ca08614641
yamllint fix
7 years ago
47adf4bce6
Disalbe install epel-release rpm on Centos/Redhat
1.Disalbe install epel-release rpm on Centos/Redhat
2.Use yum install epel-release
7 years ago
ad9049a49e
baremetal tweaks
* allow installs to not have hostname overriden with fqdn from inventory
* calico-config no longer requires local as and will default to global
* when cloudprovider is not defined, use the inventory_hostname for cni-calico
* allow reset to not restart network (buggy nodes die with this cmd)
* default kube_override_hostname to inventory_hostname instead of ansible_hostname
7 years ago
b4e264251f
JSON/YAML syntax fix
7 years ago
8006a6cd82
local_volumes_enabled replaced by local_volume_provisioner_enabled
7 years ago
5cd6b0c753
Adding missing defaults for weave
The PR #2203 add's missing defaults for weave, but no signed CLA. So this PR fixes it.
7 years ago
bb339265fc
Set default registry_enabled to false
In PR #2244 the `registry_enabled` is missing in defaults, causing a deployment to fail, if it is not set in k8s-cluster.yml
7 years ago
b2d30d68e7
Rename CN for aggreator back. Add flags to apiserver when version is >= 1.9
7 years ago
82d10b882c
Added fixes from whereismyjetpack
7 years ago
95b8ac5f62
Added optional controller and scheduler extra args to kubeadm config ( #2205 )
7 years ago
0b4168cad4
WIP. Adding metrics-server support for K8s version 1.9
7 years ago
3289472e31
Added option to set MTU on Weave
7 years ago
4ad53339f6
KubeDNS template should not suffix with .yml.j2
7 years ago
a4d3da6a8e
Dashboard template should not suffix with .yml.j2
7 years ago
7954ea2525
Migrate Kubernetes v1.9.1 cluster/addons/registry to Kubespray
7 years ago
bc2e26d7ef
update apiVersion
7 years ago
fd80013917
lint and cleanup local_volume_provisioner
7 years ago
dc6c703741
--etcd-quorum-read is depricated in kube >= 1.9
7 years ago
16629d0b8e
Vault should use cert auth for etcd
7 years ago
7f79210ed1
reworked vsphere-cloud-config template
7 years ago
27a1a697e7
supplementary_addresses_in_ssl_keys can be a hostname
7 years ago
9cdd2214f9
render vsphere_resource_pool only if defined
7 years ago
989e9174c2
Added vSphere cloud provider config update for Kubernetes >= 1.9.2
7 years ago
3993e12335
Fix can not be used devicemapper driver
Fix can not be used devicemapper driver
7 years ago
32d18ca992
remove trailing space
7 years ago
2df4b6c5d2
Rename default_resolver to cloud_resolver ( #2209 )
Cloud resolvers are mandatory for hosts on GCE and OpenStack
clouds. The 8.8.8.8 alternative resolver was dropped because
there is already a default nameserver. The new var name
reflects the purpose better.
Also restart apiserver when modifying dns settings.
7 years ago
088d36da09
Increase the idx counter
Fix the idx counter to increase too, or you will end up with two same indexes.
7 years ago
6f36faa4f9
Loadbalancer Apiserver Address is missing
If you configure your external loadbalancer to do a simple tcp pass-through to the api servers, and you do not use a DNS FQDN but just the ip, then you need to add the ip adress to the certificates too.
Example config:
```
## External LB example config
apiserver_loadbalancer_domain_name: "10.50.63.10"
loadbalancer_apiserver:
address: 10.50.63.10
port: 8383
```
7 years ago
3846384d56
Bump kube-dns to 1.14.8 ( #2204 )
Bump kube-dns to 1.14.8
7 years ago
331f141f63
Fix DNS entries in etcd's openssl.conf by adding a newline. ( #2208 )
DNS entries generated from 'etcd_cert_alt_names' variable in etcd's
openssl.conf are not terminated by a newline.
This fixes issue #2207 .
7 years ago
62dd3d2a9d
Add missing group var default values to kubespray-defaults
7 years ago
fa8a128e49
etcd: ability to enable/disable ETCD_PEER_CLIENT_CERT_AUTH
Some installation are failing to authenticate with peers due to
etcd picking up/resoling the wrong node.
By setting 'etcd_peer_client_auth' to "False" you can disable peer client cert
authentication.
Signed-off-by: Sébastien Han <seb@redhat.com>
7 years ago
b10c308a5a
Support ipvs mode for kube-proxy
Support ipvs mode for kube-proxy
7 years ago
e22c70e431
Upgrade to Kubernetes v1.9.2
7 years ago
dc6a17e092
Use include/import tasks ( #2192 )
import_tasks will consume far less memory, so it should be
used whenever it is compatible.
7 years ago
240d4193ae
Update information about network sizes
7 years ago
ac66e98ae9
Upgrade to Kubernetes v1.9.1 ( #2152 )
Raise drain timeout to 5m
7 years ago
d2935ffed0
Optionally ignore the presence of extra calico pools ( #2190 )
7 years ago
714994cad8
iptables: flush nat table as well as filter table upon reset ( #2174 )
* iptables: flush nat table as well as filter table upon reset
* Indentation fix
7 years ago
e22759d8f0
fix nodePort for weave
7 years ago
bf1411060e
Add optional manual dns_mode ( #2178 )
7 years ago
a4d142368b
Renamed variable from disable_volume_zone_conflict to volume_cross_zone_attachment and removed cloud provider condition; fix identation
7 years ago
ae47b617e3
Fix 'no such host' problem ( #2148 )
Fix 'no such host' problem reported by commands *kubectl logs* and *kubectl exec*
when cloud_provider is OpenStack
Closes : #2147
7 years ago
e5b4011aa4
move hardcoded dnsmasq autoscaler image to its own variable
7 years ago
3125f93b3f
Added disable_volume_zone_conflict variable
7 years ago
637604d08f
Add lib/modules to kube-proxy to enable LVS
kube-proxy is complaining of missing modules at startup. There is a plan
to also support an LVS implementation of kube-proxy in additon to
userspace and iptables
7 years ago
1a9989ade9
move hardcoded dnsmasq autoscaler image to its own variable
7 years ago
11844c987c
Make the Kubelet read-only port configurable and disable it by default. Fixes #2159 .
7 years ago
8c45c88d15
Fix for Issue #2141 - added policy file
7 years ago
c87bb2f239
Fix for Issue #2141
7 years ago
Erwan Miran
rong.zhang
Ryan Zenker
Andreas Krüger
Maxim Krasilnikov
Wong Hoi Sing Edison
Dann Bohn
Matthew Mosesohn
Julian Hübenthal
Simon Li
Dmitri Rubinstein
Sébastien Han
Miouge1
mirwan
Cornelius Keller
Virgil Chereches
Stanislav Makar
ArchiFleKs
Jonas Kongslund