controller:
  kind: DaemonSet
  unprivileged: true
  allowPrivilegedPorts: true