paulbsd/paulbsd-salt
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

updated kubernetes state

Browse Source
This commit is contained in:
Paul 2022-10-01 20:08:12 +02:00
parent d2997b02ad
commit 2e450d14c0
10 changed files with 71 additions and 32 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
states/kubernetes/config.sls
View File

@ -1,2 +1,7 @@
--- ---
{%- from "kubernetes/map.jinja" import kubernetes with context %} {%- from "kubernetes/map.jinja" import kubernetes with context %}
{% for name in ['iptables', 'ip6tables'] %}
kubernetes-alternatives-{{ name }}:
cmd.run:
- name: "update-alternatives --set {{ name }} /usr/sbin/{{ name }}-legacy"
{% endfor %}

13
states/kubernetes/containerd.sls Normal file
View File

@ -0,0 +1,13 @@
---
{%- from "kubernetes/map.jinja" import kubernetes with context %}
kubernetes-containerd-conf:
file.managed:
- name: /etc/containerd/config.toml
- source: salt://kubernetes/templates/config.toml.j2
- template: jinja
- watch_in:
- service: kubernetes-containerd-service
kubernetes-containerd-reset-cni:
file.absent:
- name: /etc/cni/net.d/10-flannel.conflist

4
states/kubernetes/defaults.yaml
View File

@ -10,3 +10,7 @@ kubernetes:
- ip_vs_wrr - ip_vs_wrr
- ip_vs_sh - ip_vs_sh
- nf_conntrack - nf_conntrack
sysctls:
net.ipv4.ip_forward: 1
net.ipv6.conf.all.forwarding: 1
net.ipv6.conf.all.disable_ipv6: 0

6
states/kubernetes/init.sls
View File

@ -2,4 +2,8 @@
include: include:
- repos - repos
- .install - .install
- .prepare - .containerd
- .sysctl
- .modules
- .config
- .service

8
states/kubernetes/install.sls
View File

@ -3,8 +3,12 @@
kubernetes-install-pkgs: kubernetes-install-pkgs:
pkg.installed: pkg.installed:
- pkgs: - pkgs:
- kubelet - containerd.io
- cri-tools
- iptables
- kubeadm - kubeadm
- kubectl - kubectl
- containerd - kubelet
- kubernetes-cni
- nftables
- wireguard-tools - wireguard-tools

13
states/kubernetes/modules.sls Normal file
View File

@ -0,0 +1,13 @@
---
{%- from "kubernetes/map.jinja" import kubernetes with context %}
{% for module in kubernetes.required_modules %}
kubernetes-modules-load-{{ module }}:
cmd.run:
- name: modprobe {{ module }}
{% endfor %}
kubernetes-modules-loadatstartup:
file.managed:
- name: /etc/modules-load.d/kubernetes.conf
- source: salt://kubernetes/templates/modules.j2
- template: jinja

29
states/kubernetes/prepare.sls
View File

@ -1,29 +0,0 @@
---
{%- from "kubernetes/map.jinja" import kubernetes with context %}
kubernetes-prepare-containerd-conf:
file.managed:
- name: /etc/containerd/config.toml
- source: salt://kubernetes/templates/config.toml.j2
- template: jinja
kubernetes-prepare-reset-cni:
file.absent:
- name: /etc/cni/net.d/10-flannel.conflist
{% for module in kubernetes.required_modules %}
kubernetes-modules-load-{{ module }}:
cmd.run:
- name: modprobe {{ module }}
{% endfor %}
kubernetes-modules-loadatstartup:
file.managed:
- name: /etc/sysctl.d/10-kube.conf
- source: salt://kubernetes/templates/sysctl.conf.j2
- template: jinja
{% for name in ['iptables', 'ip6tables'] %}
kubernetes-alternatives-{{ name }}:
cmd.run:
- name: "update-alternatives --set {{ name }} /usr/sbin/{{ name }}-legacy"
{% endfor %}

8
states/kubernetes/service.sls
View File

@ -1,2 +1,10 @@
--- ---
{%- from "kubernetes/map.jinja" import kubernetes with context %} {%- from "kubernetes/map.jinja" import kubernetes with context %}
kubernetes-containerd-service:
service.running:
- name: containerd
kubernetes-systemd-resolved:
service.running:
- name: systemd-resolved
- enable: true

17
states/kubernetes/sysctl.sls Normal file
View File

@ -0,0 +1,17 @@
---
{%- from "kubernetes/map.jinja" import kubernetes with context %}
kubernetes-sysctls:
file.keyvalue:
- name: /etc/sysctl.conf
- key_values:
{%- for k,v in kubernetes.sysctls.items() %}
{{ k }}: {{ v }}
{%- endfor %}
- separator: '='
- uncomment: '# '
- key_ignore_case: True
- append_if_not_found: True
kubernetes-sysctl-command:
cmd.run:
- name: "sysctl --system"

0
states/kubernetes/templates/sysctl.conf.j2 → states/kubernetes/templates/modules.j2
View File