richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3778 Commits
29 Branches
81 Tags
150 MiB
Tree: 4d2b6b71f2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4d2b6b71f2'
${ noResults }
kubespray/roles/network_plugin/flannel/templates/cni-flannel.yml.j2

138 lines
3.8 KiB
Raw Normal View History

Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Stop templating kube-system namespace and creating it (#2545) Kubernetes makes this namespace automatically, so there is no need for kubespray to manage it.
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Update network-plugins to use portmap plugin (#1763) Portmap allow to use hostPort with CNI plugins. Should fix #1675
7 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Add flannel hairping mode
7 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Stop templating kube-system namespace and creating it (#2545) Kubernetes makes this namespace automatically, so there is no need for kubespray to manage it.
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
All CNIs: support ANY toleration. (#3391) Before, Nodes tainted with NoExecute policy did not have calico/weave Pod. Network pod should run on all nodes whatever happens on a specific node. Also always set the Pods to be critical. Also remove deprecated scheduler.alpha.kubernetes.io/tolerations annotations.
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Fix ansible syntax to avoid ansible deprecation warnings (#3512) * failed * version_compare * succeeded * skipped * success * version_compare becomes version since ansible 2.5 * ansible minimal version updated in doc and spec * last version_compare
6 years ago
Adding pod priority for all the components. (#3361) * Changes to assign pod priority to kube components. * Removed the boolean flag pod_priority_assignment * Created new priorityclass k8s-cluster-critical * Created new priorityclass k8s-cluster-critical * Fixed the trailing spaces * Fixed the trailing spaces * Added kube version check while creating Priority Class k8s-cluster-critical * Moved k8s-cluster-critical.yml * Moved k8s-cluster-critical.yml to kube_config_dir
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
ensure there is pin priority for docker package to avoid upgrade of docker to incompatible version ensure there is pin priority for docker package to avoid upgrade of docker to incompatible version remove empty when line ensure there is pin priority for docker package to avoid upgrade of docker to incompatible version force kubeadm upgrade due to failure without --force flag ensure there is pin priority for docker package to avoid upgrade of docker to incompatible version added nodeSelector to have compatibility with hybrid cluster with win nodes, also fix for download with missing container type fixes in syntax and LF for newline in files fix on yamllint check ensure there is pin priority for docker package to avoid upgrade of docker to incompatible version some cleanup for innecesary lines remove conditions for nodeselector
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Add --iface-regex options to flannel Flannel use interface for inter-host communication setted on --iface options Defaults to the interface for the default route on the machine. flannel config set via daemonset, and flannel config on all nodes is the same. But different nodes can have different interface names for the inter-host communication network The option --iface-regex allows the flannel to find the interface on which the address is set from the inter-host communication network
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
Add Pod IP to Flannel manifest. (#3379)
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
All CNIs: support ANY toleration. (#3391) Before, Nodes tainted with NoExecute policy did not have calico/weave Pod. Network pod should run on all nodes whatever happens on a specific node. Also always set the Pods to be critical. Also remove deprecated scheduler.alpha.kubernetes.io/tolerations annotations.
6 years ago
Initial version of Flannel using CNI (#1486) * Updates Controller Manager/Kubelet with Flannel's required configuration for CNI * Removes old Flannel installation * Install CNI enabled Flannel DaemonSet/ConfigMap/CNI bins and config (with portmap plugin) on host * Uses RBAC if enabled * Fixed an issue that could occur if br_netfilter is not a module and net.bridge.bridge-nf-call-iptables sysctl was not set
7 years ago
fix apply for netchecker upgrade (#1659) * fix apply for netchecker upgrade and graceful upgrade * Speed up daemonset upgrades. Make check wait for ds upgrades.
