\x92\x0d\x4e\xe2\x2e\xdb\xa0\xe1\x7f\x53\x49\xea\x47\xa7\xf9\x0c\x3d\x84\x1a\x2e\xa6\x57\xe0\xac\x6e\x46\x01\x66\xf1\xae\x67\x2b\x23\x2a\xbe\x4c\xb1\x9e\xc4\x24\xbe\x50\x7c\xad\xe2\x0c\xb4\xf0\x68\xdd\x43\x0b\xb4\x1d\xf0\x32\x66\x3d\x30\x67\x59\xb3\x89\x97\xa8\x4c\x1f\x70\xf5\x17\x6a\x3c\x9b\xfd\x06\x75\x98\x6b\x25\x81\x0d\x44\x60\x81\xd0\xc1\x5b\xa6\xc2\xb7\x3b\x79\x11\x44\xe8\xd3\x4c\xb9\xc6\xd1\x8e\xad\x5b\xe1\x4b\x06\x2e\x20\x53\x0e\xa5\xe7\x89\xf1\x58\xa2\x43\x28\xd0\x30\xd3\x62\x06\xd1\x02\x6d\xcc\xb3\x5a\x0b\x89\x19\x33\x6f\xec\x30\xe2\xd5\xc6\xa1\xe7\x35\x62\xcf\xe5\xdd\x42\x64\xd0\x73\x9e\xd2\xca\x87\x7e\x4c\xe5\x8a\x94\x14\x1a\xae\x1b\x41\xb8\xba\xbb\x4f\xe0\x9e\x10\x3e\x4c\x26\x47\xa0\x78\xc2\x71\xbe\x9f\xc7\x22\xfb\x6c\x87\xe3\xdf\x43\x35\xb7\x90\x3b\x51\x21\x25\x5d\x3c\xed\x15\xde\xc2\x53\x5a\xf2\xa9\x54\x59\x7f\x86\xce\x2e\xce\xbf\xc0\xc5\xed\xe2\x27\x70\xc2\x14\x18\x93\x45\xa4\x0a\xc3\x9f\x78\x24\xf2\x6e\x42\x7b\x23\xef\xd0\xd6\xd1\x24\x89\x7f\xff\xef\xe8\xdd\x4e\xa5\x6a\x9b\xfd\x15\x18\x9f\xc3\x1c\x9d\x41\xcf\xed\x68\xb3\xef\x43\x72\xdc\x8f\x84\xd7\x03\x25\x71\x2f\x9a\x5f\x7e\xf9\x74\x73\x3e\x78\x15\xa4\xd6\x14\x25\x83\xbb\x12\xe1\x88\x3c\x5c\xdc\xc2\xa3\xd2\x9a\x1b\xc9\x61\x5c\x44\x9a\xbb\xc5\xbb\x49\xba\xde\x4d\x46\x91\x3b\x8f\x26\xbe\xdc\xab\xc0\xdd\x9e\x19\x4a\x06\x0c\x66\xb0\x11\x76\x4f\xc8\x4d\xb8\x27\xfd\xe1\x3e\x3d\xb4\x32\x5b\x09\x65\x52\x0a\x79\xae\x96\xbd\x55\xf8\x47\x40\xa7\xb0\xb9\x72\x8d\x74\xdb\x76\x71\xc1\x8f\x7a\x6b\xac\xc2\xd0\x23\x3a\xcc\x60\xbe\x5a\x43\x85\xf3\x16\x8f\xa2\xa7\xf7\x59\xa2\x2d\xf7\x7a\x33\x1a\x72\x6b\x93\x16\x72\x42\x0b\x99\x6c\xc9\x1c\xc2\xeb\x6b\xbb\xa5\xd8\xcf\x94\x2e\xbe\x7d\x94\x29\x5e\xe4\xcb\xed\x0d\x30\x6a\xf2\x82\x59\x20\xef\x16\xc2\x08\xbd\xf2\x4a\xf2\xd6\xda\x1a\x8b\x3b\x6b\x4d\xde\xa1\xa8\x08\x86\x67\x42\x2b\x69\x0f\xbb\xc3\xa6\xe1\xde\x3e\x5c\xa2\x28\x1c\x16\x91\x2f\x7b\x6b\xd0\x82\xe0\x8c\x6f\xf4\xd9\xf4\x59\x0b\x2e\xc5\x0a\x1d\x0c\x5b\x87\xcd\x00\x71\x01\x7b\xe8\xa9\x77\x2c\xb0\x6c\x67\x2b\x88\xd0\x08\x75\x9e\x32\x5d\x60\x96\x72\xbb\x6a\xf4\xbd\x10\xcf\x1b\xf9\xf6\xd9\xa7\x73\x68\x74\xa0\xd5\x69\x98\x4b\xeb\xa6\x37\x5a\xe7\x7b\xc0\xf5\x65\xc8\x6b\x4a\xe7\xd6\x7a\xf2\x4e\xd4\x2f\xe5\xe8\xee\x72\x06\xa7\x4f\x82\xb1\x69\x3f\x37\x08\x7a\x98\xb1\xeb\x8d\xb9\x17\xdd\xb3\xa7\xd4\xdb\x07\x34\xd4\xeb\xf0\x52\x91\x8f\x0b\x0f\x8b\x8c\x55\xf3\xda\x68\xbe\x34\xc3\x81\x0f\x51\xc8\x32\xd2\x65\x8f\xfb\x38\xf2\x84\x59\x1d\x36\x63\xf3\x0c\x9d\x57\xb9\x92\xc2\xef\x3c\x8d\xd1\x79\x4a\x17\x42\xab\x4c\xf9\x55\x5a\xa3\x53\x36\x4b\x4b\x1b\x5c\x3f\xae\xdf\x5b\x49\x76\xcf\x8f\x32\xae\x88\xdc\xb0\xcd\xeb\x68\xa3\xfd\xda\x6d\xef\xff\xdf\xbf\x9b\x6c\xe7\x69\x9b\xb8\x52\x5c\x7a\x27\xd2\x5c\xaf\xb7\xa7\xce\x8f\x05\xde\x09\x88\xe7\x50\xf3\x6c\x8d\xef\x3c\x6e\x93\xf1\x46\x9b\x6c\xbc\xd2\xf6\x24\x6b\x73\x3f\x78\x69\x8d\x43\x23\xdd\xaa\xf6\x29\x8f\x17\xef\x44\x9e\x2b\xf9\x52\xcf\x28\x33\x7e\xfa\xe5\xa8\xb6\x19\xb4\x1a\xd0\x5a\x51\xd6\xec\xeb\x9d\x57\xdc\x70\x55\x18\xeb\x30\x5d\xfe\x3c\xf9\x90\x4a\x93\xca\x12\xe5\x43\x2f\x96\x8b\x28\x08\x67\xd7\x10\x65\x62\x99\x58\x6b\xab\x76\x3f\x00\x44\x5a\x63\xbc\x13\xf2\x21\xad\xc4\x92\xbb\x28\x65\x86\xee\x85\x32\x1e\xaf\x85\xc7\x95\x58\x8e\x6b\x74\x63\x16\x86\x85\xd0\x01\xd7\x93\x6b\x5c\x3b\xbb\x5c\x25\x70\x25\x96\xaa\x0a\x55\xdb\x3d\xdc\x76\xd7\xd3\x3b\xde\x02\x0d\xc6\xc7\x7e\xcb\x46\x42\x3e\x40\xcd\x4b\xfa\xed\x7d\x1c\x0e\x30\x9c\xf0\x81\x46\xb1\x68\x68\x43\xab\x4a\x79\x10\x34\x56\x14\xef\x52\x93\x3a\xd8\xc0\xa2\xcc\xe1\x4b\x0b\xce\x7f\x03\x00\x00\xff\xff\xcd\xe4\x23\x05\x48\x14\x00\x00"),
 		},
 		"/terraform-modules/aws/flatcar-linux/kubernetes/versions.tf": &vfsgen۰CompressedFileInfo{
 			name:             "versions.tf",
@@ -5608,9 +5608,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/bare-metal/flatcar-linux/kubernetes/bootkube.tf": &vfsgen۰CompressedFileInfo{
 			name:             "bootkube.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 1280,
+			uncompressedSize: 1335,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x7c\x93\xcf\x8a\xdb\x30\x10\x87\xef\x7a\x8a\x21\x7b\x69\x61\x9b\xf6\x52\x68\x0b\xa1\x97\xde\x7a\xec\x31\x2c\x83\x22\x8d\x6d\x61\x59\x32\x33\xe3\x34\x4b\xe9\xbb\x2f\x8a\x9d\xac\x49\xec\x18\xdf\xe6\xfb\xf4\xd3\x9f\x99\x27\xf8\x43\xb1\xfa\xd4\x64\x51\xf2\xf0\x7b\x38\x10\x27\x52\x12\xb0\x22\xa4\x02\x1f\xda\xe1\x40\x2e\xa7\x2a\xd4\xcf\xd0\xd9\x14\x2a\x12\x95\x8f\xa6\xcb\x7e\x88\x04\x9b\x43\xce\x5a\x90\x0d\xfc\x33\x00\x92\x07\x76\x04\x3b\xd8\x6c\xb7\x9f\xc7\xff\x0a\x18\x03\xe0\xe2\x20\x4a\x8c\xc9\x76\x04\x0b\xdf\x0e\x8e\x96\xb7\x73\xca\x00\xd8\x3e\xa0\x10\x1f\x89\x65\xc9\x81\x1d\xec\x8b\xd5\x7e\x13\xf4\xb9\xb3\x21\x9d\xc5\x17\x03\x40\xea\xfc\x23\x75\x8a\xcb\x49\x39\xc7\x48\x3c\xf9\x72\x51\x29\xf9\x3e\x87\xa4\x0b\xf2\x0e\xf6\x25\xe1\x7c\x4b\xe8\x03\x2f\xee\xec\x92\x70\xa5\x0c\x40\x22\xfd\x9b\xb9\xc5\x4e\x87\x07\xc6\x8c\x9a\x39\xa1\x47\x3b\x68\xf6\xa4\xe4\x34\xe4\x84\x1d\x69\x93\xfd\x8d\xb3\x42\x19\x80\x3e\x7b\x74\xc1\xaf\x6d\x76\x5a\xe7\x42\x95\xf7\x24\x3e\x06\x47\xab\xd2\x28\xcc\xa9\xd9\x23\x4f\x8f\x21\x43\x55\x85\xd3\xfd\xad\x2f\x51\xe5\xe2\x93\x3d\x44\x42\xa6\x3e\xb3\x86\x54\x2f\x47\xde\x52\xef\xa2\xad\x6b\xa6\xda\x96\x83\x3f\x10\x67\x94\x01\x28\xfd\x89\xb6\x0f\x63\xab\x20\x9d\x94\x2d\x56\xd1\xd6\x32\x57\xd7\xa9\x73\x6b\x13\xab\xe0\xd1\xc6\xe0\x83\xbe\x62\x4f\x1c\xb2\xc7\x26\x0f\x2c\x97\x13\xaf\x13\x65\x81\x27\xf8\x15\xa4\x6c\x0e\xb4\x21\x10\x8a\x15\x4c\x53\x59\x82\x23\xe9\xd6\x00\xf8\x11\xc1\x52\xc6\xb1\x8c\x53\x79\x4a\x79\x40\x94\x94\x32\x8e\xa2\x6c\x7b\xd4\xdc\x52\x92\xfb\xab\xd1\x28\x78\xa5\xe0\x27\xec\x63\x76\x36\xce\xa7\xe4\x66\x8d\x67\x18\x89\xd2\x7c\xf7\xd5\x17\xf8\x31\x8e\xca\xe2\xf2\xeb\xc9\x67\xc3\xf1\x6b\xaf\x58\x1a\x52\xd9\x56\x55\x70\xef\x7b\xbd\x2b\x95\xd3\x85\x3a\x65\x26\x3c\x7d\xfd\xf2\x1d\x5d\x42\xd7\x90\x6b\x27\x63\xa9\x64\xfe\x9b\xb7\x00\x00\x00\xff\xff\x0e\xf6\x7d\x82\x00\x05\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x7c\x94\x41\x8b\xdb\x3c\x10\x86\xef\xfa\x15\x43\xf6\xf2\x7d\xb0\x4d\x7b\x29\xb4\x85\xd0\x4b\x6f\x3d\xf6\x18\x96\x41\x91\xc6\x8e\xb0\xac\x31\xa3\x71\x9a\xa5\xf4\xbf\x17\xd9\x4e\x62\x12\x3b\x21\xb7\x79\x1e\xbd\x92\x66\xe4\x17\xf8\x45\xb1\xfa\x70\xe4\xac\xe4\xe1\x67\x7f\x20\x49\xa4\x94\xc1\xe6\x4c\x9a\xe1\xbf\xa6\x3f\x90\xe3\x54\x85\xfa\x15\x5a\x9b\x42\x45\x59\xf3\xff\xa6\x65\xdf\x47\x82\xcd\x81\x59\x0b\xb2\x81\x3f\x06\x20\x73\x2f\x8e\x60\x07\x9b\xed\xf6\xe3\xf8\xbf\x02\xc6\x00\xb8\xd8\x67\x25\xc1\x64\x5b\x82\x85\xdf\x0e\x4e\x56\xb6\x73\xca\x00\xd8\x2e\x60\x26\x39\x91\xe4\x25\x07\x76\xb0\x2f\x56\xf3\x25\xa3\xe7\xd6\x86\x34\x88\x6f\x06\x80\xd4\xf9\x67\xea\x14\xc7\x49\x85\x63\x24\x99\xfc\x7c\x51\x29\xf9\x8e\x43\xd2\x05\x79\x07\xfb\x92\x30\xdc\x12\xfa\x20\x8b\x3b\xbb\x24\x5c\x29\x03\x90\x48\x7f\xb3\x34\xd8\x6a\xff\xc4\x98\x51\x33\x27\x74\x68\x7b\x65\x4f\x4a\x4e\x03\x27\x6c\x49\x8f\xec\xef\x9c\x15\xca\x00\x74\xec\xd1\x05\xbf\xb6\xd9\x69\x9d\x0b\x55\xfa\x49\x72\x0a\x8e\x56\xa5\x51\x98\x53\xb3\x26\x4f\xcd\xc8\x7d\x55\x85\xf3\xe3\xad\x2f\x51\xe5\xe2\x93\x3d\x44\x42\xa1\x8e\x45\x43\xaa\x97\x23\xef\xa9\x9b\x68\xeb\x5a\xa8\xb6\xe5\xe0\x4f\xc4\x19\x65\x00\xca\x7c\xa2\xed\xc2\x38\x2a\x48\x67\x15\x8b\x55\xb4\x75\x9e\xab\xeb\xd4\x30\xda\x24\x9a\xf1\x64\x63\xf0\x41\xdf\xb1\x23\x09\xec\xf1\xc8\xbd\xe4\xcb\x89\xd7\x89\xb2\xc0\x0b\xfc\x08\xb9\x6c\x0e\xf4\x48\x90\x29\x56\x30\xbd\xca\x12\x1c\x49\xb7\x06\xc0\x8f\x08\x96\x32\x8e\x65\x9c\xca\x53\xca\x13\xa2\xa4\x94\xe7\x98\x55\x6c\x87\xca\x0d\xa5\xfc\x78\x35\x1a\x33\x5e\x29\xf8\x0e\xfb\xc8\xce\xc6\xf9\x2b\xb9\x5b\xe3\x15\x46\xa2\x0c\xdf\x63\xf5\x0d\xbe\x8d\x4f\x65\x71\xf9\xf5\xe4\xc1\x70\xf2\xde\x29\x96\x81\x54\xb1\x55\x15\xdc\x6d\xaf\x0f\xa5\x72\xba\x50\x27\x16\xc2\xf3\xe7\x4f\x5f\xd1\x25\x74\x47\x72\xcd\x64\x2c\x95\x86\xbe\x71\x4a\x2a\xd6\x35\xd8\xda\x73\x69\x0a\x3a\x16\xba\x7d\x1a\x16\x8a\xe6\xaf\xf9\x17\x00\x00\xff\xff\x69\x4a\xe4\xb2\x37\x05\x00\x00"),
 		},
 		"/terraform-modules/bare-metal/flatcar-linux/kubernetes/bootstrap-configs.tf": &vfsgen۰CompressedFileInfo{
 			name:             "bootstrap-configs.tf",
@@ -5682,9 +5682,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/bare-metal/flatcar-linux/kubernetes/variables.tf": &vfsgen۰CompressedFileInfo{
 			name:             "variables.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 5553,
+			uncompressedSize: 5791,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xb4\x58\x5b\x4f\x23\xc7\x12\x7e\xf7\xaf\x28\xc1\xc3\x82\x04\x83\x61\xb3\xbb\xc4\x4a\x1e\xf6\x18\x8e\xb2\xca\xc2\x92\xc0\x26\x47\x8a\xa2\x51\xb9\xbb\xc6\xd3\x72\x4f\xf7\xa4\xab\xc7\xc6\x8a\xf2\xdf\x8f\xba\xe7\xe2\xdb\x98\x03\x39\x84\x17\x6b\x66\xba\xaa\xbe\xfa\xea\xda\xcc\xd1\x29\x9c\x68\x82\x03\xa1\x2b\xf6\xe4\x52\x83\x05\x1d\xc0\x9f\x03\x00\xbf\x2c\x09\x9a\xbf\xef\x81\xbd\x53\x66\x3a\x00\x90\xc4\xc2\xa9\xd2\x2b\x6b\xe0\x7b\x38\xf8\x6a\xd4\x1f\x15\x41\x23\x0e\x51\x7c\xf0\xd7\x60\x70\x08\x13\x74\x74\x5a\x90\x47\x3d\x18\xac\xec\x14\xe8\x45\x3e\xb1\x8f\x69\xee\x7d\x99\x92\x91\xa5\x55\xc6\xbf\xc4\xe2\x4d\xa3\x01\x7e\x78\x78\xb8\x03\x47\x28\x4f\xad\xd1\x4b\x68\x75\xc1\x11\x25\xd3\x04\x82\xfe\xd1\xd9\x59\x6b\x2f\xa1\x47\x2c\x4a\x4d\x89\xb0\xc5\xe8\x72\x78\x39\x3c\x8e\x30\x57\xc0\x2c\xa7\x22\x47\x63\x48\xbf\x04\xcc\xb8\x16\x81\xcc\x3a\x40\x18\x5b\x47\x5f\xee\x61\x6c\x8d\x47\x65\xc8\xc1\x67\x65\xaa\x47\x90\xe4\xd4\x1c\xbd\x9a\x13\x1c\x09\xeb\xc8\xf2\x29\xfb\x60\xf5\x04\x9a\xc7\x09\x79\xec\x1e\x50\x97\x39\x9e\x40\xa6\xd1\x0b\x74\xdd\xd1\xf6\xb9\x3e\xdb\x3e\xc5\xc3\x3d\xbe\xcc\xc9\xb1\xb2\xe6\x25\xbe\xfc\x52\x8b\x3c\xdb\x17\x6f\xe1\xee\x3f\xd7\x80\x46\x82\x32\xec\x51\xeb\x7f\xd4\xbd\x43\x28\x50\xe4\xca\x10\x0f\x0e\xe1\x81\x9c\xc3\xcc\xba\xe2\x0d\x83\x70\x95\x24\x38\x88\x4e\xf2\x92\x3d\x15\x07\x20\x2d\x31\x18\xeb\xa1\x74\xb6\x24\xa7\x97\xc0\x55\x59\x5a\xe7\x41\x2b\xf6\x0c\x36\x83\x02\x4b\x06\xb6\xb0\x20\x90\x16\x7c\xae\x38\x59\xe7\x50\x58\xe3\x9d\xd5\xba\xa9\x09\xee\x63\x32\xe8\x3a\xaa\xe9\x3c\xde\xe5\xf3\x8b\x93\xe4\x48\xc6\x53\xc1\xe0\x4a\x63\x2c\x13\x6e\x12\xf5\x37\x63\x25\x9d\xff\xbe\x1d\xc3\x35\xfb\x05\x8a\xd7\x35\xaf\x24\x19\xaf\xb2\xa5\x32\x53\xb8\xf9\x38\x06\x94\xd2\x11\xf3\x0a\xd2\xbb\x8b\xd1\xbb\x6f\x46\xc3\xe1\x08\xcf\x47\xdf\x8a\x11\xd2\x53\xf0\xa4\x2d\x50\x99\xd7\x45\xf8\xef\x9f\xae\x6e\x37\x09\x5a\x2f\xe0\x1d\x34\x0b\xeb\x66\xaf\x17\xa8\x5a\xdb\x6e\x90\x2e\x4e\x20\xfc\xbc\xdd\x67\xfe\x75\xe2\xd4\x58\x7f\x7e\x8c\x26\x17\xa3\x8b\x6c\x74\xf9\xfe\x04\xba\x57\xe2\xed\xe8\xfd\xf9\xe8\xc3\x87\x7d\x48\x5f\x2d\x64\x0d\xd8\x9d\x70\x5d\xac\x87\xab\xa1\xed\xc9\x08\x0a\x2d\x52\x36\xaa\x2c\xc9\xf7\xc2\x2a\xb0\xdc\x8f\xea\x06\x4b\xc8\x9c\x2d\xda\x0e\xd1\x84\xce\xdb\x55\xb