Mikael Johansson
040dda37ed
Add comment clarifying network allocation and sizes ( #6607 )
...
* Add comment from roles/kubespray-defaults/defaults/main.yaml clarifying network allocation and sizes
Signed-off-by: Mikael Johansson <mik.json@gmail.com>
* Rewrite of the comment and added new examples
Signed-off-by: Mikael Johansson <mik.json@gmail.com>
2020-09-10 03:49:44 -07:00
Maxim Pogozhiy
0553814b4f
Add selectable dns policy for kube-router ( #6586 )
2020-09-04 04:53:41 -07:00
nic0las
f59d3fc4a3
Deviceroutesourceaddress ( #6508 )
...
* add FELIX_DEVICEROUTESOURCEADDRESS calico option
* add calico_use_default_route_src_ipaddr option
add calico_use_default_route_src_ipaddr option to use FELIX_DEVICEROUTESOURCEADDRESS calico option
* Update k8s-net-calico.yml
2020-08-27 02:07:01 -07:00
Sulochan Acharya
36924b63dc
Allow webhook authorization ( #6502 )
2020-08-24 06:29:41 -07:00
Florian Ruynat
142b9e1eff
Update k8s hashes and set default version to 1.18.8 ( #6532 )
2020-08-21 00:09:39 -07:00
Mike Williams
e72dbf3dfc
Option for MetalLB to talk BGP ( #6383 )
...
* Option for MetalLB to talk BGP
* Check for BGP peers when metallb_protocol is bgp
* README clarification
* Commented values as documentation only in the sample inventory
* layer 2 or BGP, not both
2020-08-05 01:52:40 -07:00
Florent Monbillard
924cc11af6
Upgrade to kubernetes 1.18.6 ( #6405 )
...
- Add 1.17.9 and 1.16.13 SHAs
2020-07-29 14:54:09 -07:00
Michal Skalski
70edccf7e0
Newer version of Local Path Provisioner in samples ( #6437 )
...
To make it less confusing for users who uncommented whole block of
local path provisioner [1] the samples should point at least to
version 0.0.3 which supports helper image [2] configured by
local_path_provisioner_helper_image_repo variable. As 0.0.3 is a bit old
samples could point to current newest release 0.0.14.
[1] 45a177e2a0 (commitcomment-38625688)
[2] 315d67fa8c
2020-07-22 00:08:11 -07:00
Florian Ruynat
f515898cb5
Update hashes and set default version to 1.18.5 ( #6335 )
2020-06-30 02:00:05 -07:00
Kenichi Omichi
25bab0e976
Change MetalLB to one of addons ( #6238 )
...
This changes MetalLB contrib to one of addons for deploying MetalLB with
Kubernetes cluster deployment. By the default, Kubespray doesn't deploy
MetalLB addon.
2020-06-29 15:11:59 -07:00
Florian Ruynat
8213b1802b
Update calico to 1.15.0 + minor update to kube-ovn/weave ( #6306 )
2020-06-29 14:39:58 -07:00
Samuel Liu
c29b21717d
Add event-ttl duration ( #6310 )
...
* Add event-ttl duration
* Fix wrong location
2020-06-24 08:15:17 -07:00
Alvaro
80d16e6c91
Support for Ambassador OSS as an Ingress ( #6135 )
...
Support for Ambassador OSS as an Ingress Controller when
settings `ingress_ambassador_enabled: true`.
Signed-off-by: Alvaro Saurin <alvaro.saurin@gmail.com>
2020-06-24 07:39:17 -07:00
Pasquale Toscano
8f5c4dcd2e
Add support for Kata Containers ( #6256 )
...
* Install Kata Containers as additional container runtime
* Create RuntimeClasses for Kata Containers
* Updated Vagrant to optionally run without Docker as container manager
* Updated Vagrant to optionally use Libvirt nested virtualization
* Add Kata Containers documentation
* Fix lint errors
* Add kata_containers_enabled to kubespray-defaults
* Fixed typo error
* Fixed typo error
2020-06-22 00:28:39 -07:00
Florian Ruynat
eeb77369cb
Update hashes and set default to 1.18.4 ( #6285 )
2020-06-18 06:30:19 -07:00
Samuel Liu
dba645421f
ADD tls cipher suites support ( #6024 )
...
