richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5821 Commits
29 Branches
81 Tags
146 MiB
Tree: b3d9f2b4a2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b3d9f2b4a2'
${ noResults }
kubespray/docs/metallb.md

81 lines
2.6 KiB
Raw Normal View History

Support Calico advertisement of MetalLB LoadBalancer IPs (#7593) * add initial MetalLB docs * metallb allow disabling the deployment of the metallb speaker * calico>=3.18 allow using calico to advertise service loadbalancer IPs * Document the use of MetalLB and Calico * clean MetalLB docs
3 years ago
  1. # MetalLB
  3. MetalLB hooks into your Kubernetes cluster, and provides a network load-balancer implementation.
  4. It allows you to create Kubernetes services of type "LoadBalancer" in clusters that don't run on a cloud provider, and thus cannot simply hook into 3rd party products to provide load-balancers.
  5. The default operationg mode of MetalLB is in ["Layer2"](https://metallb.universe.tf/concepts/layer2/) but it can also operate in ["BGP"](https://metallb.universe.tf/concepts/bgp/) mode.
  7. ## Install
  9. You have to explicitly enable the MetalLB extension and set an IP address range from which to allocate LoadBalancer IPs.
  11. ```yaml
  12. metallb_enabled: true
  13. metallb_speaker_enabled: true
  14. metallb_ip_range:
  15. - 10.5.0.0/16
  16. ```
  18. By default only the MetalLB BGP speaker is allowed to run on control plane nodes. If you have a single node cluster or a cluster where control plane are also worker nodes you may need to enable tolerations for the MetalLB controller:
  20. ```yaml
  21. metallb_controller_tolerations:
  22. - key: "node-role.kubernetes.io/master"
  23. operator: "Equal"
  24. value: ""
  25. effect: "NoSchedule"
  26. - key: "node-role.kubernetes.io/control-plane"
  27. operator: "Equal"
  28. value: ""
  29. effect: "NoSchedule"
  30. ```
  32. ## BGP Mode
  34. When operating in BGP Mode MetalLB needs to have defined upstream peers:
  36. ```yaml
  37. metallb_protocol: bgp
  38. metallb_ip_range:
  39. - 10.5.0.0/16
  40. metallb_peers:
  41. - peer_address: 192.0.2.1
  42. peer_asn: 64512
  43. my_asn: 4200000000
  44. - peer_address: 192.0.2.2
  45. peer_asn: 64513
  46. my_asn: 4200000000
  47. ```
  49. When using calico >= 3.18 you can replace MetalLB speaker by calico Service LoadBalancer IP advertisement.
  50. See [calico service IPs advertisement documentation](https://docs.projectcalico.org/archive/v3.18/networking/advertise-service-ips#advertise-service-load-balancer-ip-addresses).
  51. In this scenarion you should disable the MetalLB speaker and configure the `calico_advertise_service_loadbalancer_ips` to match your `metallb_ip_range`
  53. ```yaml
  54. metallb_speaker_enabled: false
  55. metallb_ip_range:
  56. - 10.5.0.0/16
  57. calico_advertise_service_loadbalancer_ips: "{{ metallb_ip_range }}"
  58. ```
  60. If you have additional loadbalancer IP pool in `metallb_additional_address_pools`, ensure to add them to the list.
  62. ```yaml
  63. metallb_speaker_enabled: false
  64. metallb_ip_range:
  65. - 10.5.0.0/16
  66. metallb_additional_address_pools:
  67. kube_service_pool_1:
  68. ip_range:
  69. - 10.6.0.0/16
  70. protocol: "bgp"
  71. auto_assign: false
  72. kube_service_pool_2:
  73. ip_range:
  74. - 10.10.0.0/16
  75. protocol: "bgp"
  76. auto_assign: false
  77. calico_advertise_service_loadbalancer_ips:
  78. - 10.5.0.0/16
  79. - 10.6.0.0/16
  80. - 10.10.0.0/16
  81. ```