5\x6f\xf7\xb1\xb1\x35\x99\x9a\x42\x67\x32\x2a\xcd\xb0\xd2\xbe\x31\xf8\xe7\x5f\x9b\x00\x35\x4e\x48\xff\x3d\x68\x36\x83\x5a\x3a\xb6\xd6\x36\xbb\xac\x24\x4e\xf6\xd9\x3d\x0c\xc5\x90\xa9\x69\xe5\x30\x68\x5a\x07\x32\xbb\xe4\x26\x7e\x6b\xc3\x7a\x7b\x2c\xad\x2a\xe9\xea\xf6\x3e\xd2\x01\x8b\x5c\x89\x1c\x1c\xb1\xd5\xf3\x9a\x1c\xdc\xe8\x09\xa1\x85\x1b\x41\x09\xfc\x1a\x01\x72\x6c\xec\xb3\x6a\x42\x35\x92\x37\x0c\x0b\xa5\x35\x08\x5b\x14\x95\x51\x02\x3d\xc1\x42\xf9\x3c\x76\xce\xed\xe1\xdb\xac\x03\xeb\x11\x3f\x3e\xd8\x37\x88\x36\x68\x66\xce\xd3\x19\x2d\xff\x46\x6a\xde\xdf\xff\x00\x65\x35\xd1\x4a\x40\x50\x10\xb9\xae\x98\x1c\xbc\x09\x83\xe7\xcd\x56\xbe\x21\x33\xf9\x54\x2a\xd7\xcb\xdf\x1d\x06\xc7\x02\x43\x52\x39\x12\xde\xba\x25\x2c\x72\x72\x04\x53\x32\xe4\xd0\x93\x84\xa8\x81\x81\x73\x5b\x69\x09\x13\x82\x52\xa3\x20\x19\x66\x60\x4c\x35\x06\x26\xe1\xc8\xf3\x33\x3d\x37\xe4\x43\x6a\xa4\x85\xaf\xfa\x31\xe5\x4b\x56\x02\x35\xdc\xd6\x07\xe1\xe6\xe1\x6b\xb2\xab\xda\x54\xc5\x84\x5c\xbf\x6a\x55\xa6\x58\x79\x2b\xc9\x93\x08\x6a\xd3\x82\x7c\x6e\x65\xaf\xb9\x9b\xf8\x29\x92\xd0\x89\x80\xcf\x09\x72\xcb\x1e\x3e\xdd\xcd\xbf\x69\x5b\xd2\x5e\xf7\xb6\x53\xfb\x20\x53\x8e\xfd\x69\x66\x2b\x23\xb7\xc2\x51\x5a\x99\x0a\x25\xfb\xa3\x31\xfe\x74\xf5\x73\x6d\xd1\xa1\x99\xc6\xc5\x03\x99\xd5\xd4\xc0\x8f\xd5\x84\x9c\x21\x4f\x0c\xa5\x95\x2f\x40\x72\x3e\x4c\x2e\x92\x61\x32\x3c\x3b\x7f\xbf\x85\x84\xc9\xcd\x95\xa0\xbd\x68\xbe\xfb\xee\xfa\xcb\xd5\xe0\x59\x90\x1a\x55\x9c\x0c\x1e\x72\x82\xf3\x48\x5b\x5d\x44\x13\x0a\x85\x48\x6e\x4e\x32\xe6\x69\x28\xb3\x14\x4b\x15\x5f\xb9\x93\xc8\xf3\xf9\xd0\xe7\x7b\x05\x42\x4a\x4b\xc3\xc9\x20\x80\x19\xac\xb9\xdd\xe3\x72\xed\xee\xdb\x75\x77\x0f\xc1\x46\x7f\x36\x77\xf3\xf6\x0e\xd0\x74\x17\xae\xb2\x4c\x3d\xf6\x46\xe4\xa7\x8a\x9c\xa2\xba\xc6\x9a\x59\xd2\x36\x03\x82\x5a\xae\xc3\x8d\x86\x17\x71\x66\x4c\x96\x1d\x6c\xb8\x6a\xb0\x29\xee\x7a\x85\xb6\x21\xb9\xeb\xfe\x91\x59\x9b\x34\xf0\x13\x9e\x8b\x64\xe3\xcc\x31\x3c\x3f\xce\x1b\x82\x5b\x91\x96\x76\x61\xb4\x45\x99\x96\xce\x7a\x2b\xec\xff\x5a\xfc\x37\x14\x87\xeb\x45\x33\x35\x36\xab\xb4\xd1\x05\x2a\xec\xc6\x4d\x73\xa8\x38\x66\x48\x6b\x30\xb2\x34\x0b\x59\xa2\x9b\xed\x59\x79\x27\x3b\x52\x62\x6f\x8e\xfa\x4f\xba\xa6\xfd\x47\xa5\x1c\x71\xad\x54\xd8\xa2\x54\x9a\x64\xcd\xb8\x70\xcb\xd2\xdb\x76\xbd\x4d\xe0\xab\xa9\x98\x24\xa8\x0c\x04\x8a\x9c\x64\xda\xee\xe6\x8a\xc1\xbb\x8a\x92\xed\xc1\xbb\x71\xaa\x8f\x82\x89\xb5\x7a\x87\x80\x0c\x35\xd3\xae\xfb\xbf\xe6\xe4\x73\x72\xd1\xc3\xb0\x78\xa3\x0f\xfb\x4b\xbd\x95\xb7\x6c\x04\x1f\x26\xd6\xfa\x8d\x9b\x43\x33\xbe\x9b\xab\xdd\x59\xd3\x5c\x23\xb8\x04\x6e\xad\x27\xf0\x39\xd6\x0d\x08\x65\xa1\x0c\x14\x15\x7b\xc8\x71\x4e\x1d\xad\x54\x13\xbb\xba\xfc\x80\x32\xde\xae\x94\xd6\x3a\xb7\xfd\x6f\x00\xa4\x52\xf1\xec\x25\x09\x70\x26\x69\x7e\xc6\x12\x7b\x72\xe0\x4a\xf1\x0c\x24\x85\xda\x0f\xa1\xac\x63\x18\xa0\xb5\xce\x96\xce\x66\x4a\x53\x37\x3c\xda\xf7\xbd\xac\xd5\x15\xd1\x9a\xeb\xdb\xc3\xe3\x5e\x93\xea\xb0\xd7\xa4\x36\xdc\x7e\x9e\xef\x45\x1f\xfa\xeb\xbb\x9f\xaf\xc7\x1f\x1f\xae\xaf\x46\x70\x5f\x92\x50\xd9\x12\xd0\xc0\x97\xeb\x1b\x50\x05\x4e\x09\x54\x9c\x0a\x21\xa7\x91\x61\x82\x4c\xb1\x0d\xac\xf9\x17\x57\x96\x06\x37\x16\xea\x04\xe6\xc5\x02\x1d\xa5\x0e\x17\x27\xf0\x48\xe6\x18\xac\x03\x4d\x21\x76\x13\x8d\x66\xd6\xc9\xb7\xe0\xa2\x9d\x2d\x47\xeb\x7a\x49\xd1\x4d\xb9\xb7\x25\x7d\x94\x52\xd5\x2d\xad\x2b\x2d\x37\xad\x0a\x32\x75\x3d\x95\xce\xce\x95\x24\x40\xdf\xe5\x5f\xcf\xf0\xdc\xd9\x30\xd6\xc9\xfa\xed\xf7\x4d\x44\x64\xc2\x6f\xea\x28\x14\x9e\x32\xd3\x27\x6b\x67\x03\xeb\x75\x94\x84\x8a\x03\x9d\xe1\xb6\x6d\x50\x2f\xbd\x12\x0c\x9d\xb2\x48\x71\xc9\xde\x11\x16\x0c\x47\x63\xd4\x4a\xd8\xe3\xdd\x75\xb1\xae\xc3\x3e\x5c\x38\x9d\x3a\x9a\xc6\x58\xf4\x12\xd6\x80\x08\xbc\xaf\xcd\xac\x8f\x2b\x29\xf8\x8c\x4b\x72\x70\x24\xd7\xda\x52\xe8\x20\x3d\xfb\x4c\x6f\x8b\x08\x67\xb7\x3a\xae\xe2\x08\x8d\x49\x67\x69\xd8\x23\x48\xa6\x61\xf4\x69\xf2\xbd\x10\xaf\xea\xf3\xf5\x54\x21\x9d\x41\x2d\x03\x8d\x4c\x9b\x6f\xf5\x6c\x69\x8c\xef\x01\xd7\xc7\x90\xd7\x9c\x86\x44\x60\xef\xb0\x7c\x8a\xa3\x87\xcf\xf7\xf0\xaf\xf6\x60\xcc\xd6\x1f\x6b\x04\x3d\x29\xd4\x5a\x3b\x84\x31\x39\xaf\xb2\xb8\x29\xf3\x46\xc9\x92\xf3\x9c\xce\x51\x2b\xa9\xfc\x32\x2d\xc9\x29\x2b\xd3\xdc\x56\xae\x3f\xb3\x7f\x69\x4e\x86\x7b\x44\xdb\x25\xc4\x9a\x6e\x50\x06\x6a\xe9\x7d\xcb\xe0\x76\x64\x2e\x3f\xbc\x1f\x6e\x55\xd7\xc6\x02\x92\xd2\xa3\x77\x98\x66\x1a\xf7\x14\xdb\x75\xf8\x0e\xf1\x3b\x94\xa1\xaf\xc6\x96\x10\x42\x74\xba\x16\xa2\xd3\x4e\xe1\xff\x5f\x6a\x71\xcc\xa5\x61\x4d\xf4\x0e\xb3\x4c\x89\xa7\xe2\xa5\xcc\x69\xfb\x0f\xc9\x32\xec\xb0\xb5\x04\x34\x5a\x94\x35\xfb\xe2\xf6\x8c\xea\x52\x53\x63\x1d\xa5\x8f\xef\x86\xdf\xa6\xc2\xa4\x22\x27\x31\xeb\xc5\xf2\x29\x1e\x84\xf1\x2d\xc4\x33\x31\x4c\x41\x6a\x23\x76\x2f\x05\xf2\xdf\x00\x00\x00\xff\xff\x96\x1c\x96\x21\xb1\x15\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xb4\x58\x5b\x4f\x23\xc7\x12\x7e\xf7\xaf\x28\xc1\xc3\x82\x84\x07\xc3\x66\x2f\xb1\x92\x07\x8e\xe1\x28\xab\x2c\x2c\x09\x6c\x72\xa4\x28\x1a\x95\xbb\x6b\x3c\x2d\xf7\x74\x4f\xba\x7a\x7c\x51\x94\xff\x7e\xd4\x3d\x17\x6c\x33\xe6\x40\xc2\xd9\x17\x64\xbb\x2e\x5f\x7d\x75\xed\x5d\xa0\x53\x38\xd5\x04\x07\x42\x57\xec\xc9\xa5\x06\x0b\x3a\x80\x3f\x07\x00\x7e\x5d\x12\x34\xff\xbe\x07\xf6\x4e\x99\xd9\x00\x40\x12\x0b\xa7\x4a\xaf\xac\x81\xef\xe1\xe0\xab\x51\x7f\x54\x04\x8d\x3a\x44\xf5\xc1\x5f\x83\xc1\x21\x4c\xd1\xd1\xb0\x20\x8f\x7a\x30\x78\xf0\x53\xa0\x17\xf9\xd4\xae\xd2\xdc\xfb\x32\x25\x23\x4b\xab\x8c\x7f\x89\xc7\xeb\xc6\x02\xfc\x70\x7f\x7f\x0b\x8e\x50\x0e\xad\xd1\x6b\x68\x6d\xc1\x11\x25\xb3\x04\x82\xfd\xf1\xe9\x69\xeb\x2f\xa1\x15\x16\xa5\xa6\x44\xd8\x62\xfc\x71\xf4\x71\x74\x1c\x61\x3e\x00\xb3\x9c\x8a\x1c\x8d\x21\xfd\x12\x30\x93\x5a\x05\x32\xeb\x00\x61\x62\x1d\x7d\xb9\x83\x89\x35\x1e\x95\x21\x07\x9f\x95\xa9\x56\x20\xc9\xa9\x05\x7a\xb5\x20\x38\x12\xd6\x91\xe5\x21\xfb\xe0\xf5\x04\x9a\x8f\x53\xf2\xd8\x7d\x40\x5d\xe6\x78\x02\x99\x46\x2f\xd0\x75\xa2\xed\xe7\x5a\xb6\xfd\x14\x85\x7b\x62\x59\x90\x63\x65\xcd\x4b\x62\xf9\xa5\x56\x79\x76\x2c\xde\xc2\xed\x7f\xae\x00\x8d\x04\x65\xd8\xa3\xd6\xff\xd7\xf0\x0e\xa1\x40\x91\x2b\x43\x3c\x38\x84\x7b\x72\x0e\x33\xeb\x8a\x37\x0c\xc2\x55\x92\xe0\x20\x06\xc9\x6b\xf6\x54\x1c\x80\xb4\xc4\x60\xac\x87\xd2\xd9\x92\x9c\x5e\x03\x57\x65\x69\x9d\x07\xad\xd8\x33\xd8\x0c\x0a\x2c\x19\xd8\xc2\x92\x40\x5a\xf0\xb9\xe2\x64\x93\x43\x61\x8d\x77\x56\xeb\xa6\x27\xb8\x8f\xc9\x60\xeb\xa8\xa6\xf3\xf8\x31\x9f\x5f\x9c\x24\x47\x32\x4a\x05\x87\x0f\x16\x63\x9b\x70\x53\xa8\xbf\x19\x2b\xe9\xec\xf7\xdd\x1c\x6e\xf8\x2f\x50\xbc\xae\x7b\x25\xc9\x78\x95\xad\x95\x99\xc1\xf5\xc5\x04\x50\x4a\x47\xcc\x0f\x90\xde\x9d\x8f\xdf\x7d\x33\x1e\x8d\xc6\x78\x36\xfe\x56\x8c\x91\x9e\x82\x27\x6d\x81\xca\xbc\x2e\xc2\x7f\xff\x74\x79\xb3\x4d\xd0\x66\x03\x3f\x42\xb3\xb4\x6e\xfe\x7a\x89\xaa\xad\x3d\x4e\xd2\xf9\x09\x84\x3f\x6f\xf7\xb9\x7f\x9d\x3c\x35\xde\x9f\x9f\xa3\xe9\xf9\xf8\x3c\x1b\x7f\x7c\x7f\x02\xdd\x57\xe2\xed\xf8\xfd\xd9\xf8\xc3\x87\x7d\x48\x5f\x2d\x65\x0d\xd8\x47\xe9\x3a\xdf\x4c\x57\x43\xdb\x93\x19\x14\x5a\xa4\x6c\x54\x59\x92\xef\x85\x55\x60\xb9\x1f\xd5\x35\x96\x90\x39\x5b\xb4\x13\xa2\x49\x9d\xb7\x0f\xdd\xbe\x3b\xc7\x26\xd6\x64\x6a\x06\x9d\xcb\x68\x34\xc3\x4a\xfb\xc6\xe1\x9f\x7f\x6d\x03\xd4\x38\x25\xfd\xf7\xa0\xd9\x0c\x6a\xed\x38\x5a\xdb\xea\xb2\x92\x38\xd9\xe7\xf7\x30\x34\x43\xa6\x66\x95\xc3\x60\x69\x13\xc8\xfc\x23\x37\xf9\xdb\x58\xd6\xbb\x6b\xe9\xa1\x93\x2e\x6f\xee\x22\x1d\xb0\xcc\x95\xc8\xc1\x11\x5b\xbd\xa8\xc9\xc1\xad\x99\x10\x46\xb8\x11\x94\xc0\xaf\x11\x20\xc7\xc1\x3e\xaf\xa6\x54\x23\x79\xc3\xb0\x54\x5a\x83\xb0\x45\x51\x19\x25\xd0\x13\x2c\x95\xcf\xe3\xe4\xdc\x5d\xbe\xcd\x39\xb0\x99\xf1\xe3\x83\x7d\x8b\x68\x8b\x66\xe6\x3c\x9d\xd3\xfa\x6f\x94\xe6\xdd\xdd\x0f\x50\x56\x53\xad\x04\x04\x03\x91\xeb\x8a\xc9\xc1\x9b\xb0\x78\xde\xec\xd4\x1b\x32\x93\x4f\xa5\x72\xbd\xfc\xdd\x62\x08\x2c\x30\x24\x95\x23\xe1\xad\x5b\xc3\x32\x27\x47\x30\x23\x43\x0e\x3d\x49\x88\x16\x18\x38\xb7\x95\x96\x30\x25\x28\x35\x0a\x92\x61\x07\xc6\x52\x63\x60\x12\x8e\x3c\x3f\x33\x72\x43\x3e\x94\x46\x5a\xf8\xaa\x1f\x53\xbe\x66\x25\x50\xc3\x4d\x2d\x08\xd7\xf7\x5f\x93\xc7\xa6\x4d\x55\x4c\xc9\xf5\x9b\x56\x65\x8a\x95\xb7\x92\x3c\x89\x60\x36\x2d\xc8\xe7\x56\xf6\xba\xbb\x8e\x3f\x45\x12\x3a\x15\xf0\x39\x41\x6e\xd9\xc3\xa7\xdb\xc5\x37\xed\x48\xda\x1b\xde\x6e\x69\x1f\x64\xca\xb1\x1f\x66\xb6\x32\x72\x27\x1d\xa5\x95\xa9\x50\xb2\x3f\x1b\x93\x4f\x97\x3f\xd7\x1e\x1d\x9a\x59\x3c\x3c\x90\x59\xcd\x0c\xfc\x58\x4d\xc9\x19\xf2\xc4\x50\x5a\xf9\x02\x24\x67\xa3\xe4\x3c\x19\x25\xa3\xd3\xb3\xf7\x3b\x48\x98\xdc\x42\x09\xda\x8b\xe6\xbb\xef\xae\xbe\x5c\x0e\x9e\x05\xa9\x31\xc5\xc9\xe0\x3e\x27\x38\x8b\xb4\xd5\x4d\x34\xa5\xd0\x88\xe4\x16\x24\x63\x9d\x86\x36\x4b\xb1\x54\xf1\x2b\x77\x12\x79\x3e\x1b\xf9\x7c\xaf\x42\x28\x69\x69\x38\x19\x04\x30\x83\x8d\xb0\x7b\x42\xae\xc3\x7d\xbb\x19\xee\x21\xd8\x18\xcf\xf6\x6d\xde\xbe\x01\x9a\xe9\xc2\x55\x96\xa9\x55\x6f\x46\x7e\xaa\xc8\x29\xaa\x7b\xac\xd9\x25\xed\x30\x20\xa8\xf5\x3a\xdc\x68\x78\x19\x77\xc6\x74\xdd\xc1\x86\xcb\x06\x9b\xe2\x6e\x56\x68\x1b\x8a\xbb\x9e\x1f\x99\xb5\x49\x03\x3f\xe1\x85\x48\xb6\x64\x8e\xe1\xf9\x79\xde\x52\xdc\xc9\xb4\xb4\x4b\xa3\x2d\xca\xb4\x74\xd6\x5b\x61\xff\xd7\xe1\xbf\x65\x38\x3c\x2f\x9a\xad\xb1\xdd\xa5\x8d\x2d\x50\xe1\x36\x6e\x86\x43\xc5\xb1\x42\x5a\x87\x91\xa5\x79\xa8\x12\xdd\x5c\xcf\xca\x3b\xd9\x91\x12\x67\x73\xb4\x7f\xd2\x0d\xed\x3f\x2a\xe5\x88\x6b\xa3\xc2\x16\xa5\xd2\x24\x6b\xc6\x85\x5b\x97\xde\xb6\xe7\x6d\x02\x5f\x4d\xc5\x24\x41\x65\x20\x50\xe4\x24\xd3\xf6\x36\x57\x0c\xde\x55\x94\xec\x2e\xde\x2d\xa9\x3e\x0a\xa6\xd6\xea\x47\x04\x64\xa8\x99\x1e\x87\xff\x6b\x4e\x3e\x27\x17\x23\x0c\x87\x37\xfa\x70\xbf\xd4\x57\x79\xcb\x46\x88\x61\x6a\xad\xdf\x7a\x39\x34\xeb\xbb\x79\xda\x9d\x36\xc3\x35\x82\x4b\xe0\xc6\x7a\x02\x9f\x63\x3d\x80\x50\x16\xca\x40\x51\xb1\x87\x1c\x17\xd4\xd1\x4a\x35\xb1\x0f\x8f\x1f\x50\xc6\xdb\x07\xa3\xb5\xcd\xdd\xf8\x1b\x00\xa9\x54\x3c\x7f\x49\x01\x9c\x4a\x5a\x9c\xb2\xc4\x9e\x1a\xb8\x54\x3c\x07\x49\xa1\xf7\x43\x2a\xeb\x1c\x06\x68\x6d\xb0\xa5\xb3\x99\xd2\xd4\x2d\x8f\xf6\xfb\x5e\xd6\xea\x8e\x68\xdd\xf5\xdd\xe1\xf1\xae\x49\x75\xb8\x6b\x52\x1b\x5e\x3f\xcf\x8f\xa2\x0f\xfd\xd5\xed\xcf\x57\x93\x8b\xfb\xab\xcb\x31\xdc\x95\x24\x54\xb6\x06\x34\xf0\xe5\xea\x1a\x54\x81\x33\x02\x15\xb7\x42\xa8\x69\x64\x98\x22\x53\x1c\x03\x1b\xf1\xc5\x93\xa5\xc1\x8d\x85\x3a\x81\x45\xb1\x44\x47\xa9\xc3\xe5\x09\xac\xc8\x1c\x83\x75\xa0\x29\xe4\x6e\xaa\xd1\xcc\x3b\xfd\x16\x5c\xf4\xb3\x13\x68\xdd\x2f\x29\xba\x19\xf7\x8e\xa4\x0b\x29\x55\x3d\xd2\xba\xd6\x72\xb3\xaa\x20\x53\xf7\x53\xe9\xec\x42\x49\x02\xf4\x5d\xfd\xf5\x2c\xcf\x47\x17\xc6\x26\x59\xbf\xfd\xbe\x8d\x88\x4c\xf8\x9b\x3a\x0a\x8d\xa7\xcc\xec\xc9\xde\xd9\xc2\x7a\x15\x35\xa1\xe2\x40\x67\x78\x6d\x1b\xd4\x6b\xaf\x04\x43\x67\x2c\x52\x5c\xb2\x77\x84\x05\xc3\xd1\x04\xb5\x12\xf6\xf8\xf1\xb9\x58\xf7\x61\x1f\x2e\x9c\xcd\x1c\xcd\x62\x2e\x7a\x09\x6b\x40\x04\xde\x37\x76\xd6\xc5\x83\x16\x7c\xc6\x35\x39\x38\x92\x1b\x63\x29\x4c\x90\x9e\x7b\xa6\x77\x44\x04\xd9\x9d\x89\xab\x38\x42\x63\xd2\x59\x1a\xee\x08\x92\x69\x58\x7d\x9a\x7c\x2f\xc4\xcb\x5a\xbe\xde\x2a\xa4\x33\xa8\x75\xa0\xd1\x69\xeb\xad\xde\x2d\x8d\xf3\x3d\xe0\xfa\x18\xf2\x9a\xd3\x50\x08\xec\x1d\x96\x4f\x71\x74\xff\xf9\x0e\xfe\xd5\x0a\xc6\x6a\xfd\xb1\x46\xd0\x53\x42\xad\xb7\x43\x98\x90\xf3\x2a\x8b\x97\x32\x6f\xb5\x2c\x39\xcf\xe9\x02\xb5\x92\xca\xaf\xd3\x92\x9c\xb2\x32\xcd\x6d\xe5\xfa\x2b\xfb\x97\x46\x32\xbc\x23\xda\x29\x21\x36\x6c\x83\x32\x50\x6b\xef\x3b\x06\x77\x33\xf3\xf1\xc3\xfb\xd1\x4e\x77\x6d\x1d\x20\x29\xad\xbc\xc3\x34\xd3\xb8\xa7\xd9\xae\xc2\xef\x10\x7f\x87\x32\xcc\xd5\x38\x12\x42\x8a\x86\x1b\x29\x1a\x76\x06\xff\x79\xab\xc5\x35\x97\x86\x33\xd1\x3b\xcc\x32\x25\x9e\xca\x97\x32\xc3\xf6\x3f\x24\xcb\x70\xc3\xd6\x1a\xd0\x58\x51\xd6\xec\xcb\xdb\x33\xba\x4b\xcd\x8c\x75\x94\xae\xde\x8d\xbe\x4d\x85\x49\x45\x4e\x62\xde\x8b\xe5\x53\x14\x84\xc9\x0d\x44\x99\x98\xa6\xa0\xb5\x95\xbb\x7f\x00\x44\x58\x63\xbc\x43\x31\x4f\x0b\x5c\x85\x2a\x4a\xc3\x75\xd5\x0b\x65\x38\xec\x84\x87\x05\xae\x86\x25\xb9\x61\x10\x86\x05\xea\x8a\xba\x0b\x74\x58\x3a\xbb\x5a\x27\x70\x8d\x2b\x55\x54\x45\x53\x3d\xa1\xec\x6e\x2e\xee\xc3\x5b\xd1\xd4\xcf\x86\x66\x12\xa0\x98\x43\x49\x0e\x26\xb7\x5f\xe3\x61\x07\x47\xa3\xf8\xe4\x8e\x83\x3d\x14\xa9\x56\x85\xf2\x80\x3c\x54\xf5\x63\xb2\xa6\x0e\x36\xb0\x28\x73\xfc\xd4\x13\xe6\xbf\x01\x00\x00\xff\xff\xf3\xc1\x91\x2d\x9f\x16\x00\x00"),
