Kubernetes Build: Difference between revisions

From Wizard Rants
Jump to navigation Jump to search
← Older editNewer edit →
VisualWikitext
mNo edit summary
Line 1: Line 1:
Kubernetes
===Physical Build Out===


=== Physical Build Out ===
'''Physical Information'''<br>
 
Physical Node VLAN 50<br>
'''Physical Information'''</br>
Physical Node VLAN 50</br>
Physical Node Network 10.0.50.0/24
Physical Node Network 10.0.50.0/24


'''Kubernetes Network'''</br>
'''Kubernetes Network'''<br>
Pod Network CIDR 10.60.0.0/16
Pod Network CIDR 10.60.0.0/16


==== Node Build Out ====
====Node Build Out====
{| class="wikitable sortable"
{| class="wikitable sortable"
|-
|-
! Physical Node !! US Node Name !! EU Node Name !! Etcd Node !! NLB Node
!Physical Node!!US Node Name!!EU Node Name!!Etcd Node!!NLB Node
|-
|-
| j || us-ctrl-01 || eu-wrk-01 || eu-etcd-01 || us-nlb-01
|j||us-ctrl-01||eu-wrk-01||eu-etcd-01||us-nlb-01
|-
|-
| a || us-ctrl-02 || eu-wrk-02 || eu-etcd-02 || us-nlb-02
|a||us-ctrl-02||eu-wrk-02||eu-etcd-02||us-nlb-02
|-
|-
| r || us-wrk-01 || eu-wrk-03 || eu-etcd-03 || us-nlb-03
|r||us-wrk-01||eu-wrk-03||eu-etcd-03||us-nlb-03
|-
|-
| v || us-wrk-02 || eu-wrk-04 || us-etcd-01 || eu-nlb-01
|v||us-wrk-02||eu-wrk-04||us-etcd-01||eu-nlb-01
|-
|-
| i || us-wrk-03 || eu-ctrl-01 || us-etcd-02 || eu-nlb-02
|i||us-wrk-03||eu-ctrl-01||us-etcd-02||eu-nlb-02
|-
|-
| s || us-wrk-04 || eu-ctrl-02 || us-etcd-03 || eu-nlb-03
|s||us-wrk-04||eu-ctrl-02||us-etcd-03||eu-nlb-03
|}
|}


==== HA Config for Etcd & K8S Masters ====
====HA Config for Etcd & K8S Masters====
Two virtual IP addresses, 10.1.10.5 and 10.1.10.6, are shared between us-nlb-01 and us-nlb-02.
Two virtual IP addresses, 10.1.10.5 and 10.1.10.6, are shared between us-nlb-01 and us-nlb-02.


10.1.10.5 is for usage as the Etcd load-balanced IP address</br>
10.1.10.5 is for usage as the Etcd load-balanced IP address<br>
10.1.10.6 is for usage as the Kubernetes API endpoint
10.1.10.6 is for usage as the Kubernetes API endpoint


=== Kubernetes Installation ===
===Kubernetes Installation===


[[Certificate Authority]]</br>
[[Certificate Authority]]<br>
[[Kubernetes Config Files]]</br>
[[Kubernetes Config Files]]<br>
[[Data Encryption]]</br>
[[Data Encryption]]<br>
[[Bootstrapping Etcd]]</br>
[[Bootstrapping Etcd]]<br>
[[Bootstrapping K8S Controllers]]</br>
[[Bootstrapping K8S Controllers]]<br>
[[Bootstrapping K8S Workers]]</br>
[[Bootstrapping K8S Workers]]<br>
[[Configure Kubectl]]</br>
[[Configure Kubectl]]<br>
[[Installing Cilium / Network Routing]]</br>
[[Installing Cilium / Network Routing]]<br>
[[Installing CoreDNS]]</br>
[[Installing CoreDNS]]<br>
[[Kubernetes Terms]]</br>
[[Kubernetes Terms]]<br>


=== Building Upon Kubernetes ===
===Building Upon Kubernetes===
CNI Networking : [[Cilium]] </br>
CNI Networking : [[Cilium]] <br>
Service Mesh : [https://istio.io Istio] </br>
Service Mesh : [https://istio.io Istio] <br>
LoadBalancing : [https://metallb.universe.tf MetalLB]
LoadBalancing : [https://metallb.universe.tf MetalLB]


=== Services To Deploy ===
===Services To Deploy===


[https://www.vaultproject.io Vault]
[https://www.vaultproject.io Vault]
Line 64: Line 62:
[https://grafana.com grafana]
[https://grafana.com grafana]


=== Additional Elements ===
===Additional Elements===


[http://Harborhttps://goharbor.io Harbor]
[http://Harborhttps://goharbor.io Harbor]

Revision as of 05:58, 1 July 2020

Physical Build Out

Physical Information
Physical Node VLAN 50
Physical Node Network 10.0.50.0/24

Kubernetes Network
Pod Network CIDR 10.60.0.0/16

Node Build Out

Physical Node US Node Name EU Node Name Etcd Node NLB Node
j us-ctrl-01 eu-wrk-01 eu-etcd-01 us-nlb-01
a us-ctrl-02 eu-wrk-02 eu-etcd-02 us-nlb-02
r us-wrk-01 eu-wrk-03 eu-etcd-03 us-nlb-03
v us-wrk-02 eu-wrk-04 us-etcd-01 eu-nlb-01
i us-wrk-03 eu-ctrl-01 us-etcd-02 eu-nlb-02
s us-wrk-04 eu-ctrl-02 us-etcd-03 eu-nlb-03

HA Config for Etcd & K8S Masters

Two virtual IP addresses, 10.1.10.5 and 10.1.10.6, are shared between us-nlb-01 and us-nlb-02.

10.1.10.5 is for usage as the Etcd load-balanced IP address
10.1.10.6 is for usage as the Kubernetes API endpoint

Kubernetes Installation

Certificate Authority
Kubernetes Config Files
Data Encryption
Bootstrapping Etcd
Bootstrapping K8S Controllers
Bootstrapping K8S Workers
Configure Kubectl
Installing Cilium / Network Routing
Installing CoreDNS
Kubernetes Terms

Building Upon Kubernetes

CNI Networking : Cilium
Service Mesh : Istio
LoadBalancing : MetalLB

Services To Deploy

Vault

Prometheus

Fluentd

elasticsearch

grafana

Additional Elements

Harbor

Rook

GitLab

jaeger

Open Policy Agent

Retrieved from "https://wiki.8bitwizard.net/index.php?title=Kubernetes_Build&oldid=105"