Commit graph

258 commits

Author SHA1 Message Date
emiran-orange
df6da52195
Enable check mode in DNS Cleanup tasks () 2022-11-10 19:58:09 -08:00
emiran-orange
5c25b57989
Ability to define options for DNS upstream servers ()
* Ability to define options for DNS upstream servers

* Doc and sample inventory vars
2022-11-08 06:44:25 -08:00
Mohamed Zaian
2af918132e
Update kubernetes dashboard to 2.7.0 (k8s 1.25 support) () 2022-10-24 18:32:36 -07:00
Kenichi Omichi
c38fb866b7
Update securityContext of netchecker ()
To run netchecker with necessary privilege,
this updates the securityContext.
2022-10-17 19:11:18 -07:00
Unai Arríen
ef76a578a4
Change dns upstream condition for nodelocaldns () 2022-10-11 00:47:02 -07:00
Kay Yan
1b3c2dab2e
add_max_concurrent_in_coredns () 2022-09-22 04:27:03 -07:00
Michael Schmitz
be2bfd867c
Add Support for Rewrite Plugin to CoreDNS/NodelocalDNS () 2022-09-03 16:16:35 -07:00
Peter Pan
14063b023c
Extend DNS memory limit. 170Mi tents to OOM () 2022-07-13 00:03:37 -07:00
Sébastien Masset
9d5d945bdb
[MASTER] Add missing configuration for extra tolerations ()
* Added new configuration item for extra tolerations in policy controllers

Signed-off-by: Sébastien Masset <smt.masset@gmail.com>

* Added new configuration item for extra tolerations in DNS autoscaler

Signed-off-by: Sébastien Masset <smt.masset@gmail.com>

* Aligned existing handling of extra DNS tolerations

Signed-off-by: Sébastien Masset <smt.masset@gmail.com>
2022-06-20 01:36:06 -07:00
orange-llajeanne
a26a9ee14f
set apparmor_enabled in netchecker task () 2022-05-19 10:49:21 -07:00
weizhoublue
b289f533b3
get wrong server name of coredns ()
Signed-off-by: weizhou.lan@daocloud.io <weizhou.lan@daocloud.io>
2022-05-12 08:33:14 -07:00
cyril-corbon
418fc00718
fix: kube-dns service deletion ()
Signed-off-by: Cyril Corbon <corboncyril@gmail.com>
2022-02-21 02:48:11 -08:00
Tristan
92d612c3e0
8487: Allow override of default CoreDNS zone cache ()
Using the coredns_cluster_zone_cache_block variable
2022-02-01 00:48:18 -08:00
Ilya Margolin
2bbe5732b7
Add node label to etcd metrics ()
targetRef on endpoints surfaces as
__meta_kubernetes_endpoint_address_target_kind/__meta_kubernetes_endpoint_address_target_name
in prometheus and gets converted to the label `node` by
prometheus-operator
2022-01-31 06:08:23 -08:00
Kenichi Omichi
f80fd24a55
Fix risky-file-permissions ()
When running ansible-lint directly, we can see a lot of warning
message like

  risky-file-permissions File permissions unset or incorrect

This fixes the warning messages.
2022-01-09 01:51:12 -08:00
Florian Ruynat
6abae713f7
Update helm / kube-router and coredns ()
* Update kube-router to 1.4.0

* Update Helm to 3.7.2

* Up coredns to 1.8.6 when k8s is 1.23.x
2022-01-06 12:14:27 -08:00
Max Gautier
cb54eb40ce
Use a variable for standardizing kubectl invocation ()
* Add kubectl variable

* Replace kubectl usage by kubectl variable in roles

* Remove redundant --kubeconfig on kubectl usage

* Replace unecessary shell usage with command
2022-01-05 02:26:32 -08:00
toplordsaito
9afca43807
change dns upstream condition for coredns ()
upstream_dns_servers should change corefile config even resolvconf_mode=docker_dns
2021-12-06 02:46:32 -08:00
ishizuka
7e1873d927
DeprecationWarning occurs when indentfirst=None is specified in coredns-config.yml.j2 () 2021-11-24 08:56:21 -08:00
Mathieu Parent
0263c649f4
Allow to scrape etcd metrics using a service ()
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
2021-11-17 23:53:01 -08:00
Cristian Calin
039205560a
nodelocaldns: allow a secondary pod for nodelocaldns for local-HA ()
* nodelocaldns: allow a secondary pod for nodelocaldns for local-HA

* CI: add job to test nodelocaldns secondary
2021-11-09 09:57:47 -08:00
Sébastien Masset
7c3369e1b9
Fixed default DNS min replica for single node clusters () 2021-10-26 16:03:46 -07:00
Cristian Calin
6a5b87dda4
netchecker: update images to 1.2.2 from Mirantis ()
* netchecker: update images to 1.2.2 from Mirantis which is slightly less ancinet than the l23networks images

* Netchecker: use local etcd instead of kubernetes v1beta1 crds which are no longer suported by kube 1.22+
2021-10-19 10:17:04 -07:00
Florian Ruynat
c8d7f000c9
Remove k8s hooks for versions prior to 1.20 () 2021-09-22 10:32:01 -07:00
Cristian Calin
7516fe142f
Move to Ansible 3.4.0 ()
* Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10

* Docs: add a note about ansible upgrade post 2.9.x

* CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures

* Ansible: use newer ansible-lint

* Fix ansible-lint 5.0.11 found issues

* syntax issues
* risky-file-permissions
* var-naming
* role-name
* molecule tests

* Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+

* Pin ansible-base to 2.10.11 to get package fix on RHEL8
2021-07-12 00:00:47 -07:00
Cristian Calin
bd6d810d0a
nodelocaldns: allow binding metrics address to host IP () 2021-06-29 05:28:41 -07:00
efrikin
7db76f8809
Add nodeSelctor for other services and node labels before CNI setup () 2021-05-25 13:40:43 -07:00
Cristian Calin
e9870b8d25
add support for using ansible 2.10.x for deploying kubespray ()
* add support for using ansible 2.10.x for deploying kubespray

* move dns-autoscaler-clusterrole{binding}.yml to files/ folder

* note that ansible 2.10 is now experimentally supported

* coredns: move files to templates like before 
2021-05-18 05:39:31 -07:00
Kenichi Omichi
486b223e01
Replace kube-master with kube_control_plane ()
This replaces kube-master with kube_control_plane because of [1]:

  The Kubernetes project is moving away from wording that is
  considered offensive. A new working group WG Naming was created
  to track this work, and the word "master" was declared as offensive.
  A proposal was formalized for replacing the word "master" with
  "control plane". This means it should be removed from source code,
  documentation, and user-facing configuration from Kubernetes and
  its sub-projects.

NOTE: The reason why this changes it to kube_control_plane not
      kube-control-plane is for valid group names on ansible.

[1]: https://github.com/kubernetes/enhancements/blob/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint/README.md#motivation
2021-03-23 17:26:05 -07:00
David Louks
0cc1726781
Remove deletion of coredns deployment. ()
* Add unique annotation on coredns deployment and only remove existing deployment if annotation is missing.

* Ignore errors when gathering coredns deployment details to handle case where it doesn't exist yet

* Remove run_once, deletegate_to and add to when statement
2021-02-09 06:02:40 -08:00
Florian Ruynat
222a77dfe7
Change node-role.kubernetes.io from master to control-plane () 2021-01-21 08:13:03 -08:00
Clicia Scarlet
97ff67e54a
Fix yaml syntax error when use multilines in dns_etchosts () 2020-11-28 08:32:47 -08:00
yelhouti
8bec5beb4b
fix: add tags for set facts nodelocaldns () 2020-10-12 16:47:21 -07:00
Hans Feldt
92b1166dd0
Disable dashboard by default ()
Users should opt in for features and not opt out.
2020-10-11 08:06:47 -07:00
axelgobletbdr
77149e5d89
Fixes : Allow disabling reverse DNS lookups in coredns ()
* created variable to enable/disable reverse dns lookups in coredns

* fixed linting-error in dns-stack.md
2020-09-25 02:33:11 -07:00
Florian Ruynat
a556f8f2bf
Remove deprecated (and removed in 1.19) flag and function --basic-auth-file () 2020-09-11 00:30:14 -07:00
Barry Melbourne
8e2bae0f2a
Fix Ansible Lint warnings (No such file or directory) () 2020-08-26 23:19:10 -07:00
petruha
4cb576da19
Add readiness probe to dns-autoscaler () 2020-07-13 02:50:34 -07:00
Mateus Caruccio
1892cd65f6
Add support for dns_etchosts () 2020-06-26 00:03:31 -07:00
Florian Ruynat
19d4b5dd04
Update various dependencies () 2020-06-16 01:08:03 -07:00
Florian Ruynat
101686c665
Remove outdated CriticalAddonsOnly toleration and critical-pod annotation () 2020-06-09 05:23:30 -07:00
jeanfabrice
be3283c9ba
Fix conflicting clusterIP fact between coredns and nodelocaldns () 2020-05-29 04:27:15 -07:00
Wang Zhen
d62836f2ab
Replace seccomp profile docker/default with runtime/default ()
Signed-off-by: Wang Zhen <lazybetrayer@gmail.com>
2020-05-27 14:02:02 -07:00
petruha
9ce7fc9b2c
Create namespace when dashboard deployment uses customized namespace. ()
* Create namespace when dashboard deployment uses customized namespace.

* Fix syntax.
2020-05-10 11:38:02 -07:00
Florian Ruynat
b6243bfc1c
Fix ImagePullPolicy missing variable usage () 2020-05-10 11:37:50 -07:00
Victor Morales
367566adaa
Fix kubernetes-dashboard template identation ()
The 98e7a07fba commit udpates the
dashboard version to 2.0.0 but it enable skip login flag wasn't
updated. This change updates its identation to avoid issues when
dashboard_skip_login is enabled.
2020-05-06 11:17:17 -07:00
Joel Seguillon
db5f83f8c9
update dashboard access doc for 2.0.x ()
* update dashboard access doc for 2.0.x

* make metrics scrapper system-cluster-critical
2020-04-29 07:20:25 -07:00
Lee Spottiswood
a3d3f27aaa
allow dns autoscaler limits to be specified via variables () 2020-04-28 23:34:25 -07:00
Joel Seguillon
98e7a07fba
bump to dashboard 2.0.0 with metrics scrapper support ()
* bump to dashboard 2.0 rc6 with metrics scrapper

* fix missing yaml seperator making Replicaset complaining about missing ServiceAccount

* unwanted legay gross hack forgot to remove before

* no  need namespace on CrBinding

* bump to 2.0.0 release

* remove dashboard_metrics_scrapper_enabled
2020-04-25 03:55:28 -07:00
Florian Ruynat
1c187e9729
Downgrade coredns to 1.6.5 due to upgrade errors while migrating coredns configmap (Corefile) () 2020-04-22 05:27:52 -07:00