 		},
 		"/terraform-modules/bare-metal/flatcar-linux/kubernetes/versions.tf": &vfsgen۰CompressedFileInfo{
 			name:             "versions.tf",
@@ -5712,9 +5712,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/bootkube/assets.tf": &vfsgen۰CompressedFileInfo{
 			name:             "assets.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 8305,
+			uncompressedSize: 8368,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xc4\x59\x5d\x6f\xdb\xb8\x12\x7d\xf7\xaf\x18\x28\x2d\x62\x5f\xf8\x23\xed\xed\xbd\x8b\x06\x08\x8a\x7d\x5a\x14\xdb\x87\xa2\xe8\x3e\x05\x81\x40\x53\x63\x9b\x1b\x99\xd4\x92\x54\x9a\x20\xf0\x7f\x5f\x90\xd4\x17\x25\xca\x52\xec\x66\x37\x2f\xad\xc4\x99\xc3\xe1\xcc\xd1\x99\x61\x22\x51\x89\x5c\x52\x84\x28\x15\x94\xa4\xf1\x86\xa5\x18\x41\xb4\x16\x42\x2b\x2d\x49\xb6\x20\x19\x53\x28\x1f\x50\x46\xf0\x3c\x01\x30\xeb\x9c\xec\x11\x6e\x20\x7a\xf3\xfc\x40\xe4\x92\x28\x85\x3a\x4e\x98\x3c\xac\x6a\xaf\x3d\xe1\x6c\x83\x4a\xab\x55\x00\x69\xf9\x44\xf6\x69\x34\x01\xa0\x82\x6b\xe4\x1a\x6e\x40\xe3\x3e\x4b\x89\x46\x03\x3f\x8d\xde\x3c\x67\x44\xef\x96\x7b\x91\xe4\x29\x1e\x56\x65\x8c\xea\x65\x1b\xcc\x6d\xc0\x00\xf7\xf9\x1a\xe3\x6a\x2d\x66\x7b\xb2\x35\xe1\x9b\xd8\x4d\x00\x84\xf1\xf2\xad\xba\x8d\x7c\xe3\xe8\xce\x22\xd0\x54\xe4\x49\x9c\x49\xf1\xc0\x12\x94\xe0\x7e\x0a\x04\x6f\xc9\x5a\xa3\xa6\x49\xec\xfc\x15\x40\x65\xfd\xa7\x60\x7c\x1a\xcd\xa3\x39\x6c\x84\xdc\x13\x9d\x32\xa5\xa7\xd1\x4e\xeb\x4c\x5d\xaf\x56\x6f\xd5\xf5\xfb\xff\xfe\xf2\x31\x9a\x5b\xd4\x26\xc4\x6c\x66\x51\xcd\x13\xa3\x18\x53\x96\xc8\x06\xaa\xb1\x6e\x2e\x59\x5b\x2d\x73\xa5\x31\x89\x29\x4a\xad\x4c\x69\x6a\xdb\xce\x92\x0b\x99\x93\x75\x8a\xb1\x4e\x55\x5c\xa5\xb3\x70\x08\x2d\x4d\x00\x0e\xb3\xc9\x61\x32\x19\x64\x8f\x49\xb0\x14\x69\x8a\xd2\x54\x8c\x6c\x7f\x02\x8d\xba\x90\xaf\xc5\xa7\xbe\x9d\x3c\x62\xd5\x46\x71\x61\x34\x86\x61\x5d\xaf\x82\x6a\x99\x48\xfc\x12\x7b\x3f\x0e\xb3\xb4\xe9\xe7\xc5\x10\x41\x82\x84\x6e\x39\x05\x98\x1d\xe4\x55\xcb\x2d\x44\xb0\x91\x64\x51\x74\x87\xa6\x42\xe7\x73\xa4\x42\x7a\x2d\x6a\xb4\x36\xf0\x18\x51\xad\x8d\x21\x42\x7d\xe6\xbb\xa1\x44\x19\xfb\x17\xc9\x31\xdd\x11\xa9\xd5\xca\xfa\xa9\x27\xa5\x71\xbf\xf2\x31\x4e\xcf\x4e\x13\xfa\x25\xb2\x5b\xb3\x6b\x9c\xf2\x06\xb5\xf4\x67\xc8\x69\xdf\x17\xd0\xcb\xfd\xbe\xef\xec\x25\x12\x3c\xa0\xc2\x94\xd8\x17\x81\x8f\x78\x4d\x14\xfe\xff\x03\x72\x2a\x12\x9c\x1a\x29\x56\x98\x6e\x62\xc5\xb6\xbc\x00\x59\xda\x4a\x50\xb2\x34\x0f\x71\x86\x7b\x77\xca\x3a\xfd\xf7\xf8\x74\x1c\x31\x93\xec\x81\x68\x34\x86\xcb\xba\xa2\x8d\xb7\x21\x54\x3f\xdc\x00\xaa\x25\x70\xfa\xe4\x85\x5a\xa3\xfb\xc1\x16\x39\x24\x94\x8a\x9c\xeb\x38\xcb\xd7\xa3\x82\x2d\xdc\x16\x85\xdf\x32\xcb\xd7\x29\xa3\x7e\xc4\x96\x00\x81\xf4\x8e\xc9\xac\xf1\xed\x66\xd6\x21\xa6\x0c\xb9\xf6\x50\x47\xe6\xc0\x79\x1e\xc1\x6c\xd6\x6b\x20\x01\x05\x56\xb0\x54\x45\xf7\x26\xdb\xad\xc4\x2d\xd1\x4c\xf0\x26\x0d\xbb\xab\xae\xbe\xf5\xb3\x97\xb4\x3e\x27\xb8\xb9\x31\x7c\x47\xf8\xe4\x07\xea\x3e\x51\x88\xe6\x10\x4c\x6c\x03\xc1\xe4\xf7\x3f\x75\x36\x66\x70\x0d\x51\xd4\x8d\xa5\x91\xee\xf3\x62\x09\xd2\xb2\x19\x8e\x4b\xe9\xe8\x90\x6c\xb5\xce\x0b\xc9\xfb\xfe\x42\xa1\xb4\xeb\xdb\x88\x48\x62\x96\x32\x4a\x54\x57\x38\x52\xe4\x5b\xbd\x9b\x76\x44\xd0\x91\xe3\x51\x4b\x12\x6f\x52\xb2\x55\xd0\x95\xb4\x96\x7e\x37\x8c\xfb\x47\xc6\x36\x49\xda\x53\x23\x00\xdb\x72\x21\x31\x7e\xfc\xdf\xd5\xc7\x98\xf2\x98\xee\x90\xde\xd7\x6e\xa1\xd5\xa1\xb6\x98\x89\x64\x61\x0d\x33\xc1\xb8\x3e\xb5\x31\xb6\x51\xce\x6e\x8d\x61\xc0\xb2\x39\xda\x11\xae\xb1\x3a\x30\x2a\xb4\xcd\x1b\xc3\xc2\x05\x7c\x15\x59\x6e\xe2\xb2\x1d\x57\x72\xd4\xa8\xc0\x06\x01\x0f\x24\xcd\x51\xd9\x5c\x80\x49\x46\xd2\x30\xb1\xf1\x2c\x8f\xcd\x1a\xce\xee\xf4\x39\xa3\xb1\xcf\xb9\x33\x46\x13\xea\x35\xa7\xef\xe0\xfc\xd6\x9e\x0d\xc6\x0c\x72\x05\x54\x26\xc5\xe3\x53\x1b\x66\x10\xca\x7a\x95\x57\x4f\x21\x31\xe1\x2a\x84\x61\x61\x8a\x6a\x74\x91\x0a\xc7\xe8\xee\xd0\xb6\x20\x92\xee\x0e\x51\x81\x6e\x13\x11\x67\x29\xe1\x18\xb7\x65\xe4\x06\xf6\xe4\x71\xfa\x7e\xde\xab\x22\xc7\x47\x29\xef\xa4\xdd\x81\xea\x9f\xba\xe9\x98\x49\x4b\xc6\x89\xd8\x13\xc6\x63\x95\x6f\x36\xec\xb1\x13\x5c\xc0\xc6\xf7\xe6\x2a\x2e\xa1\x59\x56\x7b\x9b\x6d\x76\x42\xe9\x69\x7b\xef\x39\xbc\xbb\x9a\x9d\x75\x67\xea\x1f\x07\x4b\xcf\x53\x87\x42\x4a\x5a\xd3\xe0\x10\x6e\xb3\x35\x95\x90\xc1\x69\xc3\xf1\xa2\x1f\xd9\x4d\xea\xde\x94\xfe\x56\x15\x33\x3a\xc9\x58\xc9\xab\xdb\xab\xbb\x62\x6e\x7f\xd4\x28\x39\x49\x1b\x6d\x28\x13\x52\x07\xc7\xc5\xd6\x91\x5e\x3a\x34\x06\x87\x27\xc3\x75\xe4\x89\x15\xdd\x40\x73\xad\xbe\x87\xca\xe6\x68\x67\xf4\xdc\x8e\xfd\x56\xc5\x2a\xb1\xb2\x32\x57\x2d\xc6\x0a\xa9\x44\xad\x5e\x2c\x9f\x8d\x3b\xab\x43\xf0\x55\xb4\xde\x40\x8b\x7b\xe4\x06\xff\x76\xe2\x22\xdd\x08\x09\xf6\x25\x30\x6e\x83\xee\xd8\x5e\x17\x96\xcf\x93\xf2\x74\x76\x21\x66\x49\x71\x54\xfb\xb8\x2c\x5f\xb6\xac\x5c\x3c\x2d\x2b\xf7\xb2\xb0\x3c\xd8\x7f\x83\xbd\xae\x73\xac\xde\x96\x17\x4e\x40\x6f\xe7\xeb\x98\xbb\x06\x68\x69\x72\xa4\x78\x8d\x21\xef\x1d\x5c\xc3\xd5\xe4\x84\xa6\xd9\x53\xaa\x46\xef\x34\x13\x9d\x09\x76\xd9\xe1\x45\x8b\x37\x06\x36\xc5\x32\xe0\x84\x29\x1b\xb1\x15\x08\xa3\x57\x98\xc4\x95\xc5\x0d\x6c\x48\xaa\xea\xc0\x01\x2e\xe0\x1b\x72\x23\xe5\x85\x8d\x0d\xc3\xd2\xa1\x74\xb2\xc1\xd7\xdb\xc4\xe7\xf4\xf6\x72\x03\xaf\xb1\x1b\xd0\x4e\xf7\xed\xed\x75\x9e\x47\x74\x77\x58\x1c\x6b\x79\x61\x49\x1f\xa5\xe5\x3d\xcd\x64\xa8\x8b\xf4\x08\xc2\x90\x12\x14\xf9\xa5\x82\x6f\xd8\x36\x3e\x39\xd5\x35\xc6\xa2\xc0\xa8\x32\xed\x75\x98\xd3\x1b\x4a\x15\x9a\xbb\x98\x8d\xba\x00\x97\x95\x0f\x23\x15\xf7\xa9\xc1\x4e\x64\x10\x86\x3b\xd1\x4f\x6d\x3c\x9d\xc2\x90\x64\xcf\xf8\x59\x65\xb1\x08\x55\x51\xac\x62\xf8\xdd\xa2\xa4\x96\x59\xfa\xb7\x0b\x67\x83\x3d\xa3\x6c\xce\xff\x9c\xa2\x39\x05\x6c\x94\x2d\x2e\xcb\x35\xb2\x7e\xdd\x5b\x53\xa5\x69\x3d\x57\xa6\x52\xa3\x8e\xde\x97\xcc\x97\xe5\xf5\x0a\x17\x68\xb1\x34\xf1\x65\xdc\x5d\xfe\xa3\x39\xdc\x1a\x5d\x65\xa6\xc5\x4a\xc2\xb7\x38\xbd\x9a\xc3\x3b\x73\xb5\xf7\x9c\x4b\x7a\xdd\xcd\x4e\xbc\x8b\x55\x22\xeb\x0e\xff\x1b\x72\x94\x44\x17\xa7\x73\x34\xb4\x02\xff\xbb\xb3\x55\xc7\xce\xd9\x12\x93\xe2\xc8\xad\x06\xd5\xaf\x5c\x43\x27\x20\xb9\xde\x85\x44\xab\x1d\xb9\x25\x52\x33\xfe\xa9\xd1\x4f\xf3\x0c\x12\xff\xca\x99\x44\x05\x4c\xc3\x1a\x81\x68\x68\x81\xce\x26\x17\x50\xd2\x6a\xcb\xf4\x2e\x5f\x2f\xa9\x68\xde\x5a\x17\x8c\xd3\x7c\x4d\xb4\x90\xab\x12\x75\xb5\x4e\xc5\x7a\xb5\x27\xe6\x4b\x5c\x65\xf7\xdb\xc6\x42\xf1\x9f\xe5\x56\x5c\x7c\xf9\xf0\x7e\x44\xee\xdc\x17\x3f\x98\x39\x4f\x5a\x5e\x98\xb7\xe1\x7c\x31\x0e\xa4\x49\x74\xb2\xd1\x28\x41\xef\xb0\xec\x73\x63\x0f\xb2\xb0\xfe\xaf\x71\x9c\xa2\x8f\x37\xe4\xef\xb0\xf0\x8e\xf7\x79\xd3\xd6\xf0\x4a\x0c\x80\x29\x7e\xa9\x41\xa1\x9e\x43\xae\xb0\x6d\xb7\x9c\x5c\xc0\xf7\x1d\x53\xc0\x94\x65\xbe\xca\x33\x23\x11\x8c\x6f\x41\x61\x46\x4c\xce\xe0\xd7\xaf\x9f\x4b\x51\xfa\xe3\xdb\x17\x67\x57\xc1\xbb\x5f\xcc\x29\x97\xc6\x35\xa1\xf7\x3f\x88\x4c\x16\x54\xec\x33\xa2\xd9\x3a\x45\xf8\x41\x9e\xdc\x26\x68\xf7\x17\x1b\x50\x59\xca\xf4\x74\x06\x84\x27\x4e\x00\x66\xb0\x43\x89\x26\x84\x35\x52\x62\xac\xbe\xa3\x94\xc4\x28\xdf\xa5\x32\xb9\x4c\x98\x66\xc2\xec\x26\x32\x53\x46\x21\x61\x7a\xf9\xe9\x72\x06\x94\x70\x2e\x0c\xb9\x27\x17\x06\x3c\x81\x1f\x4c\xef\x20\x65\x4a\xab\x65\x73\x0e\x0c\x26\xe6\xa6\x08\xc4\xfe\xf5\xa4\xfe\x3b\x4a\x5f\x22\x67\x66\x46\x8c\x22\xf8\xd4\x6f\x6b\x04\x6b\x04\x90\x91\xde\xbf\x03\x00\x00\xff\xff\x7d\x8e\x86\x34\x71\x20\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xc4\x59\x5d\x6f\xdb\xb8\x12\x7d\xf7\xaf\x18\x28\x2d\x62\x5f\xf8\x23\xed\xed\xbd\x8b\x06\x08\x8a\x7d\x5a\x14\xdb\x87\xa2\xe8\x3e\x05\x01\x41\x53\x63\x9b\x1b\x99\xd4\x92\x54\x9a\x20\xf0\x7f\x5f\x90\xd4\xb7\x28\x4b\xb1\x9b\xdd\xbc\xb4\x12\x67\x0e\x87\x33\x47\x67\x86\x89\x42\x2d\x33\xc5\x10\xa2\x44\x32\x9a\x90\x0d\x4f\x30\x82\x68\x2d\xa5\xd1\x46\xd1\x74\x41\x53\xae\x51\x3d\xa0\x8a\xe0\x79\x02\x60\xd7\x05\xdd\x23\xdc\x40\xf4\xe6\xf9\x81\xaa\x25\xd5\x1a\x0d\x89\xb9\x3a\xac\x2a\xaf\x3d\x15\x7c\x83\xda\xe8\x55\x00\x69\xf9\x44\xf7\x49\x34\x01\x60\x52\x18\x14\x06\x6e\xc0\xe0\x3e\x4d\xa8\x41\x0b\x3f\x8d\xde\x3c\xa7\xd4\xec\x96\x7b\x19\x67\x09\x1e\x56\x45\x8c\xfa\x65\x1b\xcc\x5d\xc0\x00\xf7\xd9\x1a\x49\xb9\x46\xf8\x9e\x6e\x6d\xf8\x36\x76\x1b\x00\xe5\xa2\x78\xab\x6f\xa3\xa6\x71\x74\xe7\x10\x58\x22\xb3\x98\xa4\x4a\x3e\xf0\x18\x15\xf8\x9f\x1c\xa1\xb1\xe4\xac\xd1\xb0\x98\x78\x7f\x0d\x50\x5a\xff\x29\xb9\x98\x46\xf3\x68\x0e\x1b\xa9\xf6\xd4\x24\x5c\x9b\x69\xb4\x33\x26\xd5\xd7\xab\xd5\x5b\x7d\xfd\xfe\xbf\xbf\x7c\x8c\xe6\x0e\xb5\x0e\x31\x9b\x39\x54\xfb\xc4\x19\x12\xc6\x63\x55\x43\xb5\xd6\xf5\x25\x67\x6b\x54\xa6\x0d\xc6\x84\xa1\x32\xda\x96\xa6\xb2\xed\x2c\xf9\x90\x05\x5d\x27\x48\x4c\xa2\x49\x99\xce\xdc\x21\xb4\x34\x01\x38\xcc\x26\x87\xc9\x64\x90\x3d\x36\xc1\x4a\x26\x09\x2a\x5b\x31\xba\xfd\x09\x34\xea\x42\xbe\x16\x9f\xfa\x76\x6a\x10\xab\x32\x22\xb9\xd1\x18\x86\x75\xbd\x72\xaa\xa5\x32\x6e\x96\xb8\xf1\xe3\x31\x0b\x9b\x7e\x5e\x0c\x11\x24\x48\xe8\x96\x53\x80\xd9\x41\x5e\xb5\xdc\x42\x04\x1b\x49\x16\xcd\x76\x68\x2b\x74\x3e\x47\x4a\xa4\xd7\xa2\x46\x6b\x83\x06\x23\xca\xb5\x31\x44\xa8\xce\x7c\x37\x94\x28\x6b\xff\x22\x39\x66\x3b\xaa\x8c\x5e\x39\x3f\xfd\xa4\x0d\xee\x57\x4d\x8c\xd3\xb3\x53\x87\x7e\x89\xec\x56\xec\x1a\xa