build a production kubernetes cluster
- support etcd cluster and TLS, using static pod to init etcd cluster, so monitor and management will be easy
- kubernetes master cluster
- calico etcd TLS, calico using etcd cluster
- dashboard, heapster coreDNS addons
- master haproxy, using static pod
- master keepalived
- join nodes, change kube-proxy configmap, change kubelet config
- cluster health check
- promethus support
- EFK support
- istio support
you need already has sealyun offline package ( default is v1.11.1 > 1.10.3)
copy it to /data dir , if your version is not v1.11.1, you need change hosts config file,
this project upgrade calico to 3.2.0, so it will pull new calico image
docker run --rm -v /data/kube1.11.1.tar.gz:/data/kube1.11.1.tar.gz -it -w /etc/ansible fanux/sealos:latest bash
generate ssh public key (in docker):
mkdir ~/.ssh
cd ~/.ssh
ssh-keygen -t rsa
ssh public key:
cat ~/.ssh/id_rsa.pub
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC7fTirP9zPcx7wIjhsF+Dyu0A2sV5llC8jsmp/xtiyuJirE3mclpNEqgrzHC26f+ckfzwoE0HPU0wDPxbWFl3B0K89EwJSBsVZSZ0VLYnZp0u2JgwCLZzZzKfY0018yoqoL9KHz/68RpqtG2bWVf0/WSj+4hN7xTRpRTtXJHBOQRQBfqVSIcfMBSEnO15buUbDaLol/HvQd0YBrWwafQtMacmBlqDG0Z6/yeY4sTNRVRV2Uu5TeaHfzgYgmY9+NxtvPn8Td6tgZtq7cVU//kSsbzkUzDSD8zsh8kPUm4yljT5tYM1cPFLGM4m/zqAjAZN2YaEdFckJFAQ7TWAK857d root@8682294b9464
cd ~/.ssh
echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC7fTirP9zPcx7wIjhsF+Dyu0A2sV5llC8jsmp/xtiyuJirE3mclpNEqgrzHC26f+ckfzwoE0HPU0wDPxbWFl3B0K89EwJSBsVZSZ0VLYnZp0u2JgwCLZzZzKfY0018yoqoL9KHz/68RpqtG2bWVf0/WSj+4hN7xTRpRTtXJHBOQRQBfqVSIcfMBSEnO15buUbDaLol/HvQd0YBrWwafQtMacmBlqDG0Z6/yeY4sTNRVRV2Uu5TeaHfzgYgmY9+NxtvPn8Td6tgZtq7cVU//kSsbzkUzDSD8zsh8kPUm4yljT5tYM1cPFLGM4m/zqAjAZN2YaEdFckJFAQ7TWAK857d root@8682294b9464" >> authorized_keys
Config your own hosts
# cd /etc/ansible
# vim hosts
# ansible-playbook roles/install-all.yaml
# ansible-playbook roles/install-etcd.yaml