richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7011 Commits
30 Branches
81 Tags
149 MiB
Tree: b7fe368469
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b7fe368469'
${ noResults }
kubespray/contrib/terraform/hetzner/README.md

121 lines
3.8 KiB
Raw Normal View History

Added terraform script for Hetzner cloud (#8053)
3 years ago
add flatcar support for Hetzner (#9618)
1 year ago
Added terraform script for Hetzner cloud (#8053)
3 years ago
add flatcar support for Hetzner (#9618)
1 year ago
Added terraform script for Hetzner cloud (#8053)
3 years ago
Fixes for Hetzner terraform and Hetzner Cloud (#8702) * - add ability to specify the network_zone in hetzner terraform - Export the network id from hetzner terraform the the generated inventory.ini * - Add with_networks variable to allow different deployments of hcloud controller manager - Add network id to hcloud controller secret (added via the inventory) - Don't include extra_args if it's not set
2 years ago
Added terraform script for Hetzner cloud (#8053)
3 years ago
  1. # Kubernetes on Hetzner with Terraform
  3. Provision a Kubernetes cluster on [Hetzner](https://www.hetzner.com/cloud) using Terraform and Kubespray
  5. ## Overview
  7. The setup looks like following
  9. ```text
  10. Kubernetes cluster
  11. +--------------------------+
  12. | +--------------+ |
  13. | | +--------------+ |
  14. | --> | | | |
  15. | | | Master/etcd | |
  16. | | | node(s) | |
  17. | +-+ | |
  18. | +--------------+ |
  19. | ^ |
  20. | | |
  21. | v |
  22. | +--------------+ |
  23. | | +--------------+ |
  24. | --> | | | |
  25. | | | Worker | |
  26. | | | node(s) | |
  27. | +-+ | |
  28. | +--------------+ |
  29. +--------------------------+
  30. ```
  32. The nodes uses a private network for node to node communication and a public interface for all external communication.
  34. ## Requirements
  36. * Terraform 0.14.0 or newer
  38. ## Quickstart
  40. NOTE: Assumes you are at the root of the kubespray repo.
  42. For authentication in your cluster you can use the environment variables.
  44. ```bash
  45. export HCLOUD_TOKEN=api-token
  46. ```
  48. Copy the cluster configuration file.
  50. ```bash
  51. CLUSTER=my-hetzner-cluster
  52. cp -r inventory/sample inventory/$CLUSTER
  53. cp contrib/terraform/hetzner/default.tfvars inventory/$CLUSTER/
  54. cd inventory/$CLUSTER
  55. ```
  57. Edit `default.tfvars` to match your requirement.
  59. Flatcar Container Linux instead of the basic Hetzner Images.
  61. ```bash
  62. cd ../../contrib/terraform/hetzner
  63. ```
  65. Edit `main.tf` and reactivate the module `source = "./modules/kubernetes-cluster-flatcar"`and
  66. comment out the `#source = "./modules/kubernetes-cluster"`.
  68. activate `ssh_private_key_path = var.ssh_private_key_path`. The VM boots into
  69. Rescue-Mode with the selected image of the `var.machines` but installs Flatcar instead.
  71. Run Terraform to create the infrastructure.
  73. ```bash
  74. cd ./kubespray
  75. terraform -chdir=./contrib/terraform/hetzner/ init
  76. terraform -chdir=./contrib/terraform/hetzner/ apply --var-file=../../../inventory/$CLUSTER/default.tfvars
  77. ```
  79. You should now have a inventory file named `inventory.ini` that you can use with kubespray.
  80. You can use the inventory file with kubespray to set up a cluster.
  82. It is a good idea to check that you have basic SSH connectivity to the nodes. You can do that by:
  84. ```bash
  85. ansible -i inventory.ini -m ping all
  86. ```
  88. You can setup Kubernetes with kubespray using the generated inventory:
  90. ```bash
  91. ansible-playbook -i inventory.ini ../../cluster.yml -b -v
  92. ```
  94. ## Cloud controller
  96. For better support with the cloud you can install the [hcloud cloud controller](https://github.com/hetznercloud/hcloud-cloud-controller-manager) and [CSI driver](https://github.com/hetznercloud/csi-driver).
  98. Please read the instructions in both repos on how to install it.
  100. ## Teardown
  102. You can teardown your infrastructure using the following Terraform command:
  104. ```bash
  105. terraform destroy --var-file default.tfvars ../../contrib/terraform/hetzner
  106. ```
  108. ## Variables
  110. * `prefix`: Prefix to add to all resources, if set to "" don't set any prefix
  111. * `ssh_public_keys`: List of public SSH keys to install on all machines
  112. * `zone`: The zone where to run the cluster
  113. * `network_zone`: the network zone where the cluster is running
  114. * `machines`: Machines to provision. Key of this object will be used as the name of the machine
  115. * `node_type`: The role of this node *(master|worker)*
  116. * `size`: Size of the VM
  117. * `image`: The image to use for the VM
  118. * `ssh_whitelist`: List of IP ranges (CIDR) that will be allowed to ssh to the nodes
  119. * `api_server_whitelist`: List of IP ranges (CIDR) that will be allowed to connect to the API server
  120. * `nodeport_whitelist`: List of IP ranges (CIDR) that will be allowed to connect to the kubernetes nodes on port 30000-32767 (kubernetes nodeports)
  121. * `ingress_whitelist`: List of IP ranges (CIDR) that will be allowed to connect to kubernetes workers on port 80 and 443