7\xbc\x41\x2d\xfd\x19\x72\xda\xf7\x05\xf4\x72\xbf\xef\x3b\x7b\x89\x04\x0f\xa8\x30\xa3\xee\x45\xe0\x23\x5e\x53\x8d\xff\xff\x80\x82\xc9\x18\xa7\x56\x8a\x35\x26\x1b\xa2\xf9\x56\xe4\x20\x4b\x57\x09\x46\x97\xf6\x81\xa4\xb8\xf7\xa7\xac\xd2\x7f\x8f\x4f\xc7\x11\x53\xc5\x1f\xa8\x41\x6b\xb8\xac\x2a\x5a\x7b\x1b\x42\x6d\x86\x1b\x40\x75\x04\x4e\x9e\x1a\xa1\x56\xe8\xcd\x60\xf3\x1c\x52\xc6\x64\x26\x0c\x49\xb3\xf5\xa8\x60\x73\xb7\x45\xee\xb7\x4c\xb3\x75\xc2\x59\x33\x62\x47\x80\x40\x7a\xc7\x64\xd6\xfa\x76\x33\xeb\x11\x13\x8e\xc2\x34\x50\x47\xe6\xc0\x7b\x1e\xc1\xac\xd7\x6b\x20\x01\x39\x56\xb0\x54\x79\xf7\xa6\xdb\xad\xc2\x2d\x35\x5c\x8a\x3a\x0d\xbb\xab\xbe\xbe\xd5\x73\x23\x69\x7d\x4e\x70\x73\x63\xf9\x8e\xf0\xa9\x19\xa8\xff\x44\x21\x9a\x43\x30\xb1\x35\x04\x9b\xdf\xff\x54\xd9\x98\xc1\x35\x44\x51\x37\x96\x5a\xba\xcf\x8b\x25\x48\xcb\x7a\x38\x3e\xa5\xa3\x43\x72\xd5\x3a\x2f\xa4\xc6\xf7\x17\x0a\xa5\x5d\xdf\x5a\x44\x0a\xd3\x84\x33\xaa\xbb\xc2\x91\xa0\xd8\x9a\xdd\xb4\x23\x82\x9e\x1c\x8f\x46\x51\xb2\x49\xe8\x56\x43\x57\xd2\x5a\xfa\x5d\x33\xee\x1f\x19\xdb\x24\x69\x4f\x8d\x00\x7c\x2b\xa4\x42\xf2\xf8\xbf\xab\x8f\x84\x09\xc2\x76\xc8\xee\x2b\xb7\xd0\xea\x50\x5b\x4c\x65\xbc\x70\x86\xa9\xe4\xc2\x9c\xda\x18\xdb\x28\x67\xb7\xc6\x30\x60\xd1\x1c\xdd\x08\x57\x5b\x1d\x18\x15\xda\xe6\xb5\x61\xe1\x02\xbe\xca\x34\xb3\x71\xb9\x8e\xab\x04\x1a\xd4\xe0\x82\x80\x07\x9a\x64\xa8\x5d\x2e\xc0\x26\x23\xae\x99\xb8\x78\x96\xc7\x66\x0d\x6f\x77\xfa\x9c\x51\xdb\xe7\xdc\x19\xa3\x0e\xf5\x9a\xd3\x77\x70\x7e\x6b\xcf\x06\x63\x06\xb9\x1c\x2a\x55\xf2\xf1\xa9\x0d\x33\x08\xe5\xbc\x8a\xab\xa7\x54\x18\x0b\x1d\xc2\x70\x30\x79\x35\xba\x48\xb9\x63\x74\x77\x68\x5b\x50\xc5\x76\x87\x28\x47\x77\x89\x20\x69\x42\x05\x92\xb6\x8c\xdc\xc0\x9e\x3e\x4e\xdf\xcf\x7b\x55\xe4\xf8\x28\xd5\x38\x69\x77\xa0\xfa\xa7\x6e\x3a\x76\xd2\x52\x24\x96\x7b\xca\x05\xd1\xd9\x66\xc3\x1f\x3b\xc1\x05\x6c\x9a\xde\x42\x93\x02\x9a\xa7\x95\xb7\xdd\x66\x27\xb5\x99\xb6\xf7\x9e\xc3\xbb\xab\xd9\x59\x77\xa6\xfe\x71\xb0\xf0\x3c\x75\x28\x64\xb4\x35\x0d\x0e\xe1\xd6\x5b\x53\x01\x19\x9c\x36\x3c\x2f\xfa\x91\xfd\xa4\xde\x98\xd2\xdf\xea\x7c\x46\xa7\x29\x2f\x78\x75\x7b\x75\x97\xcf\xed\x8f\x06\x95\xa0\x49\xad\x0d\xa5\x52\x99\xe0\xb8\xd8\x3a\xd2\x4b\x87\xc6\xe0\xf0\x64\xb9\x8e\x22\x76\xa2\x1b\x68\xae\xe5\xf7\x50\xda\x1c\xed\x8c\x0d\xb7\xbe\xfe\xc8\xa4\x10\x46\x51\x76\x4f\xf6\xf4\x91\xa4\x76\xc6\x96\x0a\x5b\x7c\x0d\xda\x94\x1d\xc1\x09\xb9\x76\x2a\x59\x62\x13\x8d\x4c\xa1\xd1\x2f\x56\xdf\xda\x95\xd7\x23\x34\x45\xb8\xda\xc0\xc8\x7b\x14\x16\xff\x76\xe2\x63\xdd\x48\x05\xee\x25\x70\xe1\xc2\xee\xd8\x5e\xe7\x96\xcf\x93\xe2\x7c\x6e\x81\xf0\x38\x3f\xac\x7b\x5c\x16\x2f\x5b\x56\x3e\x9e\x96\x95\x7f\x99\x5b\x1e\xdc\xbf\xc1\x56\xd9\x39\x56\x6f\xc7\x0c\x27\xa0\xb7\x71\x76\xcc\x7d\xff\x74\x2c\x3b\x52\xfb\xda\x8c\xf8\x0e\xae\xe1\x6a\x72\x42\xcf\xed\x29\x55\xad\xf5\xda\x81\xd0\x06\xbb\xec\xf0\xa2\xc5\x1b\x0b\x9b\x60\x11\x70\xcc\xb5\x8b\xd8\xe9\x8b\x95\x3b\x8c\x49\x69\x71\x03\x1b\x9a\xe8\x2a\x70\x80\x0b\xf8\x86\xc2\x76\x82\xdc\xc6\x85\xe1\xe8\x50\x38\xb9\xe0\xab\x6d\xc8\x39\xa3\x41\xb1\x41\x63\x2e\xb0\xa0\x9d\xe6\xdd\xdb\x2a\x1b\x1e\xd1\xdd\x61\x71\xac\x63\x86\x3b\xc2\xa8\x56\xd0\xd3\x8b\x86\x9a\x50\x8f\x9e\x0c\xfd\x7a\x36\xcf\x2f\x93\x62\xc3\xb7\xe4\xe4\x54\x57\x18\x8b\x1c\xa3\xcc\x74\xa3\x41\x9d\xde\x8f\xca\xd0\xfc\xbd\x6e\xd4\xfd\xb9\xa8\x7c\x18\x29\xbf\x8e\x0d\x36\x32\x8b\x30\xdc\xc8\x7e\x6a\xdf\xea\x14\x86\xc6\x7b\x2e\xce\x2a\x8b\x43\x28\x8b\xe2\x14\xa3\xd5\x2f\x72\x6a\xd9\xa5\x7f\xbb\x70\x2e\xd8\x33\xca\xe6\xfd\xcf\x29\x9a\x57\xc0\x5a\xd9\x48\x51\xae\x91\xf5\xeb\x5e\xba\x4a\x4d\xeb\xb9\x71\x15\x1a\x75\xf4\xba\x65\xbf\xac\x46\xaf\xf0\x81\xe6\x4b\x93\xa6\x8c\xfb\xdf\x1d\x44\x73\xb8\xb5\xba\xca\x6d\x8b\x55\x54\x6c\x71\x7a\x35\x87\x77\x33\xb8\x6e\x3a\x17\xf4\xba\x9b\x9d\x78\x95\x2b\x45\xd6\x1f\xfe\x37\x14\xa8\xa8\xc9\x4f\xe7\x69\xe8\x04\xfe\x77\x6f\xab\x8f\x9d\xb3\x25\x26\xf9\x91\x5b\x0d\xaa\x5f\xb9\x86\x4e\x40\x33\xb3\x0b\x89\x56\x3b\x72\x47\xa4\x7a\xfc\x53\xab\x9f\xf6\x19\x14\xfe\x95\x71\x85\x1a\xb8\x81\x35\x02\x35\xd0\x02\x9d\x4d\x2e\xa0\xa0\xd5\x96\x9b\x5d\xb6\x5e\x32\x59\xbf\xf4\x2e\xb8\x60\xd9\x9a\x1a\xa9\x56\x05\xea\x6a\x9d\xc8\xf5\x6a\x4f\xed\x97\xb8\x4a\xef\xb7\xb5\x85\xfc\x3f\xcb\xad\xbc\xf8\xf2\xe1\xfd\x88\xdc\xf9\x2f\x7e\x30\x73\x0d\x69\x79\x61\xde\x86\xf3\xc5\x05\xd0\x3a\xd1\xe9\xc6\xa0\x02\xb3\xc3\xa2\xcf\x8d\x3d\xc8\xc2\xf9\xbf\xc6\x71\xf2\x3e\x5e\x93\xbf\xc3\xa2\x71\xbc\xcf\x9b\xb6\x86\x97\x62\x00\x5c\x8b\x4b\x03\x1a\xcd\x1c\x32\x8d\x6d\xbb\xe5\xe4\x02\xbe\xef\xb8\x06\xae\x1d\xf3\x75\x96\x5a\x89\xe0\x62\x0b\x1a\x53\x6a\x73\x06\xbf\x7e\xfd\x5c\x88\xd2\x1f\xdf\xbe\x78\xbb\x12\xde\xff\x5e\x4f\xfb\x34\xae\x29\xbb\xff\x41\x55\xbc\x60\x72\x9f\x52\xc3\xd7\x09\xc2\x0f\xfa\xe4\x37\x41\xb7\xbf\xdc\x80\x4e\x13\x6e\xa6\x33\xa0\x22\xf6\x02\x30\x83\x1d\x2a\xb4\x21\xac\x91\x51\x6b\xf5\x1d\x95\xa2\x56\xf9\x2e\xb5\xcd\x65\xcc\x0d\x97\x76\x37\x99\xda\x32\x4a\x05\xd3\xcb\x4f\x97\x33\x60\x54\x08\x69\xc9\x3d\xb9\xb0\xe0\x31\xfc\xe0\x66\x07\x09\xd7\x46\x2f\xeb\x73\x60\x30\x31\x37\x79\x20\xee\x8f\x2f\xd5\x9f\x61\xfa\x12\x39\xb3\x33\x62\x14\xc1\xa7\x7e\x5b\x2b\x58\x23\x80\xac\xf4\xfe\x1d\x00\x00\xff\xff\x16\x6f\xaa\xed\xb0\x20\x00\x00"),
 		},
 		"/terraform-modules/bootkube/conditional.tf": &vfsgen۰CompressedFileInfo{
 			name:             "conditional.tf",
@@ -5794,9 +5794,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/bootkube/resources/charts/kubernetes.yaml": &vfsgen۰CompressedFileInfo{
 			name:             "kubernetes.yaml",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 953,
+			uncompressedSize: 1002,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x9c\x92\x41\x8b\xdb\x30\x10\x85\xef\xfe\x15\x3a\x6c\xa1\x3d\x14\x7a\xf6\xa1\xd0\x3a\x97\xd0\x16\xcc\xa6\xb7\x52\x06\x45\x1a\x79\x45\x14\x49\x48\x72\x48\x08\xce\x6f\x2f\x23\xc9\x76\xd2\x52\x68\xf7\x96\x7c\xf3\x66\xde\x3c\x8f\x84\xb3\x29\x38\x63\x30\x7c\xe3\x96\x0f\x18\xda\x86\xb1\x88\xe1\xa4\x05\x7e\x12\xc2\x8d\x36\x7d\xc1\x4b\xcb\x9e\xae\x15\xf2\x02\xe1\x80\x97\xa9\x61\x4c\xf0\x0e\x43\xa2\xba\xe0\x20\x30\xa4\x02\x6b\x8f\xe0\xb3\x4e\x1f\xf9\x80\x84\x0e\xe3\x1e\x61\x75\x85\x63\xb1\x85\x2c\xc8\xcd\xc6\x8d\xb2\x0f\xee\xa4\x25\x86\x3c\x84\x00\xf8\x4a\xa6\x75\xbf\x6e\xbb\x79\xbe\xdb\x0c\x84\x96\xb9\xec\x9d\x9c\x4b\xde\xc9\x05\x57\xd3\xde\x70\x8b\xcf\xe8\x8d\x16\x3c\xe6\xf9\x85\x83\xa7\x02\x84\x5a\xa1\x8e\x14\xc6\x98\x50\x52\xc2\xb8\xd1\x79\x99\x8a\x72\xd4\x08\x52\x87\xa9\xa1\x44\x7d\x70\xe7\x4b\xfb\x47\x4e\x4f\x78\x8d\xf6\x97\xc5\xfe\xdd\x66\x27\x5e\x50\x8e\xa6\x5c\xe9\xd1\x2a\xce\xa5\xbb\x2f\xf9\x9f\x81\x69\x4e\xe7\xac\xd2\xc3\xd6\x76\x86\x16\x58\x5e\x43\xb9\x44\xf9\x35\x35\xc2\x05\x94\x36\xb6\xf9\x5a\x59\xb7\x71\x47\xae\xed\x6e\x54\x4a\x9f\xcb\xcd\x32\x06\x99\x39\xc4\x5c\x78\xdd\x11\x96\x98\xd5\xf5\xfe\xa5\x64\x93\x6d\xff\xe0\x68\x23\xcc\x0f\x42\xfb\xa9\xc1\x24\x24\x2d\xfa\xe6\x7a\x63\x5a\x31\x83\x76\x48\x2f\x6f\x89\x02\x5a\xe9\x9d\xb6\x29\xbe\x63\x1f\xd9\x07\x76\xa3\x99\x0b\x9b\x7b\x94\x0b\x4c\x31\x6d\xd9\x63\x4b\x51\xbf\x67\x4f\x57\x35\x55\x25\x5a\x49\xe2\xdb\xf2\xdf\x44\xfc\x7d\x28\xfb\xf1\x73\x55\x6b\x45\x65\xfa\xea\x06\x53\x9b\x75\x7c\x6f\xf0\xfb\xd7\xdd\x67\xe7\x52\x4c\x81\x7b\x4a\x56\x28\x24\x13\x61\x3f\xf3\xa9\xf9\x15\x00\x00\xff\xff\x71\xdf\x08\xe1\xb9\x03\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x9c\x92\xc1\xab\x13\x31\x10\xc6\xef\xfb\x57\xe4\xf0\x04\x3d\x08\x9e\xf7\x20\xe8\xf6\x52\xf4\xc1\xf2\xea\x4d\x64\x48\x93\xd9\xbe\xd0\x34\x09\x93\x6c\x69\x29\xdb\xbf\x5d\x26\xc9\x6e\x5b\x45\x50\x6f\xed\x6f\xbe\x99\xf9\xbe\x9d\x28\xef\x12\x79\x6b\x91\x9e\xa5\x93\x3b\xa4\xb6\x11\x22\x22\x1d\x8d\xc2\x4f\x4a\xf9\xd1\xa5\x2f\x78\x6e\xc5\xd3\xa5\x42\x59\x20\xec\xf1\x3c\x35\x42\x28\xd9\x21\x25\xae\x2b\x09\x0a\x29\x15\x58\x7b\x94\x9c\x75\xe6\x20\x77\xc8\x68\x3f\x6e\x11\x6e\x5b\xe1\x50\xd6\x42\x16\xe4\x66\xeb\x47\xdd\x93\x3f\x1a\x8d\x94\x87\x30\x80\x50\xc9\x74\xf3\xd7\xad\x57\x2f\x77\xce\x40\x19\x9d\xcb\xc1\xeb\xb9\x14\xbc\x5e\x70\x5d\xda\x5b\xe9\xf0\x05\x83\x35\x4a\xc6\x3c\xbf\x70\x08\x5c\x00\xaa\x15\xee\x48\x34\xc6\x84\x9a\x13\xc6\x95\xc9\x66\x2a\xca\x51\x23\x68\x43\x53\xc3\x89\x7a\xf2\xa7\x73\xfb\x5b\xce\xc0\xf8\x16\xed\x0f\xc6\xfe\x6e\x4d\x0e\xe0\x12\x49\xb5\x7f\x96\xa7\x1e\xa9\xf3\x84\xd5\x7f\xc1\x70\x90\x27\x08\x48\xa0\x3c\x61\xf1\xb5\x51\xaf\xa8\x47\x5b\xce\xfa\xe8\x2d\xce\xa5\xbb\x4f\xff\x8f\x5f\x88\xe7\x74\xde\x0d\x66\xb7\x76\x9d\x65\xc7\xcb\xf3\x29\xa7\x2b\xbf\xa6\x86\x0d\x69\x17\xdb\x7c\xde\xac\x5b\xf9\x83\x34\x6e\x33\x0e\x83\x39\x95\x23\x67\x0c\x3a\x73\x88\xb9\xf0\x7f\x57\x5b\x62\xd6\xad\xf7\x4f\x2b\x2f\x59\xf7\x0f\x1b\x5d\x84\xf9\x05\x99\x30\x35\x98\x94\x66\xa3\x6f\x2e\x57\x61\x06\x61\xd1\xed\xd2\xeb\x5b\xa6\x80\x4e\x07\x6f\x5c\x8a\xef\xc4\x47\xf1\x41\x5c\x79\xe6\xc2\xe6\x9e\xc1\x93\x18\x84\x71\xe2\xb1\xa5\xa8\xdf\x8b\xa7\xcb\x30\x55\x25\x3a\xcd\xe2\xeb\xf2\xdf\x46\xfc\x75\xa8\xf8\xfe\xe3\xa6\x36\x03\x97\xf9\xab\x5b\x4c\x6d\xd6\xc9\xad\xc5\x6f\x5f\x37\x9f\xbd\x4f\x31\x91\x0c\x9c\xac\x50\x48\x36\xc2\x76\xe6\x53\xf3\x33\x00\x00\xff\xff\x12\x72\x3c\x9f\xea\x03\x00\x00"),
 		},
 		"/terraform-modules/bootkube/resources/charts/lokomotive.yaml": &vfsgen۰FileInfo{
 			name:    "lokomotive.yaml",
@@ -5853,9 +5853,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/bootkube/variables.tf": &vfsgen۰CompressedFileInfo{
 			name:             "variables.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 5499,
