lendwirbel: initial install of kubernetes cluster

1 files changed, 48 insertions, 0 deletions

diff --git a/inventory/group_vars/k8s-lwl/main.yml b/inventory/group_vars/k8s-lwl/main.yml
new file mode 100644
index 00000000..e06cb665
--- /dev/null
+++ b/inventory/group_vars/k8s-lwl/main.yml
@@ -0,0 +1,48 @@
+---
+docker_pkg_provider: docker-com
+docker_pkg_name: docker-ce
+
+kubernetes_version: 1.17.5
+kubernetes_container_runtime: docker
+kubernetes_network_plugin: kubeguard
+
+kubernetes:
+  cluster_name: lndwrbl-live
+
+  dedicated_master: False
+  api_extra_sans:
+  - 178.63.180.137
+  - k8s-master.lndwrbl.live
+
+  pod_ip_range: 172.18.0.0/16
+  pod_ip_range_size: 24
+  service_ip_range: 172.18.192.0/18
+
+
+kubernetes_secrets:
+  encryption_config_keys: "{{ vault_kubernetes_encryption_config_keys }}"
+
+
+kubeguard:
+  ## node_index must be in the range between 1 and 190 -> 189 hosts possible
+  ##
+  ## hardcoded hostnames are not nice but if we do this via host_vars
+  ## the info is spread over multiple files and this makes it more diffcult
+  ## to find mistakes, so it is nicer to keep it in one place...
+  node_index:
+    # lw-live-01: 1
+    # lw-live-02: 2
+    lw-live-00: 100
+    lw-live-dist0: 110
+    lw-dione: 111
+    lw-helene: 112
+    lw-master: 127
+
+  direct_net_zones:
+    encoder:
+      transfer_net: 172.18.191.0/24
+      node_interface:
+        lw-dione: eno2
+        lw-helene: eno2
+
+kubernetes_overlay_node_ip: "{{ kubernetes.pod_ip_range | ipsubnet(kubernetes.pod_ip_range_size, kubeguard.node_index[inventory_hostname]) | ipaddr(1) | ipaddr('address') }}"