configurations of hq services
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。

cluster.yml 3.3KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105
  1. nodes:
  2. - address: k8s-1.hq.c3d2.de
  3. user: ubuntu
  4. role:
  5. - controlplane
  6. - etcd
  7. - address: k8s-2.hq.c3d2.de
  8. user: ubuntu
  9. role:
  10. - controlplane
  11. - etcd
  12. - worker
  13. - address: k8s-3.hq.c3d2.de
  14. user: ubuntu
  15. role:
  16. - controlplane
  17. - etcd
  18. - worker
  19. ssh_agent_auth: true
  20. cluster_name: chaoscluster
  21. kubernetes_version: v1.13.5-rancher1-2
  22. services:
  23. etcd:
  24. kube-api:
  25. # IP range for any services created on Kubernetes
  26. # This must match the service_cluster_ip_range in kube-controller
  27. service_cluster_ip_range: 10.43.0.0/16
  28. # Expose a different port range for NodePort services
  29. service_node_port_range: 30000-32767
  30. pod_security_policy: false
  31. # Add additional arguments to the kubernetes API server
  32. # This WILL OVERRIDE any existing defaults
  33. #extra_args:
  34. # # Enable audit log to stdout
  35. # audit-log-path: "-"
  36. # Note for Rancher 2 users: If you are configuring Cluster Options using a Config File when creating Rancher Launched Kubernetes, the names of services should contain underscores only: `kube_controller`. This only applies to Rancher v2.0.5 and v2.0.6.
  37. kube-controller:
  38. # CIDR pool used to assign IP addresses to pods in the cluster
  39. cluster_cidr: 10.42.0.0/16
  40. # IP range for any services created on Kubernetes
  41. # This must match the service_cluster_ip_range in kube-api
  42. service_cluster_ip_range: 10.43.0.0/16
  43. kubelet:
  44. # Base domain for the cluster
  45. cluster_domain: k8s.hq.c3d2.de
  46. # IP address for the DNS service endpoint
  47. cluster_dns_server: 10.43.0.10
  48. # Fail if swap is on
  49. fail_swap_on: false
  50. # Set max pods to 250 instead of default 110
  51. extra_args:
  52. max-pods: 250
  53. # Optionally define additional volume binds to a service
  54. #extra_binds:
  55. # - "/usr/libexec/kubernetes/kubelet-plugins:/usr/libexec/kubernetes/kubelet-plugins"
  56. # Currently, only authentication strategy supported is x509.
  57. # You can optionally create additional SANs (hostnames or IPs) to add to
  58. # the API server PKI certificate.
  59. # This is useful if you want to use a load balancer for the control plane servers.
  60. authentication:
  61. strategy: x509
  62. sans:
  63. - "k8s.hq.c3d2.de"
  64. - "172.22.99.13"
  65. - "172.22.99.15"
  66. - "172.22.99.16"
  67. # Kubernetes Authorization mode
  68. # Use `mode: rbac` to enable RBAC
  69. # Use `mode: none` to disable authorization
  70. authorization:
  71. mode: none
  72. # Add-ons are deployed using kubernetes jobs. RKE will give up on trying to get the job status after this timeout in seconds..
  73. addon_job_timeout: 30
  74. # Currently only nginx ingress provider is supported.
  75. # To disable ingress controller, set `provider: none`
  76. ingress:
  77. provider: nginx
  78. # All add-on manifests MUST specify a namespace
  79. addons: |-
  80. ---
  81. apiVersion: v1
  82. kind: Pod
  83. metadata:
  84. name: my-nginx
  85. namespace: default
  86. spec:
  87. containers:
  88. - name: my-nginx
  89. image: nginx
  90. ports:
  91. - containerPort: 80
  92. # addons_include:
  93. # - https://raw.githubusercontent.com/rook/rook/master/cluster/examples/kubernetes/rook-operator.yaml
  94. # - https://raw.githubusercontent.com/rook/rook/master/cluster/examples/kubernetes/rook-cluster.yaml
  95. # - /path/to/manifest