mirror of
https://github.com/kubernetes-sigs/kubespray.git
synced 2025-12-14 22:04:43 +03:00
Merge branch 'master' into add_set_remote_user
This commit is contained in:
Antoine Legrand
Submodule roles/apps/k8s-kubedns updated: b5015aed8f...d6df09a897
@@ -32,7 +32,6 @@
|
|||||||
file:
|
file:
|
||||||
path: /etc/dnsmasq.d
|
path: /etc/dnsmasq.d
|
||||||
state: directory
|
state: directory
|
||||||
when: inventory_hostname in groups['kube-master']
|
|
||||||
|
|
||||||
- name: Write dnsmasq configuration
|
- name: Write dnsmasq configuration
|
||||||
template:
|
template:
|
||||||
@@ -40,17 +39,14 @@
|
|||||||
dest: /etc/dnsmasq.d/01-kube-dns.conf
|
dest: /etc/dnsmasq.d/01-kube-dns.conf
|
||||||
mode: 755
|
mode: 755
|
||||||
backup: yes
|
backup: yes
|
||||||
when: inventory_hostname in groups['kube-master']
|
|
||||||
|
|
||||||
- name: Create dnsmasq pod manifest
|
- name: Create dnsmasq pod manifest
|
||||||
template: src=dnsmasq-pod.yml dest=/etc/kubernetes/manifests/dnsmasq-pod.manifest
|
template: src=dnsmasq-pod.yml dest=/etc/kubernetes/manifests/dnsmasq-pod.manifest
|
||||||
when: inventory_hostname in groups['kube-master']
|
|
||||||
|
|
||||||
- name: Check for dnsmasq port (pulling image and running container)
|
- name: Check for dnsmasq port (pulling image and running container)
|
||||||
wait_for:
|
wait_for:
|
||||||
port: 53
|
port: 53
|
||||||
delay: 5
|
delay: 5
|
||||||
when: inventory_hostname in groups['kube-master']
|
|
||||||
|
|
||||||
- name: check resolvconf
|
- name: check resolvconf
|
||||||
stat: path=/etc/resolvconf/resolv.conf.d/head
|
stat: path=/etc/resolvconf/resolv.conf.d/head
|
||||||
@@ -63,22 +59,34 @@
|
|||||||
|
|
||||||
- name: Add search resolv.conf
|
- name: Add search resolv.conf
|
||||||
lineinfile:
|
lineinfile:
|
||||||
line: search {{ [ 'default.svc.' + dns_domain, 'svc.' + dns_domain, dns_domain ] | join(' ') }}
|
line: "search {{ [ 'default.svc.' + dns_domain, 'svc.' + dns_domain, dns_domain ] | join(' ') }}"
|
||||||
dest: "{{resolvconffile}}"
|
dest: "{{resolvconffile}}"
|
||||||
state: present
|
state: present
|
||||||
insertbefore: BOF
|
insertbefore: BOF
|
||||||
backup: yes
|
backup: yes
|
||||||
follow: yes
|
follow: yes
|
||||||
|
|
||||||
- name: Add all masters as nameserver
|
- name: Add local dnsmasq to resolv.conf
|
||||||
lineinfile:
|
lineinfile:
|
||||||
line: nameserver {{ hostvars[item]['ansible_default_ipv4']['address'] }}
|
line: "nameserver 127.0.0.1"
|
||||||
dest: "{{resolvconffile}}"
|
dest: "{{resolvconffile}}"
|
||||||
state: present
|
state: present
|
||||||
insertafter: "^search.*$"
|
insertafter: "^search.*$"
|
||||||
backup: yes
|
backup: yes
|
||||||
follow: yes
|
follow: yes
|
||||||
with_items: groups['kube-master']
|
|
||||||
|
- name: Add options to resolv.conf
|
||||||
|
lineinfile:
|
||||||
|
line: options {{ item }}
|
||||||
|
dest: "{{resolvconffile}}"
|
||||||
|
state: present
|
||||||
|
regexp: "^options.*{{ item }}$"
|
||||||
|
insertafter: EOF
|
||||||
|
backup: yes
|
||||||
|
follow: yes
|
||||||
|
with_items:
|
||||||
|
- timeout:2
|
||||||
|
- attempts:2
|
||||||
|
|
||||||
- name: disable resolv.conf modification by dhclient
|
- name: disable resolv.conf modification by dhclient
|
||||||
copy: src=dhclient_nodnsupdate dest=/etc/dhcp/dhclient-enter-hooks.d/nodnsupdate mode=u+x backup=yes
|
copy: src=dhclient_nodnsupdate dest=/etc/dhcp/dhclient-enter-hooks.d/nodnsupdate mode=u+x backup=yes
|
||||||
|
|||||||
@@ -1,5 +1,6 @@
|
|||||||
#Listen on all interfaces
|
#Listen on localhost
|
||||||
interface=*
|
bind-interfaces
|
||||||
|
listen-address=127.0.0.1
|
||||||
|
|
||||||
addn-hosts=/etc/hosts
|
addn-hosts=/etc/hosts
|
||||||
|
|
||||||
|
|||||||
@@ -14,7 +14,6 @@
|
|||||||
group={{ kube_cert_group }}
|
group={{ kube_cert_group }}
|
||||||
|
|
||||||
- include: gen_certs.yml
|
- include: gen_certs.yml
|
||||||
run_once: true
|
|
||||||
when: inventory_hostname == groups['kube-master'][0]
|
when: inventory_hostname == groups['kube-master'][0]
|
||||||
|
|
||||||
- include: gen_tokens.yml
|
- include: gen_tokens.yml
|
||||||
|
|||||||
@@ -10,6 +10,7 @@
|
|||||||
notify:
|
notify:
|
||||||
- reload systemd
|
- reload systemd
|
||||||
- restart docker
|
- restart docker
|
||||||
|
- restart kubelet
|
||||||
|
|
||||||
- name: delete default docker bridge
|
- name: delete default docker bridge
|
||||||
command: ip link delete docker0
|
command: ip link delete docker0
|
||||||
@@ -28,3 +29,8 @@
|
|||||||
service:
|
service:
|
||||||
name: docker
|
name: docker
|
||||||
state: restarted
|
state: restarted
|
||||||
|
|
||||||
|
- name: restart kubelet
|
||||||
|
service:
|
||||||
|
name: kubelet
|
||||||
|
state: restarted
|
||||||
|
|||||||
Reference in New Issue
Block a user