richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3878 Commits
29 Branches
81 Tags
146 MiB
Tree: 589d22da0b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '589d22da0b'
${ noResults }
kubespray/docs/kube-router.md

107 lines
4.2 KiB
Raw Normal View History

[jjo] add kube-router support (#3339) * [jjo] add kube-router support Fixes cloudnativelabs/kube-router#147. * add kube-router as another network_plugin choice * support most used kube-router flags via `kube_router_foo` vars as other plugins * implement replacing kube-proxy (--run-service-proxy=true) via `kube_proxy_mode: none`, verified in a _non kubeadm_enabled_ install, should also work for recent kubeadm releases via `skipKubeProxyInstall: true` config * [jjo] address PR#3339 review from @woopstar * add busybox image used by kube-router to downloads * fix busybox download groups key * rework kubeadm_enabled + kube_router_run_service_proxy - verify it working ok w/the kubeadm_enabled and kube_router_run_service_proxy true or false - introduce `kube_proxy_remove` fact, to decouple logic from kube_proxy_mode (which affects kubeadm configmap settings, thus no-good to ab-use it to 'none') * improve kube-router.md re: kubeadm_enabled and kube_router_run_service_proxy * address @woopstar latest review * add inventory/sample/group_vars/k8s-cluster/k8s-net-kube-router.yml * fix kube_router_run_service_proxy conditional for kube-proxy removal * fix kube_proxy_remove fact (w/ |bool), add some needed kube-proxy tags on my and existing changes * update kube-router tolerations for 1.12 compatibility * add PriorityClass to kube-router DaemonSet
6 years ago
Add kube-router annotations (#3533)
6 years ago
  1. Kube-router
  2. ===========
  4. Kube-router is a L3 CNI provider, as such it will setup IPv4 routing between
  5. nodes to provide Pods' networks reachability.
  7. See [kube-router documentation](https://www.kube-router.io/).
  9. ## Verifying kube-router install
  11. Kube-router runs its pods as a `DaemonSet` in the `kube-system` namespace:
  13. * Check the status of kube-router pods
  15. ```
  16. # From the CLI
  17. kubectl get pod --namespace=kube-system -l k8s-app=kube-router -owide
  19. # output
  20. NAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE
  21. kube-router-4f679 1/1 Running 0 2d 192.168.186.4 mykube-k8s-node-nf-2 <none>
  22. kube-router-5slf8 1/1 Running 0 2d 192.168.186.11 mykube-k8s-node-nf-3 <none>
  23. kube-router-lb6k2 1/1 Running 0 20h 192.168.186.14 mykube-k8s-node-nf-6 <none>
  24. kube-router-rzvrb 1/1 Running 0 20h 192.168.186.17 mykube-k8s-node-nf-4 <none>
  25. kube-router-v6n56 1/1 Running 0 2d 192.168.186.6 mykube-k8s-node-nf-1 <none>
  26. kube-router-wwhg8 1/1 Running 0 20h 192.168.186.16 mykube-k8s-node-nf-5 <none>
  27. kube-router-x2xs7 1/1 Running 0 2d 192.168.186.10 mykube-k8s-master-1 <none>
  28. ```
  30. * Peek at kube-router container logs:
  32. ```
  33. # From the CLI
  34. kubectl logs --namespace=kube-system -l k8s-app=kube-router | grep Peer.Up
  36. # output
  37. time="2018-09-17T16:47:14Z" level=info msg="Peer Up" Key=192.168.186.6 State=BGP_FSM_OPENCONFIRM Topic=Peer
  38. time="2018-09-17T16:47:16Z" level=info msg="Peer Up" Key=192.168.186.11 State=BGP_FSM_OPENCONFIRM Topic=Peer
  39. time="2018-09-17T16:47:46Z" level=info msg="Peer Up" Key=192.168.186.10 State=BGP_FSM_OPENCONFIRM Topic=Peer
  40. time="2018-09-18T19:12:24Z" level=info msg="Peer Up" Key=192.168.186.14 State=BGP_FSM_OPENCONFIRM Topic=Peer
  41. time="2018-09-18T19:12:28Z" level=info msg="Peer Up" Key=192.168.186.17 State=BGP_FSM_OPENCONFIRM Topic=Peer
  42. time="2018-09-18T19:12:38Z" level=info msg="Peer Up" Key=192.168.186.16 State=BGP_FSM_OPENCONFIRM Topic=Peer
  43. [...]
  44. ```
  46. ## Gathering kube-router state
  48. Kube-router Pods come bundled with a "Pod Toolbox" which provides very
  49. useful internal state views for:
  51. * IPVS: via `ipvsadm`
  52. * BGP peering and routing info: via `gobgp`
  54. You need to `kubectl exec -it ...` into a kube-router container to use these, see
  55. <https://www.kube-router.io/docs/pod-toolbox/> for details.
  57. ## Kube-router configuration
  60. You can change the default configuration by overriding `kube_router_...` variables
  61. (as found at `roles/network_plugin/kube-router/defaults/main.yml`),
  62. these are named to follow `kube-router` command-line options as per
  63. <https://www.kube-router.io/docs/user-guide/#try-kube-router-with-cluster-installers>.
  65. ## Caveats
  67. ### kubeadm_enabled: true
  69. If you want to set `kube-router` to replace `kube-proxy`
  70. (`--run-service-proxy=true`) while using `kubeadm_enabled`,
  71. then 'kube-proxy` DaemonSet will be removed *after* kubeadm finishes
  72. running, as it's not possible to skip kube-proxy install in kubeadm flags
  73. and/or config, see https://github.com/kubernetes/kubeadm/issues/776.
  75. Given above, if `--run-service-proxy=true` is needed it would be
  76. better to void `kubeadm_enabled` i.e. set:
  78. ```
  79. kubeadm_enabled: false
  80. kube_router_run_service_proxy: true
  82. ```
  84. If for some reason you do want/need to set `kubeadm_enabled`, removing
  85. it afterwards behave better if kube-proxy is set to ipvs mode, i.e. set:
  87. ```
  88. kubeadm_enabled: true
  89. kube_router_run_service_proxy: true
  90. kube_proxy_mode: ipvs
  91. ```
  93. ## Advanced BGP Capabilities
  94. https://github.com/cloudnativelabs/kube-router#advanced-bgp-capabilities
  96. If you have other networking devices or SDN systems that talk BGP, kube-router will fit in perfectly.
  97. From a simple full node-to-node mesh to per-node peering configurations, most routing needs can be attained.
  98. The configuration is Kubernetes native (annotations) just like the rest of kube-router.
  100. For more details please refer to the https://github.com/cloudnativelabs/kube-router/blob/master/docs/bgp.md.
  102. Next options will set up annotations for kube-router, using `kubectl annotate` command.
  104. ```
  105. kube_router_annotations_master: []
  106. kube_router_annotations_node: []
  107. kube_router_annotations_all: []
  108. ```