First working version

4 years ago · baf38acb14
9 changed files with 232 additions and 0 deletions
--- a/deploy_vms.yml
+++ b/deploy_vms.yml
@ -0,0 +1,12 @@
+- hosts: h61
+  vars_prompt:
+  - name: PV_password
+    prompt: “Node Password”
+    private: yes
+  vars:
+    VM_template: centos-8-small
+    VM_name: k8s
+  user: root
+  gather_facts: false
+  roles:
+    - deploy
--- a/14
+++ b/14
@ -0,0 +1,14 @@
+[proxmox]
+h61 ansible_ssh_host=192.168.0.103
+
+[k8s]
+192.168.0.16[0:2]
+
+[masters]
+192.168.0.160
+
+[workers]
+192.168.0.16[1:2]
+
+[all:vars]
+ansible_ssh_extra_args='-o StrictHostKeyChecking=no'
--- a/k8s_init.yml
+++ b/k8s_init.yml
@ -0,0 +1,13 @@
+- hosts: k8s
+  user: root
+  gather_facts: false
+  roles:
+    - k8s-common
+- hosts: masters
+  user: root
+  roles:
+    - k8s-master
+- hosts: workers
+  user: root
+  roles:
+    - k8s-worker
--- a/roles/deploy/defaults/main.yaml
+++ b/roles/deploy/defaults/main.yaml
@ -0,0 +1,8 @@
+---
+# defaults file for proxmox_deploy
+VM_template: debian-10-template
+default_disk: virtio0
+default_interface: ens18
+default_volume: /dev/vda
+default_partition: 2
+template_name: template-debian-deployment
--- a/roles/deploy/tasks/main.yml
+++ b/roles/deploy/tasks/main.yml
@ -0,0 +1,56 @@
+---
+# tasks file for proxmox_deploy
+- name: Cloning virtual machine from "{{ VM_template }}" with name "{{ VM_name }}"
+  proxmox_kvm:
+    api_user : root@pam
+    api_password: "{{ PV_password }}"
+    api_host : px2
+    name : "{{ VM_name }}-{{ item }}"
+    node : px2
+    vmid: 9000
+    clone: "{{ VM_template }}"
+    timeout: 300
+  tags: provission,test
+  loop: "{{ range(0, 3, 1)|list }}"
+#- name: starting new Virtual Machine to change IPv4 configuration, it is necessary
+# proxmox_kvm:
+# api_user : root@pam
+# api_password: “{{ PV_password }}”
+# api_host : “{{ default_proxmox_node }}”
+# name : “{{ VM_name }}”
+# node : “{{ default_proxmox_node }}”
+# state : started
+# timeout: 300
+# when: ‘“{{ VM_INCREASE_DISK }}” != “0”’
+# register: wait
+# tags: provission
+- name: copy ssh public key to host
+  copy:
+    src: /root/.ssh/id_rsa.pub
+    dest: /root/.ssh/root_c200.pub
+    owner: root
+    group: root
+    mode: 0600
+- name: set ssh keys for Virtual Machine
+  shell: A=$(qm list |grep "{{ VM_name }}-{{ item }}" | awk '{print $1}'); qm set $A --sshkey /root/.ssh/root_c200.pub --ciuser root
+  loop: "{{ range(0, 3, 1)|list }}"
+  tags: provission
+- name: Loading set up for Virtual Machine. Assigning IP for Virtual Machine
+  shell: A=$(qm list |grep "{{ VM_name }}-{{ item }}" | awk '{print $1}'); qm set $A --ipconfig0 'ip=192.168.0.16{{ item }}/24,gw=192.168.0.253' --nameserver '192.168.0.253' --memory 2048 --cores 2
+  loop: "{{ range(0, 3, 1)|list }}"
+  tags: provission
+- name: Regenerate cloudinit
+  shell: A=$(qm list |grep "{{ VM_name }}-{{ item }}" | awk '{print $1}'); qm set $A --ide2 local-lvm:cloudinit
+  loop: "{{ range(0, 3, 1)|list }}"
+  tags: provission
+- name: starting new Virtual Machine in current proxmox node
+  proxmox_kvm:
+    api_user : root@pam
+    api_password: "{{ PV_password }}"
+    api_host : px2
+    name : "{{ VM_name }}-{{ item }}"
+    node : px2
+    state : started
+    timeout: 300
+  tags: provission
+  loop: "{{ range(0, 3, 1)|list }}"
--- a/roles/deploy/vars/main.yaml
+++ b/roles/deploy/vars/main.yaml
@ -0,0 +1,15 @@
