You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

98 lines
3.7 KiB

  1. ---
  2. ## Directory where etcd data stored
  3. etcd_data_dir: /var/lib/etcd
  4. ## Experimental kubeadm etcd deployment mode. Available only for new deployment
  5. etcd_kubeadm_enabled: false
  6. ## Directory where the binaries will be installed
  7. bin_dir: /usr/local/bin
  8. ## The access_ip variable is used to define how other nodes should access
  9. ## the node. This is used in flannel to allow other flannel nodes to see
  10. ## this node for example. The access_ip is really useful AWS and Google
  11. ## environments where the nodes are accessed remotely by the "public" ip,
  12. ## but don't know about that address themselves.
  13. # access_ip: 1.1.1.1
  14. ## External LB example config
  15. ## apiserver_loadbalancer_domain_name: "elb.some.domain"
  16. # loadbalancer_apiserver:
  17. # address: 1.2.3.4
  18. # port: 1234
  19. ## Internal loadbalancers for apiservers
  20. # loadbalancer_apiserver_localhost: true
  21. # valid options are "nginx" or "haproxy"
  22. # loadbalancer_apiserver_type: nginx # valid values "nginx" or "haproxy"
  23. ## Local loadbalancer should use this port
  24. ## And must be set port 6443
  25. loadbalancer_apiserver_port: 6443
  26. ## If loadbalancer_apiserver_healthcheck_port variable defined, enables proxy liveness check for nginx.
  27. loadbalancer_apiserver_healthcheck_port: 8081
  28. ### OTHER OPTIONAL VARIABLES
  29. ## For some things, kubelet needs to load kernel modules. For example, dynamic kernel services are needed
  30. ## for mounting persistent volumes into containers. These may not be loaded by preinstall kubernetes
  31. ## processes. For example, ceph and rbd backed volumes. Set to true to allow kubelet to load kernel
  32. ## modules.
  33. # kubelet_load_modules: false
  34. ## Upstream dns servers
  35. # upstream_dns_servers:
  36. # - 8.8.8.8
  37. # - 8.8.4.4
  38. ## There are some changes specific to the cloud providers
  39. ## for instance we need to encapsulate packets with some network plugins
  40. ## If set the possible values are either 'gce', 'aws', 'azure', 'openstack', 'vsphere', 'oci', or 'external'
  41. ## When openstack is used make sure to source in the openstack credentials
  42. ## like you would do when using openstack-client before starting the playbook.
  43. # cloud_provider:
  44. ## When cloud_provider is set to 'external', you can set the cloud controller to deploy
  45. ## Supported cloud controllers are: 'openstack' and 'vsphere'
  46. ## When openstack or vsphere are used make sure to source in the required fields
  47. # external_cloud_provider:
  48. ## Set these proxy values in order to update package manager and docker daemon to use proxies
  49. # http_proxy: ""
  50. # https_proxy: ""
  51. ## Refer to roles/kubespray-defaults/defaults/main.yml before modifying no_proxy
  52. # no_proxy: ""
  53. ## Some problems may occur when downloading files over https proxy due to ansible bug
  54. ## https://github.com/ansible/ansible/issues/32750. Set this variable to False to disable
  55. ## SSL validation of get_url module. Note that kubespray will still be performing checksum validation.
  56. # download_validate_certs: False
  57. ## If you need exclude all cluster nodes from proxy and other resources, add other resources here.
  58. # additional_no_proxy: ""
  59. ## Certificate Management
  60. ## This setting determines whether certs are generated via scripts.
  61. ## Chose 'none' if you provide your own certificates.
  62. ## Option is "script", "none"
  63. ## note: vault is removed
  64. # cert_management: script
  65. ## Set to true to allow pre-checks to fail and continue deployment
  66. # ignore_assert_errors: false
  67. ## The read-only port for the Kubelet to serve on with no authentication/authorization. Uncomment to enable.
  68. # kube_read_only_port: 10255
  69. ## Set true to download and cache container
  70. # download_container: true
  71. ## Deploy container engine
  72. # Set false if you want to deploy container engine manually.
  73. # deploy_container_engine: true
  74. ## Set Pypi repo and cert accordingly
  75. # pyrepo_index: https://pypi.example.com/simple
  76. # pyrepo_cert: /etc/ssl/certs/ca-certificates.crt