kaitoy / ansible-k8s Public

Notifications You must be signed in to change notification settings
Fork 5
Star 5

Ansible Playbook to setup Kubernetes Cluster

5 stars 5 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 157 Commits
group_vars		group_vars
host_vars		host_vars
roles		roles
.gitignore		.gitignore
.yamllint		.yamllint
LICENSE		LICENSE
README.md		README.md
extra_vars.yml		extra_vars.yml
join_to_cluster.yml		join_to_cluster.yml
k8s_2_masters_dev.yml		k8s_2_masters_dev.yml
k8s_2_nodes_cluster.yml		k8s_2_nodes_cluster.yml
k8s_master.yml		k8s_master.yml
k8s_master_dev.yml		k8s_master_dev.yml
k8s_single_node_cluster.yml		k8s_single_node_cluster.yml
play.sh		play.sh
production		production
production_2nodes		production_2nodes

Repository files navigation

Ansible Playbook to setup Kubernetes Cluster

Prerequisites for Ansible Controller

Ansible 2.5.x installed
Python package "netaddr" is installed
Git installed

Kubernetes Cluster to setup

Kubernetes: v1.30.2
- Single node cluster
- kubelet,kube-proxy, kube-apiserver, kube-controller-manager, kube-scheduler, and etcd are managed by systemd (i.e. not containerized)
  - kubelet and kube-proxy run as root, and the rest run as non-root
- Communication between k8s components is encrypted by TLS
- Authentication by x509 client certificates
- TLS Bootstrapping
  - Bootstrap token
  - Auto approval for CSRs
- Certificate Rotation is enabled
- etcd 3.5.14
- Calico 3.28.0
- CoreDNS 1.11.1
- Service cluster IP range: 10.0.0.0/16
- Cluster CIDR: 10.32.0.0/16
- Proxy mode: ipvs
- Using KubeletConfiguration, KubeProxyConfiguration, and KubeSchedulerConfiguration
Tools
- Helm 3.15.2

How to use

$ su -
# git clone https://github.com/kaitoy/ansible-k8s.git
# cd ansible-k8s
# sh play.sh

About

Ansible Playbook to setup Kubernetes Cluster

kubernetes ansible ansible-playbook kubernetes-cluster kubernetes-setup

Report repository

Releases

Packages

No packages published

Languages