+# vars file for proxmox_deploy
+vlan10:
+ params:
+ netmask: 24
+ vmbr: 0
+ gateway: 192.168.2.1
+ dnsservers: “192.168.2.253 192.168.2.254”
+ searchdomain: vectops.com
+vlan11:
+ params:
+ netmask: 24
+ vmbr: 1
+ gateway: 192.168.3.130
+ dnsservers: “192.168.3.253 192.168.3.254”
+ searchdomain: vectops.com
--- a/roles/k8s-common/tasks/main.yml
+++ b/roles/k8s-common/tasks/main.yml
@ -0,0 +1,67 @@
+---
+- name: Disable SELinux
+  selinux:
+    state: disabled
+#- name: Disable SELinux again
+#  shell: setenforce 0
+- name: install firewalld
+  yum:
+    name: firewalld
+    state: latest
+- name: Start Firewalld
+  ansible.builtin.systemd:
+    name: firewalld
+    state: started
+    enabled: yes
+- name: Allow kube API server
+  firewalld:
+    port: 6443/tcp
+    permanent: yes
+    state: enabled
+- name: enable etcd ports
+  firewalld:
+    port: 2379-2380/tcp
+    permanent: yes
+    state: enabled
+- name: enable etcd ports
+  firewalld:
+    port: 10250-10255/tcp
+    permanent: yes
+    state: enabled
+- name: Add the br_netfilter module
+  modprobe:
+    name: br_netfilter
+    state: present
+- name: bridge
+  shell: "echo '1' > /proc/sys/net/bridge/bridge-nf-call-iptables"
+- name: Docker Repo
+  get_url:
+    url:  https://download.docker.com/linux/centos/docker-ce.repo
+    dest: /etc/yum.repos.d/docker-ce.repo
+- name: Install docker
+  yum:
+    name:
+      - docker-ce-20.10.*
+      - docker-ce-cli
+      - containerd.io
+    state: present
+- name: Docker daemon
+  systemd:
+    name: docker
+    enabled: yes
+    state: started
+- name: Add K8s repo
+  yum_repository:
+    name: kubernetes
+    description: K8s Repo
+    baseurl: https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
+    gpgcakey: 'https://packages.cloud.google.com/yum/doc/yum-key.gpg https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg'
+- name: Install kubeadm
+  yum:
+    name: kubeadm
+    state: present
+- name: Enable kubelet
+  systemd:
+    name: kubelet
+    enabled: yes
+    state: started
--- a/roles/k8s-master/tasks/main.yml
+++ b/roles/k8s-master/tasks/main.yml
@ -0,0 +1,40 @@
+---
+- name: Init cluster
+  shell: kubeadm init --pod-network-cidr=10.10.0.0/16 --ignore-preflight-errors=all
+
+- name: Get kube-router
+  get_url:
+    url:  https://raw.githubusercontent.com/cloudnativelabs/kube-router/master/daemonset/kubeadm-kuberouter-all-features.yaml
+    dest: /tmp/kubeadm-kuberouter-all-features.yaml
+
+- name: Install python
+  yum:
+    name:
+      - python3
+      - python3-pip
+    state: present
+
+- name: Install kubernetes python package
+  pip:
+    name:
+      - kubernetes==11.0
+      - openshift
+
+- name: Apply Kube-router
+  k8s:
+    state: present
+    kubeconfig: /etc/kubernetes/admin.conf
+    src: /tmp/kubeadm-kuberouter-all-features.yaml
+
+- name: Get join token
+  command: kubeadm token create --print-join-command
+  register: found_join_token
+  retries: 30
+  delay: 5
+  until: found_join_token.rc == 0
+  become: true
+
+- name: Save join token
+  set_fact:
+    k8s_join_token: "{{ found_join_token.stdout }}"
+
--- a/roles/k8s-worker/tasks/main.yml
+++ b/roles/k8s-worker/tasks/main.yml
@ -0,0 +1,7 @@
+---
+- name: Set k3s master facts
+  set_fact:
+    node_join_token: "{{ hostvars[groups['masters'][0]]['k8s_join_token'] }}"
+
+- name: Join cluster
+  shell: "{{ node_join_token }}"