* ADD tls cipher suites support
yaml lint
yamllint
* update test case
* update test case
2020-06-16 04:10:05 -07:00
Florian Ruynat
b2a0b649fd
Add new Kubernetes version hashes and set default to 1.18.3 ( #6173 )
2020-05-28 01:02:03 -07:00
Florian Ruynat
c06f482901
Update default kubernetes version to 1.18.2 ( #6064 )
2020-05-06 11:17:09 -07:00
Florian Ruynat
3ff6a2e7ff
Update default (erroneous) backend value for calico ( #6031 )
2020-04-27 00:03:39 -07:00
Florian Ruynat
299e35ebe4
Cleanup unused/erroneous variables ( #6003 )
2020-04-24 01:54:07 -07:00
Florian Ruynat
49bd208026
Update hashes (1.18.2/1.17.5/1.16.9) and set default to 1.17.5 ( #5967 )
2020-04-17 06:55:07 -07:00
Florian Ruynat
83fe607f62
Cleanup deprecated labels beta.kubernetes.io/arch and beta.kubernetes.io/os ( #5964 )
2020-04-17 05:51:06 -07:00
Pasquale Toscano
00efc63f74
Customize PodSecurityPolicies from inventory ( #5920 )
...
* Customize PodSecurityPolicies from inventory
* Fixed yaml indentation
2020-04-15 03:18:02 -07:00
Ryler Hockenbury
b061cce913
Allow configureable vni and port for flannel overlay ( #5939 )
2020-04-15 03:14:02 -07:00
MikeG
45a177e2a0
add local-path-provosioner helper image def ( #5817 )
2020-04-07 23:51:43 -07:00
spaced
0c51352a74
remove unused kubelet options ( #5903 )
2020-04-07 11:51:44 -07:00
Ali Sanhaji
937adec515
Azure Disk CSI deployment ( #5833 )
...
* Azure Disk CSI deployment
* Mention Azure CSI support
* Fix: remove unnecessary file
* Typo in documentation
* Add newline to end of file
2020-04-01 00:53:27 -07:00
Ali Sanhaji
484df62c5a
GCP Persistent Disk CSI Driver deployment ( #5857 )
...
* GCP Persistent Disk CSI Driver deployment
* Fix MD lint
* Fix Yaml lint
2020-03-31 00:06:40 -07:00
Florian Ruynat
09308d6125
Upgrade to Kubernetes 1.174 ( #5628 )
...
* Upgrade to Kubernetes 1.17.4 - change defaults
* Update ci jobs to previous k8s release (will fix them afterward)
2020-03-27 07:40:23 -07:00
Ali Sanhaji
a8a05a21a4
AWS EBS CSI implementation ( #5549 )
...
* AWS EBS CSI implementation
* Fixing image repos
* Add OWNERS file
* Fix expressions
* Add csi-driver tag
* Add AWS EBS prefix to variables
* Add AWS EBS CSI Driver documentation
2020-03-25 13:10:25 -07:00
Pasquale Toscano
4b5299bb7a
Add variables to configure Containerd default runtime, untrusted runt… ( #5497 )
...
* Add variables to configure Containerd default runtime, untrusted runtime and additional runtimes
* Add containerd settings to sample inventory
* Empty commit
2020-03-16 03:48:36 -07:00
Michael Shnit
29128eb316
Add AWS ALB Ingress Controller ( #5489 )
...
* Add AWS ALB Ingress Controller Ansible role
* remove trailing spaces
* update owners
* ALB ingress: update rbac clusterrole and remove role
* Move alb-ingress role to roles/kubernetes-apps/ingress_controller folder
2020-03-16 02:58:35 -07:00
hfinucane
158d998ec4
Support configuring the Calico iptables insert mode ( #5473 )
...
* Support configuring the insert mode
Defaults to the upstream default https://docs.projectcalico.org/v3.9/reference/felix/configuration
so nothing should change for existing deployments.
This allows coexistence with other firewall management technologies.
* Add a note to the sample config
2020-03-14 06:36:35 -07:00
bozzo
d69db3469e
Add external zones in nodelocaldns configuration ( #5591 )
...
Allows to configure additionnal zone for domains not resolved by `upstream_dns_servers`.
2020-03-14 06:26:34 -07:00
Florent Monbillard
ca73e29ec5
Use k8s.gcr.io for kubernetes related images ( #5764 )
...
* Use k8s.gcr.io for kubernetes related images
* Use k8s.gcr.io in inventory sample
2020-03-13 14:41:48 -07:00
Florent Monbillard
0330442c63
Kubernetes 1.16.8 ( #5770 )
...