+			uncompressedSize: 5737,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xac\x58\xcd\x6e\xe3\x46\x12\xbe\xfb\x29\x0a\x4e\x0e\x0e\x60\x49\xf6\x58\xfe\x19\x23\x39\x64\x3d\x73\x30\x32\x99\xf5\x6e\x9c\xdd\xc3\x62\x41\x94\xba\x8b\x62\x43\xcd\x6e\x6e\x75\x53\xb6\x10\xcc\xbb\x2f\xaa\x49\x51\xa2\x4c\xc9\x36\x12\x5f\x04\x9a\x55\xd5\x5f\xfd\x7d\x5d\xc5\x25\xb2\xc1\x99\x25\x38\x56\xb6\x0e\x91\x38\x73\x58\xd2\x31\xfc\x71\x04\xa0\x29\x28\x36\x55\x34\xde\xc1\x4f\x70\x7c\xd7\x08\x40\x12\x38\x02\x88\xab\x8a\xa0\xfd\xfb\x09\x42\x64\xe3\xe6\x47\xdf\x8e\x8e\x36\x26\xb1\x32\x59\x20\x5e\x12\x87\x41\x8b\x5f\x4c\x88\xe0\x73\xd0\xbe\x44\xe3\x92\xe1\x00\x75\x20\x0d\xd1\x03\x13\xaa\x02\x16\xf5\x8c\x46\x58\x99\xc6\x0c\xe4\xec\x4b\x78\x32\xb1\x30\x0e\x62\x41\xd0\x82\x7e\x09\xc7\x9a\x10\x4f\x1a\x4c\x3f\x08\xa8\xef\xe0\xdf\x05\x39\x70\x3e\x42\xa0\x78\x9a\x94\x97\x68\x6b\x92\xf3\x97\xc8\xe3\x2d\xac\xf0\x64\xac\x85\x19\x25\x28\xe3\x61\x7f\x32\x7a\x8e\xc4\x0e\xed\x5f\xe9\x18\x3a\x58\x9b\x05\x47\xf1\xc9\xf3\xe2\x15\xcf\xe4\xe4\x1c\x6b\x1b\xdb\x97\xff\xf9\xef\xde\x0c\x64\xa6\x3a\x9c\x05\xd4\xda\xc8\xff\xd0\xc2\xfd\xc3\x72\x2a\xcf\x4c\x21\x50\x10\xd0\x33\x02\xe3\x94\xad\x35\x69\x68\x63\xbf\xe3\xc1\xe3\x97\xdf\x40\x11\x47\x93\x1b\x85\x71\xa0\x42\xde\x05\x9c\xa2\xd2\x7f\xb6\x76\xc4\x06\xb4\x36\xc6\xaf\x97\xc8\xce\xe1\xe4\x74\xe5\x8d\x8b\x87\x8f\x7f\x60\xb3\xc4\x48\xbb\x11\xf3\x79\x53\x9e\xde\x45\xf6\xd6\x4a\xd7\x78\x4d\x01\xb8\x76\xce\xb8\x79\x82\xf6\x1a\xa4\x57\x73\x1b\x02\xc5\x4c\x1b\x1e\x04\xf8\x80\xb1\x90\x50\x20\x68\xc3\xa4\xa2\xe7\x15\x3c\x15\xc4\x04\x73\x72\xc4\x18\x49\x43\xb2\x10\x20\x14\xbe\xb6\x5a\x52\x5c\x59\x54\xa4\xe1\x44\x70\xa3\x71\x01\x02\x29\xa6\x18\x7e\x78\x5b\xbf\x2b\xeb\x6b\x9d\x55\xec\x97\x46\xd3\x30\xac\xc7\x82\x60\x2d\x00\xb9\x67\x48\x3a\x29\x4b\x46\x51\x80\x13\x2a\xab\xb8\x6a\xad\x27\x01\xe7\x3b\x85\xfd\x30\x76\x63\x75\x7c\xdc\x47\xd6\x76\x53\x56\xc6\x7a\x98\xdb\xbe\xde\x83\x71\x91\x38\x47\x45\xf0\xeb\xe3\xef\x2f\x4f\x72\x75\x39\x23\x7e\x71\xd2\xf9\xe5\xd9\xd9\xf0\x59\xe4\x14\x56\xa1\xb6\x28\x87\x0c\x9e\xfa\xb5\x91\x84\x9e\x24\x94\x5e\x13\x90\x89\x05\x31\x98\xca\x54\xe0\x19\x96\xcf\x16\x1d\x9c\x78\x67\x57\x80\x55\x65\x4d\xd3\x95\x0a\xad\x51\xfe\x1d\x61\x11\x7b\x7b\x42\x63\xaa\x0c\xeb\xe8\x35\x45\x52\x82\x23\x2b\x29\x16\x5e\x0f\x02\xff\x35\xbd\x4a\xe5\xd5\xa9\xa4\x82\x2f\x7c\x88\xbd\x5e\xf8\x0b\x30\xe7\x86\x43\x1c\xe5\xbe\x76\x7a\x07\x7a\xe5\x75\xa6\x8c\x1e\xae\xb4\xbb\xfb\x4f\xff\x84\xfb\x07\x60\x74\x73\x4a\x50\x43\x30\x73\x07\xbf\xd4\x33\x62\x47\x91\x02\x54\x5e\x87\xb7\xe3\x38\x3f\x1b\x7f\x18\x9f\x8d\xcf\x26\xe7\x57\x3b\x38\xda\xea\xdd\x8b\xe5\xc7\x1f\x3f\xff\xfd\xd3\xd1\x1b\x00\xad\xdb\x60\x7c\x24\x7d\x72\x9e\x62\xd9\xdd\x46\x4c\x89\xcb\x74\xea\x0a\x21\xdf\xac\x23\xdf\xe6\x3e\x3b\x3f\x8b\xc5\x41\x85\x91\x76\x61\x7c\x24\x58\x8e\xb6\xbc\x1e\xf0\xb8\xf1\xf6\x22\x79\xfb\x61\x7a\xbc\xdb\xe5\xcd\xa0\xd0\x30\x6f\x16\xea\x3c\x37\xcf\x83\x29\xf8\x47\x4d\x2c\x59\x97\xf3\x1b\xe9\x90\x2e\xef\x84\xb6\xd1\xeb\xc0\xa2\x0b\x4f\xc4\xa4\x61\xb6\xea\xb0\xbe\x3d\x37\x2d\xa6\xb1\xf5\x0a\xed\x2e\xde\x86\xcc\x88\x33\x64\x55\x0c\x02\xfd\x99\x55\x61\xa4\x88\x6b\xee\x80\x09\xe8\x35\x87\x27\x75\x30\x25\xce\xe5\x99\x49\xbb\x30\x69\x7f\x6f\xdb\xdf\x11\x9c\xd0\x78\x3e\x3e\x05\xe4\xf2\x6a\xfa\x8e\xf2\xc6\x52\x5f\xbd\x08\x71\x07\x39\x9d\x39\x7c\x05\xdd\xf5\x81\xa5\xe6\xaa\x03\xc1\x49\x83\x3a\xa1\x02\x72\x51\x88\x5f\x82\x3c\xa7\x08\xa3\xef\xbf\xff\x43\xa6\x9d\x7e\x4c\xbe\x49\x7f\x92\xd3\xa4\x07\x70\x97\x58\x75\x57\x52\xaf\x44\x04\x12\xb4\xed\x0c\x2f\xfe\x24\x29\xe9\xd5\x44\x6e\xbe\xdb\xe5\xc5\xf8\xfc\x6a\x3c\x3d\xde\xd2\xc9\x94\x33\xfb\x74\x94\x33\xc3\x2a\xdd\x85\x1a\x76\x55\x52\xd1\x6c\xbd\xef\xeb\xe7\x96\x9e\x97\xde\x66\x9a\xcd\x72\x1d\xd6\xbe\x7e\xe5\xf5\x07\x8d\x54\x7a\x37\x6a\x85\xfb\x16\xc4\xbe\xa5\xb8\x51\xdd\x80\xfe\x5f\x8d\xab\xb1\x11\x13\x81\x8c\xf6\x6e\xd2\xca\xde\x2e\xcf\xc7\xe7\x1f\xc7\x17\xad\x0b\x6d\x4a\x86\x22\xb5\xa7\xa6\x1a\xc5\x44\x73\x05\xa9\x45\x9a\x47\x88\xb7\x14\x17\xc6\x2d\xbd\x5d\x08\xf8\xd1\xb6\xc8\xad\x3e\x57\x97\x37\xd3\xe9\x45\x4e\xd7\xfa\x5a\x5f\x5c\x20\x5e\xce\xf2\x6b\x7d\x73\xa6\xaf\x2e\xf5\x87\x8f\x1f\x67\x74\x45\x97\x37\xd3\xeb\x8d\x6f\x1b\x36\xe9\x41\x5b\xdc\x84\xf1\x5c\xb1\xb8\xd7\x1f\xf8\xfa\xce\x25\x0b\x9b\xe8\x67\x25\x3a\x9c\x13\x0f\x59\xd8\x48\x8d\x5a\xa9\x01\x53\x41\x15\xa4\x6b\xfb\x0a\x98\x4e\x6a\xc0\x42\xc5\xfe\x79\xf5\x22\xd2\xbb\x16\x92\xd4\xb6\xf6\xb7\x9d\x51\xd0\xc9\x6f\xc6\x54\x79\x8e\xc6\xcd\x9b\x4e\xec\x77\xc8\xcc\x7b\xfb\xb2\x3d\x3f\x27\x4d\xa8\x83\x94\x8b\x67\x40\x87\x76\x15\x8d\x0a\xd0\x19\x4b\x1d\x5b\x85\xc8\x84\x25\x28\x5f\x56\xde\x91\x8b\xe0\x9f\x9c\xd4\xf7\xc9\xa3\x99\x13\xe3\x2d\xdc\x6d\x6e\xcc\x3e\x77\xe4\x68\x03\xf5\xf1\x46\x16\x22\xd4\x99\x4c\xe2\xe1\xd5\xe1\x50\x98\x62\x33\x1e\x7a\xb7\xde\xa7\xda\x69\xb5\x99\x17\x93\xc9\x6e\xbc\x0f\x80\x4c\xb0\xa0\x2a\xbe\x9d\xe2\x26\x75\xe0\x49\x28\x90\x69\xa2\x70\xb4\xb5\x24\x84\x5d\xde\x4b\xa8\x97\x68\x8d\x36\x71\x95\x55\xc4\xc6\xeb\xac\xf0\xf5\x9e\x25\xe0\x5f\xad\x64\x5a\x5f\xac\x6d\xf8\x7a\xcb\xbc\xac\x2a\x8d\xf6\x5b\xc7\xb9\x9b\xeb\xab\xb3\xc1\x0a\xc0\xf9\x9c\x69\xbe\x7f\x96\x6b\xd3\x2d\x08\xb6\x2e\xf4\x9f\x37\x5a\xf0\x05\x57\xc4\x70\xd2\x9e\x97\xe8\x3a\x25\xf0\x14\x98\x94\x2f\xcb\x7d\x04\xdc\x95\xd7\x60\xea\xbf\x83\xda\xf9\x3c\x37\xca\xa0\x3d\x85\x48\x65\xe5\x19\x79\x75\x0a\x25\xae\x9a\x21\xa0\xf4\x32\x03\xc8\xbd\xeb\xeb\x28\x1b\xb0\x51\xd4\x73\xb0\x5d\x39\x37\x04\x90\x49\x7d\x0e\x7b\xb9\x5e\x4f\x77\x96\x3f\x51\x68\x2e\x40\xb8\x9a\x4e\x2f\xc4\xb7\x12\xa3\x2a\x9a\xa1\x7a\x8f\xc2\x80\xaf\x7b\xb2\x22\x36\xfb\x59\xd1\x26\xa4\xb4\x04\xb2\x79\x26\x53\x27\xe9\xac\x65\xdd\x41\xe0\x9f\x1a\xf9\x66\xf2\x20\x9b\x43\xa3\xb3\x66\x75\x30\x2e\x44\xb4\xb6\x99\x3f\xda\xc3\xf7\xa4\xa2\x87\xa3\xcf\x9c\x19\x3d\x47\xc6\x2c\xb7\x38\x1f\x2e\xd8\xcf\xf2\x1e\xd2\x7b\xa8\x64\xfd\x4a\x43\xb4\x00\x1a\x6d\x01\xda\xc4\xe9\xcf\xee\x88\x66\xee\x3c\x53\xf6\x7c\x79\xf6\x31\x53\xae\xb9\x45\x06\x81\xdd\x27\x41\xb8\xfb\x0a\x49\x26\x75\x8e\x68\xf5\xda\x69\x00\xcd\xe1\xe2\xdc\x00\x99\x59\xaf\x16\xa4\x65\xa9\x40\x8d\x11\xd3\xac\x7c\x78\xb5\xae\x2c\xc6\xdc\x73\x09\x6b\x1d\x90\x09\xba\xf9\x1a\x21\xd6\x00\x95\x92\x0d\x43\xfa\x48\xf8\xd5\xda\x3d\x03\xfd\xbb\x22\x36\xf3\x3e\x86\xc8\x58\x65\xd1\x2f\xc8\x1d\x86\xd8\x09\x43\x23\xdc\x01\x91\x32\x6b\x38\xb4\xff\xa1\x6a\xfd\x98\xfc\x4a\x3a\x23\xa3\x01\x9d\x6e\x1f\x9a\x7d\x7b\x5f\xd6\xd1\xad\x76\xbf\x54\x34\xe4\x14\x6d\xc8\x3a\x2c\x87\xe8\x49\x58\xfc\x6f\x1d\x68\x41\xfb\x4b\xd3\x00\xfb\x52\xdb\x3b\x2d\x47\x63\x03\xe6\x94\x19\x37\x93\x75\x2c\x35\x5e\x22\x8b\xe1\x30\xfd\xfe\xe9\x61\xf2\x78\xf7\x30\xf9\xed\xee\xf1\x41\x96\xf8\xe8\x95\xb7\x93\xc4\x15\x15\x1a\x4e\xa9\x43\x6b\xfd\x13\x18\xa7\x7c\x99\x6e\x44\x46\x21\x33\xb9\x8b\x84\x38\x59\x5b\x49\x71\xfb\x39\x25\x90\xaa\x59\xe8\xbe\xf2\xd6\xa8\xd5\xc1\x30\xed\xe6\xd9\xd5\xd6\xee\xc6\x4e\xf1\xaa\x12\xfc\x3a\x6b\x8f\x3d\x14\x3a\xe3\x46\xeb\x24\x56\xb2\xfb\xb6\x40\x5b\x2b\xc6\xbb\xf7\x76\xc7\xff\x03\x00\x00\xff\xff\x05\x90\xa3\xa0\x7b\x15\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xac\x58\x5f\x6f\xdb\x38\x12\x7f\xf7\xa7\x18\x64\xf7\x21\x05\x62\xd9\x69\xfe\x36\xd8\x7d\xe8\xa5\x7d\x08\xb6\xed\xe5\x6e\xd3\xbb\x87\xc3\x41\x18\x93\x23\x8b\x30\x45\xea\x48\xca\xb1\xb1\xe8\x77\x3f\x0c\x29\xcb\x96\x23\x27\x29\xda\xbc\x18\x8a\x66\x86\xbf\xf9\xf7\xe3\x8c\x96\xe8\x14\xce\x34\xc1\x91\xd0\x8d\x0f\xe4\x72\x83\x15\x1d\xc1\x5f\x23\x00\x49\x5e\x38\x55\x07\x65\x0d\xfc\x0e\x47\xb7\x49\x00\xa2\xc0\x08\x20\xac\x6b\x82\xf6\xef\x77\xf0\xc1\x29\x33\x1f\x7d\x1b\x8d\xb6\x26\xb1\x56\xb9\x27\xb7\x24\xe7\x07\x2d\x7e\x52\x3e\x80\x2d\x40\xda\x0a\x95\x89\x86\x3d\x34\x9e\x24\x04\x0b\x8e\x50\x94\xb0\x68\x66\x34\xc6\x5a\x25\x33\x50\x38\x5b\xc1\xa3\x0a\xa5\x32\x10\x4a\x82\x16\xf4\x53\x38\x5a\xf9\x70\x9c\x30\xbd\x61\x50\xbf\xc0\xbf\x4b\x32\x60\x6c\x00\x4f\xe1\x24\x2a\x2f\x51\x37\xc4\xe7\x2f\xd1\x65\x3b\x58\xe1\x51\x69\x0d\x33\x8a\x50\xb2\x61\x7f\x72\x5a\x05\x72\x06\xf5\xcf\x74\x0c\x0d\x6c\xcc\x82\xa1\xf0\x68\xdd\xe2\x05\xcf\xf8\xe4\x02\x1b\x1d\xda\x97\xff\xf9\xef\xc1\x0c\xe4\xaa\x7e\x3e\x0b\x28\xa5\xe2\xff\xa1\x86\xbb\xfb\xe5\x39\x3f\x3b\xf2\x9e\x3c\x83\x9e\x11\x28\x23\x74\x23\x49\x42\x1b\xfb\x3d\x0f\x1e\x3e\xfd\x09\x82\x5c\x50\x85\x12\x18\x06\x2a\xe4\xbb\x80\x53\x10\xf2\x47\x6b\x87\x6d\x40\x6b\x23\x7b\xb9\x44\xf6\x0e\x27\x23\x6b\xab\x4c\x78\xfe\xf8\x7b\xa7\x96\x18\x68\x3f\x62\xb6\x48\xe5\x69\x4d\x70\x56\x6b\xee\x1a\x2b\xc9\x83\x6b\x8c\x51\x66\x1e\xa1\xbd\x04\xe9\xc5\xdc\x7a\x4f\x21\x97\xca\x0d\x02\xbc\xc7\x50\x72\x28\x10\xa4\x72\x24\x82\x75\x6b\x78\x2c\xc9\x11\xcc\xc9\x90\xc3\x40\x12\xa2\x05\x0f\xbe\xb4\x8d\x96\x9c\xe2\x5a\xa3\x20\x09\xc7\x8c\x1b\x95\xf1\xe0\x49\x38\x0a\xfe\xcd\xeb\xfa\x5d\x68\xdb\xc8\xbc\x76\x76\xa9\x24\x0d\xc3\x7a\x28\x09\x36\x02\x50\x58\x07\x51\x27\x66\x49\x09\xf2\x70\x4c\x55\x1d\xd6\xad\xf5\x28\x60\x6c\xa7\x70\x18\xc6\x7e\xac\x8e\x8e\xfa\xc8\xda\x6e\xca\xab\xd0\x0c\x73\xdb\x97\x3b\x50\x26\x90\x2b\x50\x10\x7c\x7e\xf8\xfa\xf4\x24\xd3\x54\x33\x72\x4f\x4e\x3a\xbd\x98\x4e\x87\xcf\x22\x23\xb0\xf6\x8d\x46\x3e\x64\xf0\xd4\x2f\x49\x12\x7a\x92\x50\x59\x49\x40\x2a\x94\xe4\x40\xd5\xaa\x06\xeb\x60\xb9\xd2\x68\xe0\xd8\x1a\xbd\x06\xac\x6b\xad\x52\x57\x0a\xd4\x4a\xd8\xef\x08\x0b\xdb\x3b\x10\x1a\x55\xe7\xd8\x04\x2b\x29\x90\x60\x1c\x79\x45\xa1\xb4\x72\x10\xf8\xe7\xf8\x2a\x96\x57\xa7\x12\x0b\xbe\xb4\x3e\xf4\x7a\xe1\x27\x60\x2e\x94\xf3\x61\x5c\xd8\xc6\xc8\x3d\xe8\xb5\x95\xb9\x50\x72\xb8\xd2\x6e\xef\x3e\xfc\x13\xee\xee\xc1\xa1\x99\x53\x84\xea\xbd\x9a\x1b\xf8\xa3\x99\x91\x33\x14\xc8\x43\x6d\xa5\x7f\x3d\x8e\xd3\x69\xf6\x36\x9b\x66\xd3\xc9\xe9\xe5\x1e\x8e\xb6\x7a\x0f\x62\xf9\xed\xb7\x8f\x7f\xff\x30\x7a\x05\xa0\x4d\x1b\x64\x23\xee\x93\xd3\x18\xcb\xee\x36\x72\x14\xb9\x4c\xc6\xae\x60\xf2\xcd\x3b\xf2\x4d\xf7\xd9\xe9\x34\x94\xcf\x2a\x8c\xa5\xf1\xd9\x88\xb1\x8c\x76\xbc\x1e\xf0\x38\x79\x7b\x16\xbd\x7d\x7b\x7e\xb4\xdf\xe5\x69\x50\x48\xcc\x9b\xfb\xa6\x28\xd4\x6a\x30\x05\xff\x68\xc8\x71\xd6\xf9\xfc\x24\xed\xe3\xe5\x1d\xd1\x26\xbd\x0e\x2c\x1a\xff\x48\x8e\x24\xcc\xd6\x1d\xd6\xd7\xe7\xa6\xc5\x94\x69\x2b\x50\xef\xe3\x4d\x64\x46\x2e\x47\x27\xca\x41\xa0\xef\x9d\x28\x15\x17\x71\xe3\x3a\x60\x0c\x7a\xc3\xe1\x51\x1d\x54\x85\x73\x7e\x76\x24\x8d\x9f\xb4\xbf\x37\xed\xef\x18\x8e\x29\x9b\x67\x27\x80\xae\xba\x3c\xff\x8e\xf2\xc6\x4a\x5e\x3e\x09\x71\x07\x39\x9e\x39\x7c\x05\xdd\xf6\x81\xc5\xe6\x6a\x3c\xc1\x71\x42\x1d\x51\x01\x99\xc0\xc4\xcf\x41\x9e\x53\x80\xf1\xaf\xbf\xfe\xc5\xd3\x4e\x3f\x26\xdf\xb8\x3f\xc9\x48\x92\x03\xb8\x2b\xac\xbb\x2b\xa9\x57\x22\x0c\x09\xda\x76\x86\x27\x7f\x9c\x94\xf8\x6a\xc2\x37\xdf\xcd\xf2\x2c\x3b\xbd\xcc\xce\x8f\x76\x74\x72\x61\xd4\x21\x1d\x61\xd4\xb0\x4a\x77\xa1\xfa\x7d\x95\x58\x34\x3b\xef\xfb\xfa\x85\xa6\xd5\xd2\xea\x5c\x3a\xb5\xdc\x84\xb5\xaf\x5f\x5b\xf9\x56\x22\x55\xd6\x8c\x5b\xe1\xbe\x05\xb6\xaf\x29\x6c\x55\xb7\xa0\xff\xd7\xe0\x3a\x53\x6c\xc2\x93\x92\xd6\x4c\x5a\xd9\x9b\xe5\x69\x76\xfa\x2e\x3b\x6b\x5d\x68\x53\x32\x14\xa9\x03\x35\x95\x14\x23\xcd\x95\x24\x16\x71\x1e\x21\xb7\xa3\xb8\x50\x66\x69\xf5\x82\xc1\x8f\x77\x45\x6e\xe4\xa9\xb8\xb8\x3e\x3f\x3f\x2b\xe8\x4a\x5e\xc9\xb3\x33\xc4\x8b\x59\x71\x25\xaf\xa7\xf2\xf2\x42\xbe\x7d\xf7\x6e\x46\x97\x74\x71\x7d\x7e\xb5\xf5\x6d\xcb\x26\x3d\x68\x8b\x6b\x9f\xcd\x85\x63\xf7\xfa\x03\x5f\xdf\xb9\x68\x61\x1b\xfd\xbc\x42\x83\x73\x72\x43\x16\xb6\x52\xe3\x56\x6a\xc0\x94\x17\x25\xc9\x46\xbf\x00\xa6\x93\x1a\xb0\x50\x3b\xbb\x5a\x3f\x89\xf4\xbe\x85\x28\xb5\xab\xfd\x6d\x6f\x14\x34\xfc\x9b\x3b\xaa\xad\x0b\xca\xcc\x53\x27\xf6\x3b\x64\x66\xad\x7e\xda\x9e\x1f\xa3\x26\x34\x9e\xcb\xc5\x3a\x40\x83\x7a\x1d\x94\xf0\xd0\x19\x8b\x1d\x5b\xfb\xe0\x08\x2b\x10\xb6\xaa\xad\x21\x13\xc0\x3e\x1a\xae\xef\xe3\x07\x35\x27\x87\x37\x70\xbb\xbd\x31\xfb\xdc\x51\xa0\xf6\xd4\xc7\x1b\x1c\x13\xa1\xcc\x79\x12\xf7\x2f\x0e\x87\xcc\x14\xdb\xf1\xd0\x9a\xcd\x3e\xd5\x4e\xab\x69\x5e\x8c\x26\xbb\xf1\xde\x03\x3a\x82\x05\xd5\xe1\xf5\x14\x37\x69\xbc\x9b\xf8\x12\x1d\x4d\x04\x8e\x77\x96\x04\xbf\xcf\x7b\x11\xf5\x12\xb5\x92\x2a\xac\xf3\x9a\x9c\xb2\x32\x2f\x6d\x73\x60\x09\xf8\x57\x2b\x19\xd7\x17\xad\x13\x5f\xef\x98\xe7\x55\x25\x69\xbf\x76\x9c\xbb\xbe\xba\x9c\x0e\x56\x00\xce\xe7\x8e\xe6\x87\x67\xb9\x36\xdd\x8c\x60\xe7\x42\x7f\xbf\xd5\x82\x4f\xb8\x26\x07\xc7\xed\x79\x91\xae\x63\x02\x4f\xc0\x91\xb0\x55\x75\x88\x80\xbb\xf2\x1a\x4c\xfd\x2f\xd0\x18\x5b\x14\x4a\x28\xd4\x27\x10\xa8\xaa\xad\x43\xb7\x3e\x81\x0a\xd7\x69\x08\xa8\x2c\xcf\x00\x7c\xef\xda\x26\xf0\x06\xac\x04\xf5\x1c\x6c\x57\xce\x2d\x01\xe4\x5c\x9f\xc3\x5e\x6e\xd6\xd3\xbd\xe5\x8f\x15\xd2\x05\x08\x97\xe7\xe7\x67\xec\x5b\x85\x41\x94\x69\xa8\x3e\xa0\x30\xe0\xeb\x81\xac\xb0\xcd\x7e\x56\xa4\xf2\x31\x2d\x9e\x74\x91\xf3\xd4\x49\x32\x6f\x59\x77\x10\xf8\x87\x24\x9f\x26\x0f\xd2\x05\x24\x9d\x0d\xab\x83\x32\x3e\xa0\xd6\x69\xfe\x68\x0f\x3f\x90\x8a\x1e\x8e\x3e\x73\xe6\xb4\x0a\x0e\xf3\x42\xe3\x7c\xb8\x60\x3f\xf2\x7b\x88\xef\xa1\xe6\xf5\x2b\x0e\xd1\x0c\x68\xbc\x03\x68\x1b\xa7\x1f\xdd\x11\xd5\xdc\x58\x47\xf9\xea\x62\xfa\x2e\x17\x26\xdd\x22\x83\xc0\xee\xa2\x20\xdc\x7e\x81\x28\x13\x3b\x87\xb5\x7a\xed\x34\x80\xe6\xf9\xe2\xdc\x02\x99\x69\x2b\x16\x24\x79\xa9\x40\x89\x01\xe3\xac\xfc\xfc\x6a\x5d\x6b\x0c\x85\x75\x15\x6c\x74\x80\x27\xe8\xf4\x35\x82\xad\x01\x0a\xc1\x1b\x06\xf7\x11\xf3\xab\xd6\x07\x06\xfa\xef\x8a\xd8\xcc\xda\xe0\x83\xc3\x3a\x0f\x76\x41\xe6\x79\x88\x9d\x30\x24\xe1\x0e\x08\x97\x59\xe2\xd0\xfe\x87\xaa\xcd\x63\xf4\x2b\xea\x8c\x95\x04\x34\xb2\x7d\x48\xfb\xf6\xa1\xac\xa3\x59\xef\x7f\xa9\x48\xe4\x14\xb4\xcf\x3b\x2c\xcf\xd1\x13\xb3\xf8\xdf\x3a\xd0\x8c\xf6\x8f\xd4\x00\x87\x52\xdb\x3b\xad\x40\xa5\x3d\x16\x94\x2b\x33\xe3\x75\x2c\x36\x5e\x24\x8b\xe1\x30\x7d\xfd\x70\x3f\x79\xb8\xbd\x9f\xfc\x79\xfb\x70\xcf\x4b\x7c\xb0\xc2\xea\x49\xe4\x8a\x1a\x95\x8b\xa9\x43\xad\xed\x23\x28\x23\x6c\x15\x6f\x44\x87\x4c\x66\x7c\x17\x31\x71\x3a\xa9\x39\xc5\xed\xe7\x14\x4f\xa2\x71\x4c\xf7\xb5\xd5\x4a\xac\x9f\x0d\xd3\x7e\x9e\x4d\xa3\xf5\x7e\xec\x84\x5b\xd7\x8c\x5f\xe6\xed\xb1\xcf\x85\x4e\x99\xf1\x26\x89\x35\xef\xbe\x2d\xd0\xd6\x8a\xb2\xe6\x07\xba\x43\x58\x63\x82\x43\xb1\xc8\x2b\x5c\xf1\xb5\x97\xf3\x04\x38\x88\x66\x3c\xee\x84\xc7\x15\xae\xc6\x35\xb9\x31\x0b\xb7\x5f\x33\xbb\x55\x2f\x0e\x36\x19\x7c\xc6\x95\xaa\x9a\xaa\x25\x56\x0e\xe4\x97\xf7\x0f\xbc\xd3\x98\xb4\xe5\xc7\x1c\x44\x6b\x50\x93\x83\xdb\xfb\xaf\x71\x4e\x85\xe3\x29\xbf\xd0\x84\xcb\xc4\x99\x5a\x55\x2a\x00\xfa\xb1\xf2\xb1\x5c\x13\xb1\xc0\x0e\x16\x65\xde\x0c\x44\xa0\x25\xf4\x6f\xa3\xff\x07\x00\x00\xff\xff\x98\x5d\xf2\xe7\x69\x16\x00\x00"),
 		},
 		"/terraform-modules/bootkube/versions.tf": &vfsgen۰CompressedFileInfo{
 			name:             "versions.tf",
@@ -6214,9 +6214,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/packet/flatcar-linux/kubernetes/bootkube.tf": &vfsgen۰CompressedFileInfo{
 			name:             "bootkube.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 2058,
+			uncompressedSize: 2113,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x8c\x55\x51\x6b\xeb\x46\x13\x7d\xd7\xaf\x18\x7c\xbf\x40\xf2\x91\x48\x37\xe9\x2d\xdc\x1b\x30\xa5\x4d\x4a\xc9\x4b\x08\xbd\x0f\x7d\x08\x61\x59\xef\x8e\xac\xc5\xeb\x1d\xb1\x33\xb2\xe3\x5e\xf2\xdf\xcb\x6a\x25\x47\x71\xe2\x52\x61\x30\xde\x73\x74\x66\x67\xe6\xcc\xd8\x93\xd1\x9e\xe1\x47\x01\xa0\x5b\xa7\x18\xe3\x06\x23\xcc\xa1\xa6\xb8\xd6\x72\x3a\x3b\xe1\x8b\x36\xba\x8d\x16\x2c\x4f\x78\x76\x0e\x1b\x1d\x4b\xe3\x3b\x16\x8c\x2a\xe8\x35\xe6\x13\x1b\x58\xfd\x4d\x01\xcf\x8a\x97\xa2\x58\x93\xed\x3c\xc2\x6c\x41\x24\xab\x6e\x81\xb3\x5e\x9d\xa9\x8b\x06\x21\x3f\x73\x98\x95\x65\x95\x3f\x7b\x5a\x01\x30\x55\x86\xf9\xbb\x60\x45\x01\xf0\x09\x6e\x74\x08\x24\xd0\x31\x82\xd9\x19\xef\x0c\x58\x6c\x31\x58\x0c\xc6\x21\x03\x05\x30\x14\x24\x92\xf7\x18\x19\x28\x82\x34\xe8\x22\xdc\xde\x7f\x87\x88\x86\xa2\xe5\x37\xc9\x32\xec\x9f\x39\x3c\xf6\xf5\x28\x5f\xd1\xa7\xb7\x5c\x85\xcf\x82\x31\x68\x9f\xb8\xaf\x35\xfa\x4f\xb5\x49\x52\x28\xc6\xbe\x8b\x9b\xa5\xc0\x9d\x83\x05\x17\xa0\xd5\x66\x85\xa2\x2c\x6e\x9c\xc1\x72\x9a\xcb\xf5\xb4\x2d\x49\xea\xc4\x1e\x8b\xec\x3e\x08\xae\x99\x93\xae\x8b\x00\xd3\x9c\x13\x6f\x0f\x15\x00\x01\x65\x4b\x71\xa5\xd6\xd2\x1d\xd2\x26\xd0\x98\x0c\x06\xdb\x92\x0b\xc2\x7b\xe2\xd1\xfb\x97\xff\x2f\xb5\x31\xc8\xac\x06\x4b\x29\xd7\x6e\xbe\xe4\xa6\x7e\x47\x8f\x46\x60\x00\xe0\xa1\xd7\x80\xfb\xbb\x1b\x58\xec\xa0\x63\x17\x96\xa9\x8d\x60\x74\xb8\x88\xa8\x4d\x03\x37\xda\x3b\x43\xa0\x3b\x21\x8b\x82\x46\x1c\x05\xa0\xb6\xff\xda\x3a\x69\x7a\x7a\xed\x22\x4b\xaf\xdf\x10\x4b\x2a\x2e\x75\x71\x1f\xe4\xe6\xee\xf6\xcf\x72\x92\xb0\x6b\xd5\x1b\x39\xb5\x46\x69\xc8\x26\xb7\xee\xe3\xce\xff\xf7\xc3\x38\x1b\x93\xdc\x69\x5f\x11\xb2\xb8\x4f\x27\x21\xe7\x70\x79\xf6\x32\x4b\x49\xb5\x64\xfb\x13\x80\xf7\xf5\x1e\xb1\x34\x18\x18\x53\xa1\x0e\xa8\x99\x36\xc5\x26\xe3\x61\x69\xad\x5d\x50\xdc\xd5\xb5\x7b\x3e\x98\x93\x37\x58\x6a\x52\xd0\x0b\x8f\x2a\x62\x4b\x51\x52\x19\x27\xf2\x87\xd8\x2b\x5d\x2f\x97\x11\x97\xba\xaf\xe6\x21\x7d\x82\xa5\x34\x0d\x46\x61\xb5\xd1\xde\x59\x27\x3b\xd5\x62\x74\x64\x55\x43\x5d\xe4\xf1\x6a\xc7\x19\xbd\x00\x05\xd1\x2e\x60\x54\x3a\x9a\x66\x78\x87\xb8\xff\x95\xcd\x71\xeb\x38\x45\xee\x5b\xca\xe8\xeb\xbe\x9b\x68\x21\xad\x0d\x8f\x92\x7a\x68\x33\x45\x25\x58\x65\x58\x0d\xf0\xa0\xf8\x2f\x8c\x3e\xc8\xef\xcf\x12\x35\xd4\x5e\x2f\x19\x84\xe0\xd7\x87\x3b\xc8\x83\x9a\xe4\x13\x51\xe9\xd6\xe5\x93\xb4\x05\xa2\x56\x99\x9b\xd5\x8f\x13\x72\x0a\xbf\x79\x32\x2b\xc8\xf6\x4f\xf2\x83\xc1\xd7\x28\xda\x6a\xd1\xa3\x0b\x52\xac\x4f\xd9\xb0\x22\x2d\x5f\x57\xd5\x76\xbb\x2d\xf3\x44\x95\x86\xd6\x95\xc5\x0d\x7a\x6a\x31\x72\x65\xc9\x70\x35\xec\x92\x6a\x85\xbb\x8b\x1a\xb5\x74\x11\xb9\x1a\x55\xab\xbd\xda\x78\x32\x4a\x05\x14\xe0\x86\x3a\x6f\x41\xfb\xad\xde\x31\x44\x64\xf2\x1b\x4c\x77\xbb\xfc\x76\x55\x7e\xfd\x5c\x7e\x2d\x2f\xaf\xbe\xa4\x0b\x2d\xd2\xdd\xd1\xaa\x51\xa4\xb7\x63\x4a\xfc\x71\x36\xa5\x56\x3f\x5d\xcd\x9e\x52\xb6\x69\xa3\xb3\x44\xdd\x2a\xa1\x15\x06\x7e\xef\x38\xf1\xac\xf6\x2c\xf8\x25\x59\xc0\x68\x39\x1d\xb6\xef\xeb\xca\x50\x07\x52\x4f\x79\xab\xa5\x69\x7d\x0f\xf2\x19\x5c\xc3\xe3\xd3\xab\x89\xdf\x46\x39\x7e\x81\xdc\xa1\xbf\x10\x5c\x60\xd1\xde\x83\xe9\x77\xcb\x45\x32\xc9\x45\x1b\x69\xdc\x2e\xa6\xd1\x51\xd2\xff\xcb\xd0\xbc\x6d\xe3\x4c\x03\xdc\xb8\x96\xe1\x8f\xfb\x07\x3e\x07\x26\xd8\xf6\x4b\x6a\xf4\x23\xd4\xda\x79\xd6\x35\x42\x1a\x31\x4e\x1b\x28\x2f\xae\x54\xd7\x11\x53\x2e\x2c\xa8\x0b\xb6\x77\xa5\xca\xc4\xf9\x98\x89\x89\xbb\x36\x1d\x5a\x25\x51\xd7\xb5\x33\x07\x2b\xe2\x03\x46\xca\xc7\x2d\x03\x45\x54\xcf\x3f\x7f\xfe\xa6\x4c\x50\xa6\x41\xb3\x1a\xde\xf8\x08\x2a\x5e\x8a\x7f\x02\x00\x00\xff\xff\x3d\xda\xb8\x52\x0a\x08\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x8c\x55\x5f\x6b\x2b\xc7\x0f\x7d\xf7\xa7\x10\xbe\xbf\x40\xf2\x23\x59\xdf\xa4\xb7\x70\x6f\xc0\x94\x36\x29\x25\x2f\x21\xf4\x3e\xf4\x21\x84\x61\x3c\xa3\xf5\x0e\x1e\x8f\x16\x49\x6b\xc7\xbd\xe4\xbb\x97\xd9\x3f\xce\xc6\x89\x4b\x97\x40\xf0\x9c\xb3\x47\x23\xe9\x48\x1b\xc9\xd9\x28\xf0\x63\x02\x60\xeb\x60\x04\x79\x83\x0c\x73\x28\x89\xd7\x56\x4f\xa7\x27\x72\x51\x73\xd8\x58\xc5\xe2\x44\xa6\xe7\xb0\xb1\x5c\xb8\xd8\x88\x22\x9b\x64\xd7\xd8\x9d\xf8\x24\xe6\x6f\x4a\x78\x36\x79\x99\x4c\xd6\xe4\x9b\x88\x30\x5d\x10\xe9\xaa\x59\xe0\xb4\x55\x17\x6a\xd8\x21\x74\xcf\x1c\xa6\x45\x31\xeb\xfe\xf6\xb4\x09\xc0\x58\x19\xe6\xef\x82\x4d\x26\x00\x9f\xe0\xc6\xa6\x44\x0a\x8d\x20\xb8\x9d\x8b\xc1\x81\xc7\x1a\x93\xc7\xe4\x02\x0a\x50\x02\x47\x49\x99\x62\x44\x16\x20\x06\xad\x30\x30\xdc\xde\x7f\x07\x46\x47\xec\xe5\x4d\xb2\x02\xfb\x67\x0e\x8f\x6d\x3d\x8a\x57\xf4\xe9\x2d\xd7\xe0\xb3\x22\x27\x1b\x33\xf7\xb5\x46\xff\xa9\x36\x59\x0a\xd5\xf9\x77\x71\x3b\x29\x08\xe7\xe0\x21\x24\xa8\xad\x5b\xa1\x1a\x8f\x9b\xe0\xb0\x18\xe7\x72\x3d\x6e\x4b\x96\x3a\xf1\xc7\x22\x87\x0f\x82\x5b\x91\xac\x1b\x18\x60\x9c\x73\xe6\xed\xa1\x09\x40\x42\xdd\x12\xaf\xcc\x5a\x9b\x43\xda\x08\x1a\x92\xc1\xe4\x6b\x0a\x49\x65\x4f\x3c\x7a\xff\xe2\xff\x85\x75\x0e\x45\x4c\x6f\x29\x13\xea\xcd\x97\xae\xa9\xdf\x31\xa2\x53\xe8\x01\x78\x68\x35\xe0\xfe\xee\x06\x16\x3b\x68\x24\xa4\x65\x6e\x23\x38\x9b\x2e\x18\xad\xab\xe0\xc6\xc6\xe0\x08\x6c\xa3\xe4\x51\xd1\x69\xa0\x04\x54\xb7\xff\xb6\x41\xab\x96\x5e\x06\x16\x6d\xf5\x2b\x12\xcd\xc5\xa5\x86\xf7\x41\x6e\xee\x6e\xff\x2c\x46\x09\x87\xda\xbc\x91\x33\x6b\xd4\x8a\x7c\x76\xeb\x3e\xee\xfc\x7f\x3f\x5c\xf0\x9c\xe5\x4e\xdb\x8a\x90\xc7\x7d\x3a\x19\x39\x87\xcb\xb3\x97\x69\x4e\xaa\x26\xdf\x9e\x00\xbc\xaf\xf7\x80\xe5\xc1\x40\xce\x85\x3a\xa0\x76\xb4\x31\x36\x1a\x0f\x4f\x6b\x1b\x92\x91\xa6\x2c\xc3\xf3\xc1\x9c\xbc\xc1\x72\x93\x92\x5d\x44\x34\x8c\x35\xb1\xe6\x32\x8e\xe4\x0f\xb1\x57\xba\x5d\x2e\x19\x97\xb6\xad\xe6\x21\x7d\x84\xe5\x34\x1d\xb2\x8a\xd9\xd8\x18\x7c\xd0\x9d\xa9\x91\x03\x79\x53\x51\xc3\x32\x5c\xed\x38\xa3\x15\xa0\xa4\x36\x24\x64\x63\xd9\x55\xfd\x3b\x24\xed\xaf\xce\x1c\xb7\x41\x72\xe4\xb6\xa5\x82\xb1\x6c\xbb\x89\x1e\xf2\xda\x88\xa8\xb9\x87\xbe\xa3\x98\x0c\x9b\x0e\x36\x3d\xdc\x2b\xfe\x0b\xa3\x0d\xf2\xfb\xb3\xb2\x85\x32\xda\xa5\x80\x12\xfc\xfa\x70\x07\xdd\xa0\x66\xf9\x4c\x34\xb6\x0e\xdd\x49\xde\x02\x6c\x4d\xc7\xed\xd4\x8f\x13\xba\x14\x7e\x8b\xe4\x56\xd0\xd9\x3f\xcb\xf7\x06\x5f\xa3\x5a\x6f\xd5\x0e\x2e\xc8\xb1\x3e\x75\x86\x55\xad\xe5\x7a\x36\xdb\x6e\xb7\x45\x37\x51\x85\xa3\xf5\xcc\xe3\x06\x23\xd5\xc8\x32\xf3\xe4\x64\xd6\xef\x92\xd9\x0a\x77\x17\x25\x5a\x6d\x18\x65\x36\xa8\xce\xf6\x6a\xc3\xc9\x20\x95\x50\x41\x2a\x6a\xa2\x07\x1b\xb7\x76\x27\xc0\x28\x14\x37\x98\xef\x76\xf9\xed\xaa\xf8\xfa\xb9\xf8\x5a\x5c\x5e\x7d\xc9\x17\x5a\xe4\xbb\xa3\x37\x83\x48\x6b\xc7\x9c\xf8\xe3\x74\x4c\x9d\xfd\x74\x35\x7d\xca\xd9\xe6\x8d\x2e\xca\xb6\x36\x4a\x2b\x4c\xf2\xde\x71\x1a\xc5\xec\x59\xf0\x4b\xb6\x80\xb3\x7a\xda\x6f\xdf\xd7\x95\x61\x0e\xa4\x9e\xba\xad\x96\xa7\xf5\x3d\x28\x67\x70\x0d\x8f\x4f\xaf\x26\x7e\x1b\xe5\xf8\x05\xba\x0e\xfd\x85\x10\x92\xa8\x8d\x11\x5c\xbb\x5b\x2e\xb2\x49\x2e\x6a\xa6\x61\xbb\xb8\xca\xb2\xe6\xef\x4b\xdf\xbc\x6d\x15\x5c\x05\x52\x85\x5a\xe0\x8f\xfb\x07\x39\x07\x21\xd8\xb6\x4b\x6a\xf0\x23\x94\x36\x44\xb1\x25\x42\x1e\x31\xc9\x1b\xa8\x5b\x5c\xb9\xae\x03\x66\x42\x5a\x50\x93\x7c\xeb\x4a\xd3\x11\xe7\x43\x26\x8e\x77\x75\x3e\xf4\x46\xd9\x96\x65\x70\x07\x2b\xe2\x03\x46\xce\x27\x2c\x13\x31\x9a\xe7\x9f\x3f\x7f\x33\x2e\x19\x57\xa1\x5b\xf5\x6f\x7c\x04\xf5\x73\x98\x94\xad\x5b\x99\xb5\x7d\xce\x53\x6a\x1c\xf1\xfe\x33\xfc\x21\x38\x79\x99\xfc\x13\x00\x00\xff\xff\x2d\xa1\x1a\xdd\x41\x08\x00\x00"),
 		},
 		"/terraform-modules/packet/flatcar-linux/kubernetes/bootstrap-configs.tf": &vfsgen۰CompressedFileInfo{
 			name:             "bootstrap-configs.tf",
@@ -6281,9 +6281,9 @@ var vfsgenAssets = func() http.FileSystem {
 		"/terraform-modules/packet/flatcar-linux/kubernetes/variables.tf": &vfsgen۰CompressedFileInfo{
 			name:             "variables.tf",
 			modTime:          time.Date(1970, 1, 1, 0, 0, 1, 0, time.UTC),
-			uncompressedSize: 6067,
+			uncompressedSize: 6305,
 
