Prepare VPS for installing Kubernetes with Kubespray
Question
I have 3 VPS based on Ubuntu 18.04 server and would like to build a kubernetes cluster.
I going to use Kubespray to install the Kubernetes cluster and my questions are:
- How to prepare servers, that they can talk to each other
- How to setup the firewall, that the communication between VPS do not block
- Is it possible to configure the firewall, to open particular port for a particular IP address. For example, only a VPS with 1.11.111.110 is allowed to access the port 10255 on VPS 1.11.111.111.
- What else do I have to consider?
4 answers
solution1
3 2020-01-21 14:32:54
- How to prepare servers, that they can talk to each other
For prepare your Ubuntu instances to install Kubernetes you could check this guide. Use the kubespray documentation to create your cluster.
- How to setup the firewall, that the communication between VPS do not block
- Is it possible to configure the firewall, to open particular port for a particular IP address. For example, only a VPS with 1.11.111.110 is allowed to access the port 10255 on VPS 1.11.111.111.
You could use iptables to make specific rule from you nodes, but I think it will be a challenge to manage theses rules for your service by hand... you could try but it will be really hard to manage and maintain.
What else do I have to consider?
I recommend this setup for understand how to Kubernetes works and for tests purposes, but it is not production-ready, the security of your node could be compromised since you are exposed the Kubernetes ports over the internet.
You can consider also use kubernetes as a single node, take a look is this link.
solution2
2 ACCPTED 2020-01-21 15:47:12
If you are using Kubespray, I strongly recommend just following their guidelines and documentation. They are very comprehensive and detailed.
In its current version, Kubespray is a comprehensive wrapper for kubeadm, adding a number of features missing from kubeadm itself.
In short, preparing hosts is a matter of allowing remote SSH from the control machine (which is usually your own desktop), prepare the inventory carefully reviewing all of its *.yaml files. Once you configure the inventory and install a few python dependencies on the VPS hosts, just fire Kubespray from the terminal and wait.
Keep in mind that it's not a perfect tool, and there are flaws during the cluster lifecycle. But it will at least give you a headstart bootstrapping a full production ready cluster.
solution3
0 2020-06-04 12:42:29
Here what i fill which you can do -
- How to prepare servers ? - I used the the vagrant to spin up the servers
- How to setup the firewall? - Either you can set up the firewall rules for the IPs which you have defined in the vagrant file or disable the firewall between the nodes.
I would recommend going through the following guide which covers all the steps which i used for setting up kubernetes cluster using kubespray -
https://jhooq.com/kubespray-12-steps-for-installing-a-production-ready-kubernetes-cluster/
solution4
0 2020-12-16 08:20:07
Also consider things Ubuntu does you might not want, such as checking swap (even when you don't have any) and disabling unattended upgrades which can bring down an otherwise capable system:
sudo swapoff -a && \
apt remove unattended-upgrades -y && \
killall -9 unattended-upgr 2>/dev/null
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.