* Kubernetes 1.16.8
* Use 1.16.8 in sample inventory and kubespray-defaults
2020-03-13 13:41:47 -07:00
Sergey
e60b9f796e
add calico VXLAN mode, update docs and vars in sample inventory ( #5731 )
...
* calico VXLAN mode
* check vars if calico backend defined
2020-03-12 01:20:37 -07:00
Thomas Ziegler
765d907ea1
added reference to calico_ip_auto_method in sample inventory group vars ( #5612 )
2020-02-13 13:18:36 -08:00
Fabiano Tessarolo
16fd2e5d68
Fix etcd deployment type variable location ( #5587 )
...
On deployments types where etcd server is splitted from Kube Master, the deployment fails since it cannot find the variable.
2020-02-07 02:17:43 -08:00
Florian Ruynat
f1025dce4e
Update to hashes and default version (1.15.8 / 1.16.5 / 1.17.1) ( #5564 )
2020-01-23 03:54:49 -08:00
Matthew Mosesohn
b35b816287
Raise typha max connections to 300 ( #5527 )
...
Raises limit from 100 to 300 because the default is far too low
and the pod can handle 300 with the given resources.
Change-Id: Ib1eec10da3d09d198933fcfe87291587e58d7cdb
2020-01-10 00:24:33 -08:00
Etienne Champetier
2c2ffa846c
Calico: update to 3.11.1, allow to configure calico_iptables_backend ( #5514 )
...
I've tested this update by deploying a containerd / etcd cluster on top CentOS7,
MetalLB + NGINX Ingress. Upgrade using upgrade-cluster.yml
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
2020-01-08 02:27:40 -08:00
bozzo
c0b262a22a
Add kube-router configuration to enable metrics exposure ( #5416 )
2019-12-16 04:35:36 -08:00
ooneko
2a9aead50e
Set kube_image_repo use {{ gcr_image_repo }} ( #5314 )
...
To aviod repeat "gcr.io" again.
2019-12-09 02:52:02 -08:00
Florian Ruynat
257c20f39e
add 1.16.3 checksums and set new version as default ( #5384 )
2019-11-27 01:29:20 -08:00
Julien Pervillé
0200138a5d
Pass ingress_nginx_extra_args
when deploying the nginx-ingress addon ( #5321 )
2019-11-11 03:51:40 -08:00
Matthew Mosesohn
a1fff30bd9
Generate TLS certs for calico typha ( #5258 )
...
* Generate TLS certs for calico typha
Change-Id: I3883f49c124c52d0fc5b900ca2b44e4e2ed0d707
* Add group vars note
Change-Id: I63550dfef616e884efdbd42010a90b2c04c5eb69
2019-10-17 07:02:38 -07:00
Hugo Blom
db33dc6938
Add support for Kubernetes 1.16.2 ( #5272 )
...
* Add support for Kubernetes 1.16.1
* Defaults to 1.16.1
* add 1.16.2 checksums and set new version as default
* correct 1.16.2 checksums and add 1.15.5 checksums
2019-10-16 18:34:38 -07:00
Matthew Mosesohn
a43e0d3f95
Switch to Kubernetes v1.16.0 ( #5189 )
...
* Switch to Kubernetes v1.16.0
Change-Id: I5d6a9528b2d443750fc5e031aff15ad3ffead158
* Fix download localhost cached file path
Change-Id: I65e79b70e3d1b37265ebc60f41b460cf4b0a0d47
* fix kubeadm etcd for v1.16
Change-Id: I6888a00fd48b530a38b0b31c4095492476af42d2
* disable tf packet jobs
Change-Id: I075c4666547fdea4c50ec04864f38e2cfaa79154
* Disable contiv packet jobs. Fix kube-router
Change-Id: I3170e8789e60711d4cee8faf65f2094480b79b8d
* bump sonobuoy version
Change-Id: Ib946905629c7c53ed88f08fb2f41c454457a0097
2019-10-02 02:21:07 -07:00
Etienne Champetier
81cb302399
MetalLB: fail if kube_proxy_strict_arp is false ( #5180 )
...
When using IPVS, kube_proxy_strict_arp = true is required
https://github.com/danderson/metallb/issues/153#issuecomment-518651132
Add kube_proxy_strict_arp to inventory/sample
2019-09-26 04:21:06 -07:00