-			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\x9c\x58\x6d\x4f\x1c\x39\x12\xfe\x3e\xbf\xa2\xd4\xbb\x12\x20\xcd\x34\x03\x4b\x48\x40\xc9\x49\x09\x64\x15\xb4\x24\xcb\x1d\xe4\x74\xba\xdb\xa8\xe3\xb1\xab\xbb\x7d\xb8\xed\x3e\x97\x7b\x5e\x36\xca\x7f\x3f\xd9\xee\x1e\xe6\xa5\x87\xc0\xe6\x4b\x80\xa9\x7a\xea\xa9\xf7\xf2\xfc\x04\x97\x9f\x6e\xc1\x22\x37\x56\xd0\x60\x30\x65\x56\xb2\x89\x42\x48\xb8\x6a\xc8\xa1\xcd\x34\xab\x30\x81\x6f\x03\x00\xb7\xa8\x11\xda\x7f\x6f\x80\x9c\x95\xba\x18\x00\x08\x24\x6e\x65\xed\xa4\xd1\xf0\x06\x92\xcf\x5a\xfe\xaf\x41\x68\xd5\xc1\xab\xc3\x7e\x6d\xb1\x46\x2d\x50\x80\x33\x20\x34\x65\x7f\x1a\x8d\x07\xc9\xe0\xfb\xaa\xc5\xee\xef\xcf\xb1\xe6\xc9\xff\xdb\x68\x84\x7d\x4c\x8b\x14\x70\xce\xaa\x5a\x61\xca\x4d\xb5\x89\x5e\x5b\xf3\x5f\xe4\x2e\x93\x22\xe2\x6f\x00\xdd\x30\x7e\x8f\x0e\x5a\x29\xb8\xba\x6c\x11\x4f\xc6\x2f\x30\xc7\x33\x3e\xe2\x1c\xcf\x46\x27\xfc\xe5\xd1\xe8\xd5\x4b\x7e\x34\x3a\x3b\x39\xe3\xc7\x67\xe3\xc9\xf1\x4b\xc1\xa3\xa9\x9f\xe0\x93\x11\xb8\x16\x43\x43\x19\xb3\xbc\xfc\x81\x43\x39\x6b\x94\x6b\xff\x9c\xb0\x4a\x9c\x9e\x24\xdb\xfc\x7e\x55\xcc\x71\x66\xe1\xc2\x68\xc7\xa4\x46\x0b\xd7\x52\x37\x73\xf0\xf8\xd2\x21\x77\x8d\x45\x1f\x5c\xa9\xc9\x31\xa5\x60\x3f\x00\x0d\x81\xd9\xea\xf4\x64\x33\x16\x86\x32\x5e\x32\xad\x51\x3d\x87\x1a\x39\xaf\xfd\x0c\x6e\xad\x8d\x55\x5a\xb9\x35\x15\xec\x47\xa4\x21\x4c\xd0\xb1\x21\x30\x55\x97\x6c\x08\x28\x8a\xad\x92\x30\x94\x4d\xd1\x92\x34\xfa\x39\x44\x79\x63\x2d\x6a\xf7\x0c\xa6\xad\x91\xb5\x00\xe6\xc6\x76\xf5\x04\x7b\xc7\x47\x67\x47\xe9\x8b\x74\xbc\x07\x23\x20\x44\x28\x9d\xab\xe9\xfc\xf0\x70\x36\x9b\xa5\x79\x04\x1d\x29\x0f\x95\x1a\x5b\x1c\x5a\x54\xc8\x08\xe9\xf0\x60\x08\x46\xab\x05\x78\x2c\x79\xf3\xaf\xf7\x1b\xee\x71\xa3\x9d\x35\x4a\xa1\xcd\xb8\x69\xb4\xeb\x73\x52\x37\xd5\x04\xed\x96\x93\x47\xdb\xce\x7d\x0a\x92\x60\x72\x78\xc0\x25\xd8\x97\x29\xa6\x50\x31\xdf\x8d\xb4\x19\xdf\x15\x02\xde\xea\xb3\x82\xfc\x4b\x4a\x15\x53\x2a\x9d\xbf\x3a\xed\x89\x74\xdb\x4f\x21\x9a\x9a\x63\x04\xf5\x61\x58\xe1\xb6\x41\x46\xd6\x73\xcc\x22\x48\xd6\xd8\xd5\xd2\x5c\xb2\x18\x00\xf8\x36\x73\x78\x1e\xc2\x39\x9a\x18\xe3\xa4\x2e\xa0\xcb\xab\xd1\xd0\x1a\x36\x53\xb4\xf0\xe1\xee\xee\xe6\x16\x24\x41\xce\xa4\xf2\x72\xa2\x09\x4d\xc2\x60\xd2\x14\x20\x75\x00\x49\x03\xe8\x5d\x29\x09\x6a\xe6\x78\xe9\xe5\xa9\xa9\x6b\x43\x71\x5c\xe5\x72\x0e\xae\x94\x74\x1e\x92\x7e\x7e\x78\x58\x48\x97\x7a\xae\x21\xd5\xe1\x87\x42\xba\x43\x6e\xaa\x4a\x3a\x21\xf3\xfc\x70\x72\x9a\xe7\x78\xfc\x8a\x1d\x07\xe4\x0f\x66\x86\x53\xb4\x43\x70\x25\x42\x53\x93\xb3\xc8\xaa\x80\xca\x99\x86\x99\xb1\xf7\xb1\x46\x66\x25\xea\x20\x13\x59\x13\x5a\xef\x82\x30\x48\xa0\x8d\x03\x8b\x6a\xe1\xfd\x43\xa5\x7c\x94\x79\xc0\xe6\x8d\x9d\x22\xa5\x70\x6b\x60\x86\x40\xa5\x69\x94\x80\x86\x3a\x8c\x65\xed\x45\x30\x82\x99\x74\xa5\x69\xdc\x12\xa4\x05\x18\x02\xd3\x02\x8c\x2b\xd1\xce\x24\x61\x80\xee\x50\x52\xf8\xd5\x58\xd7\x68\xe6\x50\x2d\x86\x40\xd2\x67\x33\x36\x70\xda\xd6\xf9\x46\x07\x68\x74\x4f\xa4\x2d\x5d\xc7\xd9\x8b\x4e\x10\x98\x1f\xc0\x13\x85\x95\x4f\x8e\x2b\x99\x03\xee\xf1\x83\xd2\x95\x83\x92\x11\x4c\x10\x35\xd4\x86\x48\xfa\xa2\x71\x06\x34\x73\x72\xea\xad\x74\x9d\xdb\x15\x83\xac\x58\x81\x04\x8c\xc0\xe4\xb9\xe4\x92\x29\xf8\xfd\x16\x4c\x2c\xd1\x65\xa5\x0c\x03\xf8\xa4\x71\x0f\xd1\x0a\xa3\x33\x85\xbb\x12\x2d\xfa\x6a\xd0\x26\x8e\xd1\x75\x64\x60\x53\x26\x55\x28\xdd\x25\x58\xba\xd2\x27\x6f\x20\x49\x06\xdb\x8d\x71\x6d\x38\x73\xed\xac\x51\x86\x89\x90\xf2\x7a\x8e\xe0\x6b\x19\xa2\x68\x18\x93\x1b\xdd\x91\x33\x2e\x95\x74\x8b\xe7\x6c\xc7\xb6\x17\x3a\xd5\xb0\x7c\xb1\x56\x66\x11\x8c\x76\x2b\x5a\xea\x47\xc6\x92\xe2\x19\x69\x59\xd7\xe8\xa8\xcf\xb2\x92\xe4\xf6\xa3\xf9\x83\x6d\xfb\x17\x4b\xa0\xad\x89\x7b\x61\x74\x2e\x0b\x58\x62\x6f\x0d\x98\xff\x7c\x89\x4b\x35\x0a\x36\x36\x04\x6d\x95\x25\x51\x99\xdd\xe3\xe2\x2f\xd0\xba\xbd\xfd\x00\x75\x33\x51\x92\x83\x07\x08\x39\x6f\x08\x2d\xec\x71\x63\x71\x6f\x23\x1a\x8c\x08\x5d\x26\xa4\xdd\x71\x37\xb8\x32\x8e\x14\x21\x2d\x72\x67\x6c\xe8\x64\x8b\x50\xa0\x46\xcb\x1c\x0a\x08\x08\xd4\x95\xfa\x04\xa1\x56\x8c\xa3\x80\x7d\x1e\x83\x42\x40\xc8\x2d\x3a\x3f\x9e\x77\xa4\x76\x8d\x91\x46\xe7\xc7\x46\x56\xb9\xa6\x9f\x53\xb9\x20\xc9\x99\x82\x4f\x51\x10\x3e\xde\x7d\x4e\xb7\xa1\xdb\xcd\xd2\x0b\x2d\xeb\x8c\x35\xce\x08\xf4\xa7\x85\x34\x3a\xab\xd0\x95\xa6\xff\x74\xfa\x18\x3e\x0a\x41\x58\xaa\x84\x02\x2b\x0d\x39\xb8\xba\x99\x9e\x00\x13\xc2\x22\xd1\x4e\xf7\xb6\xb6\x4b\x2e\x2d\xb9\x51\x6e\x1a\x2d\x36\xef\x38\x23\x32\x2e\x45\x7f\x36\x2e\xae\x2e\xff\x11\x2d\x5a\xa6\x8b\x38\xeb\x89\x64\xa1\xe1\xb7\x66\x82\x56\xa3\x43\x82\xda\x88\x67\x30\x39\x1a\xa7\xc7\xe9\x38\x1d\x1f\x1e\x9d\x6e\x30\xf1\x43\x55\x72\xdc\xc9\xe6\xf5\xeb\xf7\xbf\x5f\x0e\x9e\x44\xa9\x85\xa2\x74\x70\x57\x22\x1c\x85\xb0\xc1\x4c\x2a\xe5\xab\xc5\x62\x18\xdf\x22\xd4\xe9\x7d\x33\xc1\x8c\xd5\x32\x4e\xf4\xb8\x54\x8e\xc6\xae\xdc\xa9\xe0\x4b\x5a\x68\x4a\x07\x9e\xcc\x60\xc5\xed\x1e\x97\xa3\xbb\xbf\xf4\xbb\xdb\x3d\x08\x84\xa9\x98\xd4\x19\x35\x79\x2e\xe7\xbd\x59\xf8\x7b\x83\x56\x62\xec\xab\x28\x1d\x37\x4f\x20\x1b\xf5\x96\x5c\x99\xa6\x19\x5a\x14\x30\x59\x2c\xa9\xc2\x65\xcb\x47\x52\x37\xa4\x52\x65\x7c\x41\xc7\x9b\x3c\x37\x26\x6d\x29\xa7\x34\xe5\xe9\x9a\xcc\x01\x3c\x3d\xb7\x6b\x8a\x1b\xee\xa2\xf6\xff\x67\x16\x6b\x63\xfd\x8d\xd1\x37\x66\x26\xc6\xa8\x6d\xf7\xdf\x07\x4d\x68\xc8\x2f\x09\xbf\x4e\x34\x53\x0b\x27\x39\xc1\x12\xcc\x57\x41\x77\x0a\x10\xec\x5f\x30\x25\xb9\x39\xd8\x1e\x82\x39\x53\x84\xeb\xbc\x2a\xa6\x59\x81\x15\x6a\x17\x0a\x8f\x7a\x33\x70\x2d\xc9\xf9\x43\x30\xd4\x9d\xaf\x40\xf2\xbd\x59\x1a\x2b\xff\x8c\x47\x0d\xe3\x1c\x89\x3c\xbb\x88\xb7\xba\x10\xb6\xe3\xb7\x36\x4e\xd7\xe7\x85\x11\x98\xd5\x56\x4e\x99\xdb\xdd\x08\xc9\x4d\x14\x78\xa0\xe3\xb9\x79\x8b\x5e\x9d\xfc\xec\x8d\xa4\x94\x32\x33\x90\xda\xa1\x1d\xf9\x4f\xc0\x59\xe6\x37\xf7\xd3\xa6\x62\x9b\x30\x56\x14\x16\x8b\xb0\x2d\x7a\xb9\xb4\xd9\xf1\xd6\x57\x1a\xf0\xed\x83\x16\x5c\xb3\x05\x5a\xd8\x6f\x33\x41\x9e\x99\xb3\x0d\xf6\x0c\xe7\x65\xfe\x57\x73\xe6\x65\xd7\x99\xc5\x7e\x0c\xe0\x99\x14\xfd\x19\xbb\xad\x91\xcb\x7c\xd1\x9d\xaf\x25\xb3\x62\xc6\xac\xaf\xbf\x55\xdd\xf8\x90\x68\x6f\x6a\x4a\xe1\x2d\x54\xac\x6e\xf7\x8d\xf7\xe8\x1e\xc3\x05\x53\xb1\xd0\x3b\x7b\x0f\x8b\x7c\xf4\xf3\xcf\xdf\xa4\x16\x38\xff\xbe\x17\x6e\x3d\x2f\x3c\x65\xaa\x09\xf7\x8d\xff\x65\xc5\x0e\x5c\x5d\xa6\xf1\x2d\x1b\xce\xb2\xda\x7f\xa4\x5d\xbc\xc8\x30\x1a\xf4\xcd\xeb\x0f\xc4\x07\x18\x93\xc3\xd7\x0d\x3f\xb3\x36\x2e\x5f\xa1\x0b\x45\x0a\xef\xe3\x83\xea\x1c\x36\x64\xe1\x0d\x7c\x5b\x79\x1a\x8c\xc6\xf0\x06\xfe\x48\x5e\xaf\x4b\xfd\xed\x8f\x04\xbe\x6f\x67\xa1\x62\xf5\xda\xae\x5f\x4d\xc6\xb7\xef\x8f\xa6\xa2\xa3\xb8\x7b\x7c\xdf\x74\x97\x66\x70\x93\xce\x21\x49\x42\x00\x13\x8d\x73\x37\x5a\x9e\x80\x49\x3a\x18\x74\x29\x64\x4b\x0e\xeb\x41\x0d\xc9\xd3\xcb\xb8\xfa\xa6\x42\xd1\x85\x75\x33\x78\x5f\x07\x15\xab\x53\x78\xab\x01\xab\xda\x2d\xda\x8a\x87\x0a\x99\x26\x48\x7c\xec\xb5\x59\x56\xc9\xaa\xa1\x24\x85\xaf\xeb\xdc\xbe\x86\x7c\x0d\x78\x69\x0c\xf9\x81\xbb\x58\xe3\x15\xae\xec\xca\x3f\x7c\x30\x56\x42\x6d\x8c\xda\x23\x10\xe8\x37\x52\x0c\xb5\x77\xb8\x3b\x22\x9f\xba\x48\x36\xbf\xdc\x91\x14\xda\x93\x50\xe5\x99\x3f\x0c\x50\x64\x7e\x97\x29\xec\x0d\x7e\x72\x19\xe5\xe3\xca\x40\x95\x43\xd4\x81\x56\xa7\x3b\xf6\xe3\xe2\xe8\xb2\xd8\xdf\xa0\x7d\x53\xc2\x29\xca\xfc\xc1\x4d\xce\xb2\xfa\xb1\x39\x71\x77\x7d\x0b\xef\x3a\xc1\x90\xc1\xdf\x22\x83\x9e\x83\x6a\xdb\x9a\xbf\xa5\xd0\x3e\x58\xca\x9c\xb9\x47\xfd\xf8\xcc\x0e\x22\x23\x29\x62\x9f\x86\x5f\xe2\x79\xe8\x3f\x44\xc6\xcb\x50\x43\x3d\xe6\xc3\x94\x66\x7a\x71\xd0\x1e\xce\x68\x9d\xcc\x25\x67\x6e\xfd\x4b\x29\x8e\xd6\x51\x36\x65\x4a\x0a\xe9\x16\x59\x8d\x56\x1a\x91\x95\xa6\xd9\xb1\x4b\xfe\xd9\x4a\x7a\xf3\xfe\x79\x15\x36\xc5\x0a\xb6\xaf\xe0\xa8\xfd\xd4\xef\x2e\x5e\xbd\x3c\x1d\xaf\xc7\xc9\xb1\xe2\x07\x41\x61\x05\xc5\x52\xed\x0e\x87\xda\x9a\x9a\x15\xe1\xbe\x76\xa6\xfd\x7e\x23\x76\xd7\x0f\xf6\xd7\xd6\x43\x23\xf9\x18\x56\xa0\x78\xb7\x38\xbf\x36\xf7\xa6\x32\xfe\x3d\x99\x0c\x21\xb9\xb0\xe8\xf1\xdf\x2d\xce\x3f\x6b\x0a\xcd\x2d\x51\x24\x5f\xb6\x37\xa0\x9f\x23\x35\x6a\x91\xed\xd8\x39\x1f\xd9\x7d\xbb\x61\x1f\x1e\x44\x71\x10\x44\x3d\x30\x71\x08\xa8\xd6\x5b\x8b\x64\x1a\x1b\x26\xfc\x47\x59\x94\x2e\x7c\x93\x56\xe0\x10\xaa\x86\x5c\xf7\x56\x0e\x5b\x73\xb2\x00\xa6\x01\xb5\x18\xf9\x07\xcc\x63\x35\xb1\xe9\xb6\x6e\xd4\x46\xb1\xae\x9f\x96\x19\xce\x9d\x65\x59\xae\x76\xa5\xe6\xbd\xff\x1c\xc2\xe7\x50\xfb\x27\x4e\x48\x84\xef\xd5\xd1\x4a\xaf\x8e\x96\x80\xbb\x2a\x76\x67\x5e\xbe\x6c\x76\x2e\xb7\x8b\xda\x65\xfe\x01\xd0\x1d\x06\x8f\x34\xae\xd4\xa3\xee\x81\x5b\xfb\xd7\x49\xd4\x80\x16\x45\x1a\xbd\xab\x81\x9f\x70\x83\xc9\x42\x1b\x8b\xd9\xfc\xc5\xf8\x2c\xe3\x3a\xe3\x25\xf2\xfb\x5e\x2e\x57\x41\x10\x2e\x3e\x41\x90\x09\xbd\xe2\xb5\xd6\x1a\xe8\xb9\x44\xfe\x1f\x00\x00\xff\xff\xbd\xd8\x73\xf2\xb3\x17\x00\x00"),
+			compressedContent: []byte("\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff\xa4\x58\x7b\x4f\x1c\x39\x12\xff\x7f\x3e\x45\x69\x76\x25\x40\xa2\x9b\xc7\x12\x12\x50\x72\x52\x02\x59\x05\x2d\xb0\xdc\x41\x4e\xa7\xbb\x8d\x3a\x1e\xbb\xba\xdb\x37\x6e\xbb\xcf\x76\xcf\x63\xa3\x7c\xf7\x53\xd9\xdd\xc3\x3c\x7a\x08\xdc\xe5\x9f\x00\x53\xfe\xd5\xaf\xde\x55\xf3\x13\x5c\xde\xde\x83\x45\x6e\xac\x70\x83\xc1\x84\x59\xc9\x46\x0a\x61\xc8\x55\xe3\x3c\xda\x4c\xb3\x0a\x87\xf0\x6d\x00\xe0\xe7\x35\x42\xfb\xef\x1d\x38\x6f\xa5\x2e\x06\x00\x02\x1d\xb7\xb2\xf6\xd2\x68\x78\x07\xc3\xcf\x5a\xfe\xa7\x41\x68\x9f\x03\x3d\x87\xdd\xda\x62\x8d\x5a\xa0\x00\x6f\x40\x68\x97\xfd\x69\x34\xee\x0d\x07\xdf\x97\x35\x76\x7f\x7f\x89\x36\x22\xff\x4f\xa3\x11\x76\x31\x2d\x52\xc0\x19\xab\x6a\x85\x29\x37\xd5\x3a\x7a\x6d\xcd\xbf\x91\xfb\x4c\x8a\x88\xbf\x06\x74\xc7\xf8\x18\x3d\xb4\x52\x70\x75\xd9\x22\x9e\x1c\xbe\xc2\x1c\xcf\x78\xc2\x39\x9e\x25\x27\xfc\xf5\x51\xf2\xe6\x35\x3f\x4a\xce\x4e\xce\xf8\xf1\xd9\xe1\xe8\xf8\xb5\xe0\x51\xd5\x4f\x70\x6b\x04\xae\xf8\xd0\xb8\x8c\x59\x5e\xfe\xc0\xa0\x9c\x35\xca\xb7\x7f\x1e\xb2\x4a\x9c\x9e\x0c\x37\xf9\xfd\xaa\x98\xe7\xcc\xc2\x85\xd1\x9e\x49\x8d\x16\xae\xa5\x6e\x66\x40\xf8\xd2\x23\xf7\x8d\x45\x72\xae\xd4\xce\x33\xa5\x60\x37\x00\xed\x03\xb3\xd5\xe9\xc9\xba\x2f\x8c\xcb\x78\xc9\xb4\x46\xf5\x12\x6a\xce\xd3\xeb\x17\x70\x6b\x75\x2c\xd3\xca\xad\xa9\x60\x37\x22\xed\xc3\x08\x3d\xdb\x07\xa6\xea\x92\xed\x03\x8a\x62\x23\x25\x8c\xcb\x26\x68\x9d\x34\xfa\x25\x44\x79\x63\x2d\x6a\xff\x02\xa6\xad\x92\x15\x07\xe6\xc6\x76\xf9\x04\x3b\xc7\x47\x67\x47\xe9\xab\xf4\x70\x07\x12\x70\x88\x50\x7a\x5f\xbb\xf3\x83\x83\xe9\x74\x9a\xe6\x11\x34\x51\x04\x95\x1a\x5b\x1c\x58\x54\xc8\x1c\xba\x83\xbd\x7d\x30\x5a\xcd\x81\xb0\xe4\xdd\x3f\x3e\xae\x99\xc7\x8d\xf6\xd6\x28\x85\x36\xe3\xa6\xd1\xbe\xcf\x48\xdd\x54\x23\xb4\x1b\x46\x1e\x6d\x1a\x77\x1b\x24\xc1\xe4\xf0\x88\xeb\x60\x57\xa6\x98\x42\xc5\xa8\x1a\xdd\xba\x7f\x97\x08\x90\xd6\x17\x39\xf9\x97\xd4\x55\x4c\xa9\x74\xf6\xe6\xb4\xc7\xd3\x6d\x3d\x05\x6f\x6a\x8e\x11\x94\xdc\xb0\xc4\x6d\x8d\x8c\xac\x67\x98\x45\x90\xac\xb1\xcb\xa9\xb9\x60\x31\x00\xa0\x32\xf3\x78\x1e\xdc\x99\x8c\x8c\xf1\x52\x17\xd0\xc5\xd5\x68\x68\x15\x9b\x09\x5a\xf8\xf4\xf0\x70\x77\x0f\xd2\x41\xce\xa4\x22\x39\xd1\x84\x22\x61\x30\x6a\x0a\x90\x3a\x80\xa4\x01\xf4\xa1\x94\x0e\x6a\xe6\x79\x49\xf2\xae\xa9\x6b\xe3\x62\xbb\xca\xe5\x0c\x7c\x29\xdd\x79\x08\xfa\xf9\xc1\x41\x21\x7d\x4a\x5c\x43\xa8\xc3\x0f\x85\xf4\x07\xdc\x54\x95\xf4\x42\xe6\xf9\xc1\xe8\x34\xcf\xf1\xf8\x0d\x3b\x0e\xc8\x9f\xcc\x14\x27\x68\xf7\xc1\x97\x08\x4d\xed\xbc\x45\x56\x05\x54\xce\x34\x4c\x8d\x1d\xc7\x1c\x99\x96\xa8\x83\x4c\x64\xed\xd0\x92\x09\xc2\xa0\x03\x6d\x3c\x58\x54\x73\xb2\x0f\x95\x22\x2f\xf3\x80\xcd\x1b\x3b\x41\x97\xc2\xbd\x81\x29\x82\x2b\x4d\xa3\x04\x34\xae\xc3\x58\xe4\x5e\x04\x73\x30\x95\xbe\x34\x8d\x5f\x80\xb4\x00\xfb\xc0\xb4\x00\xe3\x4b\xb4\x53\xe9\x30\x40\x77\x28\x29\xfc\x6a\xac\x6f\x34\xf3\xa8\xe6\xfb\xe0\x24\x45\x33\x16\x70\xda\xe6\xf9\x5a\x05\x68\xf4\xcf\xa4\x2d\x7d\xc7\x99\x44\x47\x08\x8c\x1a\xf0\x48\x61\x45\xc1\xf1\x25\xf3\xc0\x09\x3f\x3c\xba\xf2\x50\x32\x07\x23\x44\x0d\xb5\x71\x4e\x52\xd2\x78\x03\x9a\x79\x39\x21\x2d\x5d\xe5\x76\xc9\x20\x2b\x56\xa0\x03\xe6\xc0\xe4\xb9\xe4\x92\x29\xf8\xfd\x1e\x4c\x4c\xd1\x45\xa6\xec\x07\xf0\x51\xe3\x1f\xbd\x15\x5a\x67\x0a\x0f\x25\x5a\xa4\x6c\xd0\x26\xb6\xd1\x55\x64\x60\x13\x26\x55\x48\xdd\x05\x58\xba\x54\x27\xef\x60\x38\x1c\x6c\x16\xc6\xb5\xe1\xcc\xb7\xbd\x46\x19\x26\x42\xc8\xeb\x19\x02\xe5\x32\x44\xd1\xd0\x26\xd7\xaa\x23\x67\x5c\x2a\xe9\xe7\x2f\x99\x8e\x6d\x2d\x74\x4f\xc3\xf0\xc5\x5a\x99\x79\x50\xda\x8d\x68\xa9\x9f\x68\x4b\x8a\x67\x4e\xcb\xba\x46\xef\xfa\x34\x2b\xe9\xfc\x6e\x54\xbf\xb7\xa9\xff\x62\x01\xb4\xd1\x71\x2f\x8c\xce\x65\x01\x0b\xec\x8d\x06\xf3\xaf\x2f\x71\xa8\x46\xc1\xc6\x06\xa7\x2d\xb3\x74\xae\xcc\xc6\x38\xff\x1f\x68\xdd\xdf\x7f\x82\xba\x19\x29\xc9\x81\x00\x42\xcc\x1b\x87\x16\x76\xb8\xb1\xb8\xb3\xe6\x0d\xe6\x1c\xfa\x4c\x48\xbb\x65\x6f\xf0\x65\x6c\x29\x42\x5a\xe4\xde\xd8\x50\xc9\x16\xa1\x40\x8d\x96\x79\x14\x10\x10\x5c\x97\xea\x23\x84\x5a\x31\x8e\x02\x76\x79\x74\x8a\x03\x87\xdc\xa2\xa7\xf6\xbc\x25\xb4\x2b\x8c\x34\x7a\x6a\x1b\x59\xe5\x9b\x7e\x4e\xe5\xdc\x49\xce\x14\xdc\x46\x41\xb8\x79\xf8\x9c\x6e\x42\xb7\x93\xa5\x17\x5a\xd6\x19\x6b\xbc\x11\x48\xab\x85\x34\x3a\xab\xd0\x97\xa6\x7f\x75\xba\x09\x1f\x05\x27\x2c\x9e\x84\x04\x2b\x8d\xf3\x70\x75\x37\x39\x01\x26\x84\x45\xe7\xb6\x9a\xb7\x31\x5d\x72\x69\x9d\x4f\x72\xd3\x68\xb1\xbe\xc7\x19\x91\x71\x29\xfa\xa3\x71\x71\x75\xf9\xb7\xa8\xd1\x32\x5d\xc4\x5e\xef\x9c\x2c\x34\xfc\xd6\x8c\xd0\x6a\xf4\xe8\xa0\x36\xe2\x05\x4c\x8e\x0e\xd3\xe3\xf4\x30\x3d\x3c\x38\x3a\x5d\x63\x42\x4d\x55\x72\xdc\xca\xe6\xed\xdb\x8f\xbf\x5f\x0e\x9e\x45\xa9\x85\x72\xe9\xe0\xa1\x44\x38\x0a\x6e\x83\xa9\x54\x8a\xb2\xc5\x62\x68\xdf\x22\xe4\xe9\xb8\x19\x61\xc6\x6a\x19\x3b\x7a\x1c\x2a\x47\x87\xbe\xdc\xfa\x80\x52\x5a\x68\x97\x0e\x88\xcc\x60\xc9\xec\x1e\x93\xa3\xb9\xbf\xf4\x9b\xdb\x1d\x04\xc2\x54\x4c\xea\xcc\x35\x79\x2e\x67\xbd\x51\xf8\x6b\x83\x56\x62\xac\xab\x28\x1d\x27\x4f\x20\x1b\xdf\x2d\xb8\x32\xed\xa6\x68\x51\xc0\x68\xbe\xa0\x0a\x97\x2d\x1f\xe9\xba\x26\x95\x2a\x43\x09\x1d\x77\xf2\xdc\x98\xb4\xa5\x9c\xba\x09\x4f\x57\x64\xf6\xe0\xf9\xb1\x5d\x79\xb8\x66\x2e\x6a\xfa\x3f\xb3\x58\x1b\x4b\x3b\x46\x5f\x9b\x19\x19\xa3\x36\xcd\xff\x18\x5e\x42\xe3\x68\x48\xd0\x38\xd1\x4c\xcd\xbd\xe4\x0e\x16\x60\x94\x05\xdd\x2a\xe0\x60\xf7\x82\x29\xc9\xcd\xde\x66\x13\xcc\x99\x72\xb8\xca\xab\x62\x9a\x15\x58\xa1\xf6\x21\xf1\x5c\x6f\x04\xae\xa5\xf3\xb4\x08\x86\xbc\xa3\x0c\x74\x54\x9b\xa5\xb1\xf2\xcf\xb8\xd4\x30\xce\xd1\x39\x62\x17\xf1\x96\x07\xc2\xa6\xff\x56\xda\xe9\x6a\xbf\x30\x02\xb3\xda\xca\x09\xf3\xdb\x0b\x61\x78\x17\x05\x1e\xe9\x10\x37\xd2\x48\xcf\x1d\xf5\xde\x48\x4a\x29\x33\x05\xa9\x3d\xda\x84\x3e\x01\x6f\x19\x4d\xee\xe7\x75\xc5\x36\x60\xac\x28\x2c\x16\x61\x5a\xf4\x72\x69\xa3\x43\xda\x97\x0a\xf0\xfd\xe3\x2b\xb8\x66\x73\xb4\xb0\xdb\x46\xc2\x11\x33\x6f\x1b\xec\x69\xce\x8b\xf8\x2f\xc7\x8c\x64\x57\x99\xc5\x7a\x0c\xe0\x99\x14\xfd\x11\xbb\xaf\x91\xcb\x7c\xde\xad\xaf\x25\xb3\x62\xca\x2c\xe5\xdf\xf2\xdb\x78\x48\xb4\x3b\xb5\x4b\xe1\x3d\x54\xac\x6e\xe7\x0d\x59\x34\xc6\xb0\xc1\x54\x2c\xd4\xce\xce\xe3\x20\x4f\x7e\xfe\xf9\x9b\xd4\x02\x67\xdf\x77\xc2\xae\x47\xc2\x13\xa6\x9a\xb0\xdf\xd0\x2f\x4b\x7a\xe0\xea\x32\x8d\xb7\x6c\x58\xcb\x6a\xfa\x48\xfb\xb8\x91\x61\x54\x48\xc5\x4b\x0b\xe2\x23\x8c\xc9\xe1\xeb\x9a\x9d\x59\xeb\x97\xaf\xd0\xb9\x22\x85\x8f\xf1\xa0\x3a\x87\x35\x59\x78\x07\xdf\x96\x4e\x83\xe4\x10\xde\xc1\x1f\xc3\xb7\xab\x52\x7f\xf9\x63\x08\xdf\x37\xa3\x50\xb1\x7a\x65\xd6\x2f\x07\xe3\xdb\xf7\x27\x43\xd1\x51\xdc\xde\xbe\xef\xba\x4d\x33\x98\xe9\xce\x61\x38\x0c\x0e\x1c\x6a\x9c\xf9\x64\xb1\x02\x0e\xd3\xc1\xa0\x0b\x21\x5b\x70\x58\x75\x6a\x08\x9e\x5e\xf8\x95\x8a\x0a\x45\xe7\xd6\x75\xe7\x7d\x1d\x54\xac\x4e\xe1\xbd\x06\xac\x6a\x3f\x6f\x33\x1e\x2a\x64\xda\xc1\x90\x7c\xaf\xcd\x22\x4b\x96\x15\x0d\x53\xf8\xba\xca\xed\x6b\x88\xd7\x80\x97\xc6\x38\x6a\xb8\xf3\x15\x5e\x61\xcb\xae\xe8\xf0\xc1\x98\x09\xb5\x31\x6a\xc7\x81\x40\x9a\x48\xd1\xd5\x64\x70\xb7\x44\x3e\x77\x90\xac\x7f\xb9\x23\x5d\x28\x4f\x87\x2a\xcf\x68\x31\x40\x91\xd1\x2c\x53\xd8\xeb\xfc\xe1\x65\x94\x8f\x23\x03\x55\x0e\xf1\x0d\xb4\x6f\xba\x65\x3f\x0e\x8e\x2e\x8a\xfd\x05\xda\xd7\x25\xbc\x72\x19\x2d\xdc\xce\x5b\x56\x3f\xd5\x27\x1e\xae\xef\xe1\x43\x27\x18\x22\xf8\x5b\x64\xd0\xb3\x50\x6d\x6a\xa3\x5d\x0a\xed\xa3\xa6\xcc\x9b\x31\xea\xa7\x7b\x76\x10\x49\xa4\x88\x75\x1a\x7e\x89\xeb\x21\x7d\x88\x8c\x97\x21\x87\x7a\xd4\x87\x2e\xcd\xf4\x7c\xaf\x5d\x9c\xd1\x7a\x99\x4b\xce\xfc\xea\x97\x52\x1c\xad\x77\xd9\x84\x29\x29\xa4\x9f\x67\x35\x5a\x69\x44\x56\x9a\x66\xcb\x2c\xf9\x7b\x2b\x49\xea\xe9\xbc\x0a\x93\x62\x09\x9b\x32\x38\xbe\x7e\xee\x77\x17\x6f\x5e\x9f\x1e\xae\xfa\xc9\xb3\xe2\x07\x4e\x61\x85\x8b\xa9\xda\x2d\x0e\xb5\x35\x35\x2b\xc2\x7e\xed\x4d\xfb\xfd\x46\xac\xae\x1f\xcc\xaf\x8d\x43\x63\x78\x13\x46\xa0\xf8\x30\x3f\xbf\x36\x63\x53\x19\xba\x27\x87\xfb\x30\xbc\xb0\x48\xf8\x1f\xe6\xe7\x9f\xb5\x0b\xc5\x2d\x51\x0c\xbf\x6c\x4e\x40\xea\x23\x35\x6a\x91\x6d\x99\x39\x37\x6c\xdc\x4e\xd8\xc7\x83\x28\x36\x82\xf8\x0e\x4c\x6c\x02\xaa\xb5\xd6\xa2\x33\x8d\x0d\x1d\xfe\x46\x16\xa5\x0f\xdf\xa4\x15\xb8\x0f\x55\xe3\x7c\x77\x2b\x87\xa9\x39\x9a\x03\xd3\x80\x5a\x24\x74\xc0\x3c\x95\x13\xeb\x66\xeb\x46\xad\x25\xeb\xea\x6a\x99\xe1\xcc\x5b\x96\xe5\x6a\x5b\x68\x3e\xd2\xe7\x10\x3e\x87\x9a\x4e\x9c\x10\x08\xaa\xd5\x64\xa9\x56\x93\x05\xe0\xb6\x8c\xdd\x1a\x97\x2f\xeb\x95\xcb\xed\xbc\xf6\x19\x1d\x00\xdd\x62\xf0\x44\xe1\x4a\x9d\x74\x07\x6e\x4d\xd7\x49\x7c\x01\x2d\x8a\x34\x7a\x5b\x01\x3f\x63\x07\x93\x85\x36\x16\xb3\xd9\xab\xc3\xb3\x8c\xeb\x8c\x97\xc8\xc7\xbd\x5c\xae\x82\x20\x5c\xdc\x42\x90\x09\xb5\x42\xaf\x56\x0a\xe8\xff\x20\xc2\x8d\xd6\xde\x32\x3e\xce\x2a\x36\xa3\x52\xce\x68\x87\xee\xa5\x92\x24\x0b\xe1\xa4\x62\xb3\xa4\x46\x9b\x90\x70\x3b\xbf\xbb\xdb\x22\xa9\xad\x99\xcd\x53\xb8\x61\x33\x59\x35\x55\x5b\xc2\x94\x94\xb7\xef\x1f\x28\x7f\x75\x3c\x08\xdb\xb5\x88\xf1\x31\xd4\x74\xde\xdf\x7d\x0e\xeb\x3b\xec\x1e\x86\x2f\x36\x90\x4d\xb0\x4d\xe9\x4a\x7a\x60\x2e\x91\x2e\x34\xb4\xe8\x3a\x58\xe2\x22\xf5\xde\x53\xc7\xe9\x7f\x03\x00\x00\xff\xff\xf2\x3f\xa6\x0b\xa1\x18\x00\x00"),
 		},
 		"/terraform-modules/packet/flatcar-linux/kubernetes/versions.tf": &vfsgen۰CompressedFileInfo{
 			name:             "versions.tf",
diff --git a/pkg/platform/aws/aws.go b/pkg/platform/aws/aws.go
index cfc97c496..cff9319f9 100644
--- a/pkg/platform/aws/aws.go
+++ b/pkg/platform/aws/aws.go
@@ -85,6 +85,7 @@ type config struct {
 	EnableTLSBootstrap       bool              `hcl:"enable_tls_bootstrap,optional"`
 	EncryptPodTraffic        bool              `hcl:"encrypt_pod_traffic,optional"`
 	IgnoreX509CNCheck        bool              `hcl:"ignore_x509_cn_check,optional"`
+	ConntrackMaxPerCore      int               `hcl:"conntrack_max_per_core,optional"`
 	KubeAPIServerExtraFlags  []string
 }
 
