a314d1b546
By setting loadbalancer_apiserver_localhost to false we tell the kubelets to register with 1st master rather than assuming there's an API proxy running on each host. Also Kubespray expects a specific format of inventory because it tries to enforce that hostname matches the invenotry name of the node. This previously resulted in incorrect hostnames being set. And we also open the necessary firewall ports to allow the cluster to communicate. Change-Id: I1c0251be58535d59fe0ec157cb9acaba209e8732
65 lines
1.8 KiB
YAML
65 lines
1.8 KiB
YAML
heat_template_version: ocata
|
|
|
|
description: Triggers a Mistral workflow for the deployment of Kubernetes
|
|
|
|
parameters:
|
|
RoleNetIpMap:
|
|
default: {}
|
|
type: json
|
|
ServiceData:
|
|
default: {}
|
|
description: Dictionary packing service data
|
|
type: json
|
|
ServiceNetMap:
|
|
default: {}
|
|
description: Mapping of service_name -> network name. Typically set
|
|
via parameter_defaults in the resource registry. This
|
|
mapping overrides those in ServiceNetMapDefaults.
|
|
type: json
|
|
DefaultPasswords:
|
|
default: {}
|
|
type: json
|
|
RoleName:
|
|
default: ''
|
|
description: Role name on which the service is applied
|
|
type: string
|
|
RoleParameters:
|
|
default: {}
|
|
description: Parameters specific to the role
|
|
type: json
|
|
EndpointMap:
|
|
default: {}
|
|
description: Mapping of service endpoint -> protocol. Typically set
|
|
via parameter_defaults in the resource registry.
|
|
type: json
|
|
|
|
outputs:
|
|
role_data:
|
|
description: Role data for the Kubernetes Service
|
|
value:
|
|
# This service template essentially tags the nodes that we want
|
|
# as workers. The actual installation is performed in
|
|
# kubernetes-master service template.
|
|
service_name: kubernetes_worker
|
|
config_settings:
|
|
tripleo.kubernetes_worker.firewall_rules:
|
|
'200 kubernetes-worker kubelet':
|
|
dport:
|
|
- 10250
|
|
- 10255
|
|
proto: tcp
|
|
'200 kubernetes-worker external services':
|
|
dport: '30000-32767'
|
|
'200 kubernetes-worker flannel':
|
|
dport:
|
|
- 8285
|
|
- 8472
|
|
proto: udp
|
|
'200 kubernetes-worker calico bgp':
|
|
dport: 179
|
|
proto: tcp
|
|
'200 kubernetes-worker calico ipv4-in-ip':
|
|
proto: ipv4
|
|
upgrade_tasks: []
|
|
step_config: ''
|