Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • v2.27.0
  • v2.25.1
  • v2.24.3
  • v2.26.0
  • v2.24.2
  • v2.25.0
  • v2.24.1
  • v2.22.2
  • v2.23.3
  • v2.24.0
  • v2.23.2
  • v2.23.1
  • v2.23.0
  • v2.22.1
  • v2.22.0
  • v2.21.0
  • v2.20.0
  • v2.19.1
  • v2.18.2
  • v2.19.0
21 results

kubespray

  • Clone with SSH
  • Clone with HTTPS
    • user avatar
    Initial commit
    Smaine Kahlouch authored
    00c56282
    History
    user avatar 00c56282
    History
    Name Last commit Last update
    environments
    library
    roles
    README.md
    cluster.yml
    README.md

    This playbook deploys a whole kubernetes cluster, configures network overlay and some addons.

    Download necessary binaries

    Note: a variable 'local_release_dir' defines where the binaries will be downloaded. Ensure you've enough disk space

    Kubernetes

    Kubernetes services are configured with the nodePort type. eg: each node opoens the same tcp port and forwards the traffic to the target pod wherever it is located.

    master :

    • apiserver : Currently the apiserver listen on both secure and unsecure ports todo, secure everything. Calico especially
    • scheduler :
    • controller :
    • proxy node :
    • kubelet : kubelet is configured to call calico whenever a pod is created/destroyed
    • proxy configures all the forwarding rules

    Overlay network

    You can choose between 2 network overlays. Only one must be chosen. flannel: gre/vxlan (layer 2) networking calico: bgp (layer 3) networking.

    Loadbalancer

    The machine where ansible is ran must be allowed to access to the master ip on port 8080 (kubernetes api). Indeed it gathered the services definition in order to know which NodePort is configured.