@@ -107,10 +108,11 @@ func (c *config) LoadConfig(configBody *hcl.Body, evalContext *hcl.EvalContext)
 
 func NewConfig() *config {
 	return &config{
-		Region:             "eu-central-1",
-		EnableAggregation:  true,
-		EnableTLSBootstrap: true,
-		NetworkMTU:         platform.NetworkMTU,
+		Region:              "eu-central-1",
+		EnableAggregation:   true,
+		EnableTLSBootstrap:  true,
+		NetworkMTU:          platform.NetworkMTU,
+		ConntrackMaxPerCore: platform.ConntrackMaxPerCore,
 	}
 }
 
diff --git a/pkg/platform/aws/template.go b/pkg/platform/aws/template.go
index 36c58b5f8..fd8168a12 100644
--- a/pkg/platform/aws/template.go
+++ b/pkg/platform/aws/template.go
@@ -104,6 +104,8 @@ module "aws-{{.Config.ClusterName}}" {
 
   ignore_x509_cn_check = {{.Config.IgnoreX509CNCheck}}
 
+  conntrack_max_per_core = {{.Config.ConntrackMaxPerCore}}
+
   worker_bootstrap_tokens = [
     {{- range $index, $pool := .Config.WorkerPools }}
     module.worker-pool-{{ $index }}.worker_bootstrap_token,
diff --git a/pkg/platform/baremetal/baremetal.go b/pkg/platform/baremetal/baremetal.go
index 3c519940b..423d2b037 100644
--- a/pkg/platform/baremetal/baremetal.go
+++ b/pkg/platform/baremetal/baremetal.go
@@ -57,6 +57,7 @@ type config struct {
 	EnableTLSBootstrap       bool              `hcl:"enable_tls_bootstrap,optional"`
 	EncryptPodTraffic        bool              `hcl:"encrypt_pod_traffic,optional"`
 	IgnoreX509CNCheck        bool              `hcl:"ignore_x509_cn_check,optional"`
+	ConntrackMaxPerCore      int               `hcl:"conntrack_max_per_core,optional"`
 	KubeAPIServerExtraFlags  []string
 }
 
@@ -87,11 +88,12 @@ func (c *config) Meta() platform.Meta {
 
 func NewConfig() *config {
 	return &config{
-		CachedInstall:      "false",
-		OSChannel:          "flatcar-stable",
-		OSVersion:          "current",
-		EnableTLSBootstrap: true,
-		NetworkMTU:         platform.NetworkMTU,
+		CachedInstall:       "false",
+		OSChannel:           "flatcar-stable",
+		OSVersion:           "current",
+		EnableTLSBootstrap:  true,
+		NetworkMTU:          platform.NetworkMTU,
+		ConntrackMaxPerCore: platform.ConntrackMaxPerCore,
 	}
 }
 
@@ -238,6 +240,7 @@ func createTerraformConfigFile(cfg *config, terraformPath string) error {
 		EnableTLSBootstrap       bool
 		EncryptPodTraffic        bool
 		IgnoreX509CNCheck        bool
+		ConntrackMaxPerCore      int
 	}{
 		CachedInstall:            cfg.CachedInstall,
 		ClusterName:              cfg.ClusterName,
@@ -263,6 +266,7 @@ func createTerraformConfigFile(cfg *config, terraformPath string) error {
 		EnableTLSBootstrap:       cfg.EnableTLSBootstrap,
 		EncryptPodTraffic:        cfg.EncryptPodTraffic,
 		IgnoreX509CNCheck:        cfg.IgnoreX509CNCheck,
+		ConntrackMaxPerCore:      cfg.ConntrackMaxPerCore,
 	}
 
 	if err := t.Execute(f, terraformCfg); err != nil {
diff --git a/pkg/platform/baremetal/template.go b/pkg/platform/baremetal/template.go
index 09239e9c5..a6d573278 100644
--- a/pkg/platform/baremetal/template.go
+++ b/pkg/platform/baremetal/template.go
@@ -68,7 +68,8 @@ module "bare-metal-{{.ClusterName}}" {
   }
   {{- end}}
 
-  ignore_x509_cn_check = {{.IgnoreX509CNCheck}}
+  ignore_x509_cn_check   = {{.IgnoreX509CNCheck}}
+  conntrack_max_per_core = {{.ConntrackMaxPerCore}}
 }
 
 terraform {
diff --git a/pkg/platform/packet/packet.go b/pkg/platform/packet/packet.go
index 9a93d743b..c4ceaf757 100644
--- a/pkg/platform/packet/packet.go
+++ b/pkg/platform/packet/packet.go
@@ -98,6 +98,8 @@ type config struct {
 	EncryptPodTraffic        bool              `hcl:"encrypt_pod_traffic,optional"`
 	IgnoreX509CNCheck        bool              `hcl:"ignore_x509_cn_check,optional"`
 	WorkerPools              []workerPool      `hcl:"worker_pool,block"`
+	ConntrackMaxPerCore      int               `hcl:"conntrack_max_per_core,optional"`
+
 	// Not exposed to the user
 	KubeAPIServerExtraFlags []string
 	NodesDependOn           []string
@@ -122,9 +124,10 @@ func (c *config) LoadConfig(configBody *hcl.Body, evalContext *hcl.EvalContext)
 
 func NewConfig() *config {
 	return &config{
-		EnableAggregation:  true,
-		EnableTLSBootstrap: true,
-		NetworkMTU:         platform.NetworkMTU,
+		EnableAggregation:   true,
+		EnableTLSBootstrap:  true,
+		NetworkMTU:          platform.NetworkMTU,
+		ConntrackMaxPerCore: platform.ConntrackMaxPerCore,
 	}
 }
 
diff --git a/pkg/platform/packet/template.go b/pkg/platform/packet/template.go
index a1ec8de70..c3c0ff5ba 100644
--- a/pkg/platform/packet/template.go
+++ b/pkg/platform/packet/template.go
@@ -119,6 +119,8 @@ EOF
 
   ignore_x509_cn_check = {{.Config.IgnoreX509CNCheck}}
 
+  conntrack_max_per_core = {{.Config.ConntrackMaxPerCore}}
+
   worker_bootstrap_tokens = [
     {{- range $index, $pool := .Config.WorkerPools }}
     module.worker-{{$pool.Name}}.worker_bootstrap_token,
diff --git a/pkg/platform/platform.go b/pkg/platform/platform.go
index bd26756c3..50e45753c 100644
--- a/pkg/platform/platform.go
+++ b/pkg/platform/platform.go
@@ -27,8 +27,13 @@ import (
 	"github.com/kinvolk/lokomotive/pkg/version"
 )
 
-// NetworkMTU is the default host network MTU.
-const NetworkMTU = 1500
+const (
+	// NetworkMTU is the default host network MTU.
+	NetworkMTU = 1500
+
+	// ConntrackMaxPerCore is a default conntrack table size per core inherited from upstream kube-proxy.
+	ConntrackMaxPerCore = 32768
+)
 
 // CommonControlPlaneCharts returns a list of control plane Helm charts to be deployed for all
 // platforms.
diff --git a/test/system/clc_snippets_test.go b/test/system/clc_snippets_test.go
index 165f63c58..8eea9b2d2 100644
--- a/test/system/clc_snippets_test.go
+++ b/test/system/clc_snippets_test.go
@@ -15,6 +15,7 @@
 // +build aws aws_edge packet
 // +build e2e
 
+//nolint:dupl
 package system_test
 
 import (
diff --git a/test/system/conntrack_clc_test.go b/test/system/conntrack_clc_test.go
new file mode 100644
index 000000000..6b1759cb5
--- /dev/null
+++ b/test/system/conntrack_clc_test.go
@@ -0,0 +1,151 @@
+// Copyright 2020 The Lokomotive Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build aws
+// +build e2e
+
+//nolint:dupl
+package system_test
+
+import (
+	"context"
+	"fmt"
+	"testing"
+	"time"
+
+	appsv1 "k8s.io/api/apps/v1"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"sigs.k8s.io/yaml"
+
+	testutil "github.com/kinvolk/lokomotive/test/components/util"
+)
+
+// expectedConntrackMaxCLC is an expected value returned by
+// net.netfilter.nf_conntrack_max on nodes with 'conntrack-modified: true' label set.
+//
+// 50000 is arbitrary number close to 32768*2CPU on AWS machine type we're testing.
+// It's good if this value is not divisible by 32768 which is a default value in kube-proxy,
+// so it is easy to distinguish.
+const expectedConntrackMaxCLC = 50000
+
+// Define manifest as YAML and then unmarshal it to a Go struct so that it is easier to
+// write and debug, as it can be copy-pasted to a file and applied manually.
+const conntrackMaxCLCDSManifest = `apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  generateName: test-conntrack-
+spec:
+  selector:
+    matchLabels:
+      name: test-conntrack
+  template:
+    metadata:
+      labels:
+        name: test-conntrack
+    spec:
+      tolerations:
+      - key: node-role.kubernetes.io/master
+        effect: NoSchedule
+      terminationGracePeriodSeconds: 1
+      containers:
+      - name: test-conntrack
+        image: ubuntu
+        command: ["bash"]
+`
+
+func Test_CLC_snippet_with_conntrack_setting_is_respected(t *testing.T) {
+	t.Parallel()
+
+	namespace := "kube-system"
+
+	client := testutil.CreateKubeClient(t)
+
+	ds := &appsv1.DaemonSet{}
+	if err := yaml.Unmarshal([]byte(conntrackMaxCLCDSManifest), ds); err != nil {
+		t.Fatalf("failed unmarshaling manifest: %v", err)
+	}
+
+	// Set the right arguments from the manifest with the correct fileName
+	ds.Spec.Template.Spec.Containers[0].Args = []string{
+		"-c",
+		fmt.Sprintf("test %d -eq $(sysctl net.netfilter.nf_conntrack_max | cut -d' ' -f3) && exec tail -f /dev/null",
+			expectedConntrackMaxCLC),
+	}
+	ds.Spec.Template.Spec.NodeSelector = map[string]string{"conntrack-modified": "true"}
+
+	ds, err := client.AppsV1().DaemonSets(namespace).Create(context.TODO(), ds, metav1.CreateOptions{})
+	if err != nil {
+		t.Fatalf("failed to create DaemonSet: %v", err)
+	}
+
+	testutil.WaitForDaemonSet(t, client, namespace, ds.ObjectMeta.Name, time.Second*5, time.Minute*5)
+
+	t.Cleanup(func() {
+		if err := client.AppsV1().DaemonSets(namespace).Delete(
+			context.TODO(), ds.ObjectMeta.Name, metav1.DeleteOptions{}); err != nil {
+			t.Logf("failed to remove DaemonSet: %v", err)
+		}
+	})
+}
+
+func Test_Nodes_without_CLC_snippet_retain_default_conntrack_max(t *testing.T) {
+	t.Parallel()
+
+	namespace := "kube-system"
+
+	client := testutil.CreateKubeClient(t)
+
+	ds := &appsv1.DaemonSet{}
+	if err := yaml.Unmarshal([]byte(conntrackMaxCLCDSManifest), ds); err != nil {
+		t.Fatalf("failed unmarshaling manifest: %v", err)
+	}
+
+	// Set the right arguments from the manifest with the correct fileName
+	ds.Spec.Template.Spec.Containers[0].Args = []string{
+		"-c",
+		fmt.Sprintf("test %d -ne $(sysctl net.netfilter.nf_conntrack_max | cut -d' ' -f3) && exec tail -f /dev/null",
+			expectedConntrackMaxCLC),
+	}
+	ds.Spec.Template.Spec.Affinity = &corev1.Affinity{
+		NodeAffinity: &corev1.NodeAffinity{
+			RequiredDuringSchedulingIgnoredDuringExecution: &corev1.NodeSelector{
+				NodeSelectorTerms: []corev1.NodeSelectorTerm{
+					{
+						MatchExpressions: []corev1.NodeSelectorRequirement{
+							{
+								Key:      "conntrack-modified",
+								Operator: corev1.NodeSelectorOpDoesNotExist,
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	ds, err := client.AppsV1().DaemonSets(namespace).Create(context.TODO(), ds, metav1.CreateOptions{})
+	if err != nil {
+		t.Fatalf("failed to create DaemonSet: %v", err)
+	}
+
+	testutil.WaitForDaemonSet(t, client, namespace, ds.ObjectMeta.Name, time.Second*5, time.Minute*5)
+
+	t.Cleanup(func() {
+		if err := client.AppsV1().DaemonSets(namespace).Delete(
+			context.TODO(), ds.ObjectMeta.Name, metav1.DeleteOptions{}); err != nil {
+			t.Logf("failed to remove DaemonSet: %v", err)
+		}
+	})
+}
diff --git a/test/system/conntrack_global_test.go b/test/system/conntrack_global_test.go
new file mode 100644
index 000000000..bcc40e9a2
--- /dev/null
+++ b/test/system/conntrack_global_test.go
@@ -0,0 +1,98 @@
+// Copyright 2020 The Lokomotive Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build packet,baremetal
+// +build e2e
+
+//nolint:dupl
+package system_test
+
+import (
+	"context"
+	"fmt"
+	"testing"
+	"time"
+
+	appsv1 "k8s.io/api/apps/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"sigs.k8s.io/yaml"
+
+	testutil "github.com/kinvolk/lokomotive/test/components/util"
+)
+
+// expectedConntrackMaxGlobal is an expected value returned by
+// net.netfilter.nf_conntrack_max on nodes with 'conntrack-modified: true' label set.
+//
+// 65000 is arbitrary number which is not divisible by 32768 which is a default value in kube-proxy,
+// so it is easy to distinguish.
+const expectedConntrackMaxGlobal = 65000
+
+// Define manifest as YAML and then unmarshal it to a Go struct so that it is easier to
+// write and debug, as it can be copy-pasted to a file and applied manually.
+const conntrackMaxGlobalDSManifest = `apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  generateName: test-conntrack-
+spec:
+  selector:
+    matchLabels:
+      name: test-conntrack
+  template:
+    metadata:
+      labels:
+        name: test-conntrack
+    spec:
+      tolerations:
+      - key: node-role.kubernetes.io/master
+        effect: NoSchedule
+      terminationGracePeriodSeconds: 1
+      containers:
+      - name: test-conntrack
+        image: ubuntu
+        command: ["bash"]
+`
+
+func Test_Global_conntrack_setting_is_respected_on_all_nodes(t *testing.T) {
+	t.Parallel()
+
+	namespace := "kube-system"
+
+	client := testutil.CreateKubeClient(t)
+
+	ds := &appsv1.DaemonSet{}
+	if err := yaml.Unmarshal([]byte(conntrackMaxGlobalDSManifest), ds); err != nil {
+		t.Fatalf("failed unmarshaling manifest: %v", err)
+	}
+
+	// Set the right arguments from the manifest with the correct fileName
+	ds.Spec.Template.Spec.Containers[0].Args = []string{
+		"-c",
+		fmt.Sprintf("test %d -eq $(sysctl net.netfilter.nf_conntrack_max | cut -d' ' -f3) && exec tail -f /dev/null",
+			expectedConntrackMaxGlobal),
+	}
+
+	ds, err := client.AppsV1().DaemonSets(namespace).Create(context.TODO(), ds, metav1.CreateOptions{})
+	if err != nil {
+		t.Fatalf("failed to create DaemonSet: %v", err)
+	}
+
+	testutil.WaitForDaemonSet(t, client, namespace, ds.ObjectMeta.Name, time.Second*5, time.Minute*5)
+
+	t.Cleanup(func() {
+		if err := client.AppsV1().DaemonSets(namespace).Delete(
+			context.TODO(), ds.ObjectMeta.Name, metav1.DeleteOptions{}); err != nil {
+			t.Logf("failed to remove DaemonSet: %v", err)
+		}
+	})
+}