Lorenzo Nicora nicusX
nicusX
/ k8snthw-instances.tf
Last active
August 13, 2016 16:19
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| resource "aws_instance" "etcd" { | |
| count = 3 | |
| ami = "ami-1967056a" // Unbuntu 16.04 LTS HVM, EBS-SSD | |
| instance_type = "t2.micro" | |
| subnet_id = "${aws_subnet.kubernetes.id}" | |
| private_ip = "${cidrhost("10.43.0.0/16", 10 + count.index)}" | |
| associate_public_ip_address = true | |
| availability_zone = "eu-west-1a" |
nicusX
/ k8snthw-infra.yaml
Last active
August 13, 2016 12:36
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - hosts: etcd | |
| roles: | |
| - common | |
| - etcd | |
| - hosts: controller | |
| roles: | |
| - common | |
| - controller |
nicusX
/ k8snthw-infra-bootstrap.yaml
Last active
August 13, 2016 12:36
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - hosts: all | |
| gather_facts: false | |
| tasks: | |
| - name: Install Python | |
| raw: "apt-get -y -q install python" | |
| become: true |
nicusX
/ k8snthw-kubectl.yaml
Last active
August 11, 2016 20:54
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Expects `kubernetes_api_endpoint` as `--extra-vars "kubernetes_api_endpoint=xxxx"` | |
| - hosts: 127.0.0.1 | |
| connection: local | |
| tasks: | |
| - name: Set kubectl endpoint | |
| shell: "kubectl config set-cluster {{ cluster_name }} --certificate-authority={{ playbook_dir }}/../cert/ca.pem --embed-certs=true --server=https://{{ kubernetes_api_endpoint }}:6443" | |
| - name: Set kubectl credentials | |
| shell: "kubectl config set-credentials {{ user }} --token {{ token }}" |
nicusX
/ k8snthw-etcd-tasks.yaml
Created
August 11, 2016 13:00
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - name: Create etcd config dir | |
| file: path=/etc/etcd state=directory | |
| become: true | |
| - name: Copy certificates | |
| copy: | |
| src: "{{ playbook_dir }}/../cert/{{ item }}" | |
| dest: "/etc/etcd/" | |
| become: true | |
| with_items: |
nicusX
/ k8snthw-inventory-ansible.cfg
Created
August 11, 2016 10:38
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [defaults] | |
| ... | |
| inventory = ./hosts/ | |
| ... |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [tag_ansibleNodeType_etcd] | |
| [tag_ansibleNodeType_worker] | |
| [tag_ansibleNodeType_controller] | |
| [etcd:children] | |
| tag_ansibleNodeType_etcd | |
| [worker:children] | |
| tag_ansibleNodeType_worker |
nicusX
/ k8snthw-ec2.ini
Created
August 11, 2016 09:23
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [ec2] | |
| instance_filters = tag:ansibleFilter=Kubernetes01 | |
| regions = eu-west-1 | |
| destination_variable = ip_address | |
| vpc_destination_variable = ip_address | |
| hostname_variable = tag_ansibleNodeName |
nicusX
/ k8snthw-elb.tf
Last active
August 9, 2016 22:22
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| resource "aws_elb" "kubernetes_api" { | |
| name = "kube-api" | |
| instances = ["${aws_instance.controller.*.id}"] | |
| subnets = ["${aws_subnet.kubernetes.id}"] | |
| cross_zone_load_balancing = false | |
| security_groups = ["${aws_security_group.kubernetes_api.id}"] | |
| listener { | |
| lb_port = 6443 |
nicusX
/ k8snthw-tags.tf
Created
August 9, 2016 22:09