Terraform module for creating Kubernetes clusters running on Azure
Перейти к файлу
Sean Knox 1d36b8f375
(README): update instructions
2018-04-06 11:13:01 -07:00
packer (controller/nodes): disable RBAC, enable azure-vnet-ipam 2018-04-05 13:52:48 -07:00
terraform (*): allow ssh'ing to any private host with "make ssh hostname=thehostname" 2018-04-06 09:10:39 -07:00
.gitignore (*): ignore .cfssl directory 2018-04-05 15:16:48 -07:00
LICENSE initial commit 2018-03-24 22:06:08 -07:00
README.md (README): update instructions 2018-04-06 11:13:01 -07:00

README.md

ACStack

Provision a Kubernetes cluster with Packer and Terraform on Azure Resource Manager. Inspired by Kelsey Hightower's kubestack and the tack project.

Status

Still WIP

Packer

Packer step generates an Azure VHD with:

Software Version
Ubuntu 17.10
Docker 1.13.1
etcd 3.1.0-1
kubectl 1.10.0
kube-apiserver 1.10.0
kube-controller-manager 1.10.0
kube-scheduler 1.10.0

Terraform

  • scaffolding of modules implemented:
    • controllers/etcd
    • PKI
    • Azure DNS
    • nodes
    • bastion
    • vnet
    • resource group
    • NSGs for controller and nodes
    • separate controllers and nodes into different subnets (with NSGs)
    • Explicit MSI definition
    • token/TLS bootstrap of kubelet https://kubernetes.io/docs/admin/kubelet-tls-bootstrapping/
    • separate etcd from controllers
    • certs for etcd, api, and clients
    • kube-proxy on nodes
  • example of provisioning in modules/bastion
  • example of provisioning in modules/nodes via bastion

Prep

Packer Images

Instead of provisioning a VM at boot time, we use Packer to create an immutable image based on a source image. Currently only Ubuntu is supported.

Running the packer commands below will create the following image:

acstack-ubuntu-17.10-{{timestamp}}

Create the ACStack Base Image

Create resource group

During the build process, Packer creates temporary Azure resources as it builds the source VM. To capture that source VM for use as an image, you must define a resource group. The output from the Packer build process is stored in this resource group.

  • az group create -n myResourceGroup -l westus2

Edit Packer settings

Edit packer/settings.json with required settings such as your subscription id.

  • To generate credentials: az ad sp create-for-rbac --query "{ client_id: appId, client_secret: password, tenant_id: tenant }" -o json
  • To get your subscription id: az account show --query "{ subscription_id: id }" -o json
cd packer
packer build -var-file=settings.json acstack.json

Terraform

Terraform will be used to declare and provision a Kubernetes cluster.

Prep

TBD

Provision the Kubernetes Cluster

cd terraform
CLUSTER_NAME=mycluster make all # generates Azure credentials and other required configuration and builds infra on Terraform

Resize the number of worker nodes

Edit terraform/terraform.tfvars. Set node_count to the desired value:

node_count = 5

Apply the changes:

terraform plan
terraform apply
Apply complete! Resources: 4 added, 0 changed, 0 destroyed.

The state of your infrastructure has been saved to the path
below. This state is required to modify and destroy your
infrastructure, so keep it safe. To inspect the complete state
use the `terraform show` command.

State path: terraform.tfstate