7 years ago
  1. ---
  2. kind: ConfigMap
  3. apiVersion: v1
  4. metadata:
  5. name: kube-flannel-cfg
  6. namespace: "kube-system"
  7. labels:
  8. tier: node
  9. app: flannel
  10. data:
  11. cni-conf.json: |
  12. {
  13. "name":"cni0",
  14. "cniVersion":"0.3.1",
  15. "plugins":[
  16. {
  17. "type":"flannel",
  18. "delegate":{
  19. "forceAddress":true,
  20. "hairpinMode": true,
  21. "isDefaultGateway":true
  22. }
  23. },
  24. {
  25. "type":"portmap",
  26. "capabilities":{
  27. "portMappings":true
  28. }
  29. }
  30. ]
  31. }
  32. net-conf.json: |
  33. {
  34. "Network": "{{ kube_pods_subnet }}",
  35. "Backend": {
  36. "Type": "{{ flannel_backend_type }}"
  37. }
  38. }
  39. ---
  40. apiVersion: extensions/v1beta1
  41. kind: DaemonSet
  42. metadata:
  43. name: kube-flannel
  44. namespace: "kube-system"
  45. labels:
  46. tier: node
  47. k8s-app: flannel
  48. spec:
  49. template:
  50. metadata:
  51. labels:
  52. tier: node
  53. k8s-app: flannel
  54. annotations:
  55. # Mark pod as critical for rescheduling (Will have no effect starting with kubernetes 1.12)
  56. scheduler.alpha.kubernetes.io/critical-pod: ''
  57. spec:
  58. {% if kube_version is version('v1.11.1', '>=') %}
  59. priorityClassName: system-node-critical
  60. {% endif %}
  61. serviceAccountName: flannel
  62. # When having win nodes in cluster without this patch, this pod cloud try to be created in windows
  63. nodeSelector:
  64. beta.kubernetes.io/os: linux
  65. containers:
  66. - name: kube-flannel
  67. image: {{ flannel_image_repo }}:{{ flannel_image_tag }}
  68. imagePullPolicy: {{ k8s_image_pull_policy }}
  69. resources:
  70. limits:
  71. cpu: {{ flannel_cpu_limit }}
  72. memory: {{ flannel_memory_limit }}
  73. requests:
  74. cpu: {{ flannel_cpu_requests }}
  75. memory: {{ flannel_memory_requests }}
  76. command: [ "/opt/bin/flanneld", "--ip-masq", "--kube-subnet-mgr"{% if flannel_interface is defined %}, "--iface={{ flannel_interface }}"{% endif %}{% if flannel_interface_regexp is defined %}, "--iface-regex={{ flannel_interface_regexp }}"{% endif %} ]
  77. securityContext:
  78. privileged: true
  79. env:
  80. - name: POD_NAME
  81. valueFrom:
  82. fieldRef:
  83. fieldPath: metadata.name
  84. - name: POD_NAMESPACE
  85. valueFrom:
  86. fieldRef:
  87. fieldPath: metadata.namespace
  88. - name: POD_IP
  89. valueFrom:
  90. fieldRef:
  91. fieldPath: status.podIP
  92. volumeMounts:
  93. - name: run
  94. mountPath: /run
  95. - name: cni
  96. mountPath: /etc/cni/net.d
  97. - name: flannel-cfg
  98. mountPath: /etc/kube-flannel/
  99. - name: install-cni
  100. image: {{ flannel_cni_image_repo }}:{{ flannel_cni_image_tag }}
  101. command: ["/install-cni.sh"]
  102. env:
  103. # The CNI network config to install on each node.
  104. - name: CNI_NETWORK_CONFIG
  105. valueFrom:
  106. configMapKeyRef:
  107. name: kube-flannel-cfg
  108. key: cni-conf.json
  109. - name: CNI_CONF_NAME
  110. value: "10-flannel.conflist"
  111. volumeMounts:
  112. - name: cni
  113. mountPath: /host/etc/cni/net.d
  114. - name: host-cni-bin
  115. mountPath: /host/opt/cni/bin/
  116. hostNetwork: true
  117. tolerations:
  118. - operator: Exists
  119. # Mark pod as critical for rescheduling (Will have no effect starting with kubernetes 1.12)
  120. - key: CriticalAddonsOnly
  121. operator: "Exists"
  122. volumes:
  123. - name: run
  124. hostPath:
  125. path: /run
  126. - name: cni
  127. hostPath:
  128. path: /etc/cni/net.d
  129. - name: flannel-cfg
  130. configMap:
  131. name: kube-flannel-cfg
  132. - name: host-cni-bin
  133. hostPath:
  134. path: /opt/cni/bin
  135. updateStrategy:
  136. rollingUpdate:
  137. maxUnavailable: {{ serial | default('20%') }}
  138. type: RollingUpdate