better fedora setup
This commit is contained in:
@@ -9,13 +9,20 @@
|
||||
mode: 0755
|
||||
|
||||
|
||||
- name: Create k3s config directory
|
||||
file:
|
||||
path: "/var/config/k3s"
|
||||
state: directory
|
||||
mode: 0755
|
||||
|
||||
|
||||
- name: Create k3s config file
|
||||
template:
|
||||
src: ../templates/config.yml.j2
|
||||
dest: "/home/{{ ansible_user }}/k3s_config.yml"
|
||||
dest: "/var/config/k3s/config.yml"
|
||||
|
||||
|
||||
- name: Only run uninstall script if it exists
|
||||
- name: Only run uninstall script if it exists (clean install)
|
||||
become: true
|
||||
shell: /usr/local/bin/k3s-uninstall.sh
|
||||
args:
|
||||
@@ -23,7 +30,7 @@
|
||||
|
||||
|
||||
- name: Execute k3s install script providing a config.yml
|
||||
shell: "/tmp/install-k3s.sh --config /home/{{ ansible_user }}/k3s_config.yml server"
|
||||
shell: "/tmp/install-k3s.sh --config /var/config/k3s/config.yml server"
|
||||
|
||||
|
||||
- name: Copy kube config file back to local machine
|
||||
|
||||
@@ -1,3 +1,19 @@
|
||||
- name: Install required packages
|
||||
ansible.builtin.package:
|
||||
name: "{{ item }}"
|
||||
state: present
|
||||
loop:
|
||||
- firewalld
|
||||
- curl
|
||||
|
||||
|
||||
- name: Enable and start firewalld
|
||||
ansible.builtin.service:
|
||||
name: firewalld
|
||||
state: started
|
||||
enabled: yes
|
||||
|
||||
|
||||
- name: Set firewalld rule for required ports
|
||||
firewalld:
|
||||
port: "{{ item }}"
|
||||
@@ -5,6 +21,8 @@
|
||||
state: enabled
|
||||
immediate: yes
|
||||
loop:
|
||||
- 22/tcp # ssh
|
||||
# k3s ports
|
||||
- 2379-2380/tcp
|
||||
- 6443/tcp
|
||||
- 8472/udp
|
||||
@@ -12,8 +30,9 @@
|
||||
# tcp and udb for metallb
|
||||
- 7946/udp
|
||||
- 7946/tcp
|
||||
|
||||
- name: Set firewalld rule for rquired zones
|
||||
|
||||
|
||||
- name: Set firewalld rule for required zones
|
||||
firewalld:
|
||||
zone: trusted
|
||||
source: "{{ item }}"
|
||||
@@ -23,13 +42,3 @@
|
||||
loop:
|
||||
- 10.42.0.0/16 # pods
|
||||
- 10.43.0.0/16 # services
|
||||
|
||||
- name: Update hostname to be unique
|
||||
ansible.builtin.replace:
|
||||
path: /etc/hosts
|
||||
regexp: '(\s+)localhost(\s+.*)?$'
|
||||
replace: '\{{ inventory_hostname }}\2'
|
||||
|
||||
- name: Set hostname
|
||||
ansible.builtin.hostname:
|
||||
name: "{{ inventory_hostname }}"
|
||||
|
||||
@@ -4,9 +4,8 @@ disable:
|
||||
- traefik
|
||||
- servicelb
|
||||
|
||||
{% if ansible_host == master_ip %}
|
||||
{% if inventory_hostname == ansible_play_hosts[0] %}
|
||||
cluster-init: true
|
||||
{% else %}
|
||||
server: https://{{ master_ip }}:6443
|
||||
server: https://{{ hostvars['k3s-1'].ansible_default_ipv4.address }}:6443
|
||||
{% endif %}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user