34d0c5c676
Change additional dnsmasq opts: - Adjust caching size and TTL - Disable resolve conf to not create loops - Change dnsPolicy to default (similarly to kubedns's dnsmasq). The ClusterFirst should not be used to not create loops - Disable negative NXDOMAIN replies to be cached - Make its very installation as optional step (enabled by default). If you don't want more than 3 DNS servers, including 1 for K8s, disable it. - Add docs and a drawing to clarify DNS setup. - Fix stdout logs for dnsmasq/kubedns app configs - Add missed notifies to resolvconf -u handler - Fix idempotency of resolvconf head file changes Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
58 lines
1.6 KiB
YAML
58 lines
1.6 KiB
YAML
---
|
|
- name: ensure dnsmasq.d directory exists
|
|
file:
|
|
path: /etc/dnsmasq.d
|
|
state: directory
|
|
|
|
- name: ensure dnsmasq.d-available directory exists
|
|
file:
|
|
path: /etc/dnsmasq.d-available
|
|
state: directory
|
|
|
|
- name: Write dnsmasq configuration
|
|
template:
|
|
src: 01-kube-dns.conf.j2
|
|
dest: /etc/dnsmasq.d-available/01-kube-dns.conf
|
|
mode: 0755
|
|
backup: yes
|
|
|
|
- name: Stat dnsmasq configuration
|
|
stat: path=/etc/dnsmasq.d/01-kube-dns.conf
|
|
register: sym
|
|
|
|
- name: Move previous configuration
|
|
command: mv /etc/dnsmasq.d/01-kube-dns.conf /etc/dnsmasq.d-available/01-kube-dns.conf.bak
|
|
changed_when: False
|
|
when: sym.stat.islnk is defined and sym.stat.islnk == False
|
|
|
|
- name: Enable dnsmasq configuration
|
|
file:
|
|
src: /etc/dnsmasq.d-available/01-kube-dns.conf
|
|
dest: /etc/dnsmasq.d/01-kube-dns.conf
|
|
state: link
|
|
|
|
- name: Create dnsmasq manifests
|
|
template: src={{item.file}} dest=/etc/kubernetes/{{item.file}}
|
|
with_items:
|
|
- {file: dnsmasq-ds.yml, type: ds}
|
|
- {file: dnsmasq-svc.yml, type: svc}
|
|
register: manifests
|
|
when: inventory_hostname == groups['kube-master'][0]
|
|
|
|
- name: Start Resources
|
|
kube:
|
|
name: dnsmasq
|
|
namespace: kube-system
|
|
kubectl: "{{bin_dir}}/kubectl"
|
|
resource: "{{item.item.type}}"
|
|
filename: /etc/kubernetes/{{item.item.file}}
|
|
state: "{{item.changed | ternary('latest','present') }}"
|
|
with_items: "{{ manifests.results }}"
|
|
when: inventory_hostname == groups['kube-master'][0]
|
|
|
|
- name: Check for dnsmasq port (pulling image and running container)
|
|
wait_for:
|
|
host: "{{dns_server}}"
|
|
port: 53
|
|
delay: 5
|
|
when: inventory_hostname == groups['kube-node'][0]
|