furyhawk/cloudy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Refactor kube-vip and rke2 configuration to use version v0.8.1

Browse Source
This commit is contained in:
Teck Meng
2024-06-30 19:27:10 +08:00
parent d3ef4cd14a
commit 54085449d9
4 changed files with 45 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ansible/rke2/inventory/group_vars/all.yaml
+1 -1
View File
@@ -4,7 +4,7 @@ os: "linux"
system_timezone: "Asia/Singapore"
kube_vip_version: "v0.8.1"
vip_interface: eth0
vip_interface: enx207bd2d0439e
vip: 192.168.50.210
metallb_version: v0.14.5
ansible/rke2/kube-vip
+3 -3
View File
@@ -4,7 +4,7 @@ metadata:
creationTimestamp: null
labels:
app.kubernetes.io/name: kube-vip-ds
app.kubernetes.io/version: v0.6.3
app.kubernetes.io/version: v0.8.1
name: kube-vip-ds
namespace: kube-system
spec:
@@ -16,7 +16,7 @@ spec:
creationTimestamp: null
labels:
app.kubernetes.io/name: kube-vip-ds
app.kubernetes.io/version: v0.6.3
app.kubernetes.io/version: v0.8.1
spec:
affinity:
nodeAffinity:
@@ -64,7 +64,7 @@ spec:
value: $vip
- name: prometheus_server
value: :2112
image: ghcr.io/kube-vip/kube-vip:v0.6.3
image: ghcr.io/kube-vip/kube-vip:v0.8.1
imagePullPolicy: Always
name: kube-vip
resources: {}
ansible/rke2/rbac.yaml
+41
View File
@@ -0,0 +1,41 @@
apiVersion: v1
kind: ServiceAccount
metadata:
name: kube-vip
namespace: kube-system
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
annotations:
rbac.authorization.kubernetes.io/autoupdate: "true"
name: system:kube-vip-role
rules:
- apiGroups: [""]
resources: ["services/status"]
verbs: ["update"]
- apiGroups: [""]
resources: ["services", "endpoints"]
verbs: ["list","get","watch", "update"]
- apiGroups: [""]
resources: ["nodes"]
verbs: ["list","get","watch", "update", "patch"]
- apiGroups: ["coordination.k8s.io"]
resources: ["leases"]
verbs: ["list", "get", "watch", "update", "create"]
- apiGroups: ["discovery.k8s.io"]
resources: ["endpointslices"]
verbs: ["list","get","watch", "update"]
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: system:kube-vip-binding
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: system:kube-vip-role
subjects:
- kind: ServiceAccount
name: kube-vip
namespace: kube-system
ansible/rke2/rke2.sh
-2
View File
@@ -111,8 +111,6 @@ touch config.yaml
echo "tls-san:" >> config.yaml
echo " - $vip" >> config.yaml
echo " - $master1" >> config.yaml
echo " - $master2" >> config.yaml
echo " - $master3" >> config.yaml
echo "write-kubeconfig-mode: 0644" >> config.yaml
echo "disable:" >> config.yaml
echo " - rke2-ingress-nginx" >> config.yaml