summaryrefslogtreecommitdiff
path: root/inventory/group_vars/k8s-lwl/main.yml
blob: 821e083cc281f202618df1cdce349147b72633db (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
---
docker_pkg_provider: docker-com
docker_pkg_name: docker-ce

kubernetes_version: 1.17.5
kubernetes_container_runtime: docker
kubernetes_network_plugin: kubeguard

kubernetes:
  cluster_name: lndwrbl-live

  dedicated_master: False
  api_extra_sans:
  - 178.63.180.137
  - k8s-master.lndwrbl.live

  pod_ip_range: 172.18.0.0/16
  pod_ip_range_size: 24
  service_ip_range: 172.18.192.0/18


kubernetes_secrets:
  encryption_config_keys: "{{ vault_kubernetes_encryption_config_keys }}"


kubeguard:
  ## node_index must be in the range between 1 and 190 -> 189 hosts possible
  ##
  ## hardcoded hostnames are not nice but if we do this via host_vars
  ## the info is spread over multiple files and this makes it more diffcult
  ## to find mistakes, so it is nicer to keep it in one place...
  node_index:
    lw-live-01: 1
    lw-live-02: 2
    lw-live-03: 3
    lw-live-00: 100
    lw-live-dist0: 110
    lw-dione: 111
    lw-helene: 112
    lw-master: 127

  direct_net_zones:
    encoder:
      transfer_net: 172.18.191.0/24
      node_interface:
        lw-dione: eno2
        lw-helene: eno2

kubernetes_overlay_node_ip: "{{ kubernetes.pod_ip_range | ipsubnet(kubernetes.pod_ip_range_size, kubeguard.node_index[inventory_hostname]) | ipaddr(1) | ipaddr('address') }}"

kubernetes_metrics_server_version: 0.3.7