Install keepalived on pi k8s nodes

This commit is contained in:
Salt 2021-03-11 10:25:41 -06:00
parent fca828e743
commit 3480547d35
7 changed files with 69 additions and 0 deletions

View File

@ -16,4 +16,11 @@ secret_netbox_local_db_pass: !vault |
33616365353663633434653463643964613231343335326234343331396137363439666138376332
3564356231336230630a336639656337353538633931623536303430363836386137646563613338
66326661313064306162363265303636333765383736336231346136383763613131
secret_keepalived_pass: !vault |
$ANSIBLE_VAULT;1.1;AES256
65353963616637303932643435643262333438666566333138373539393836636135656162323965
3036313035343835393439663065326536323464316566340a613966333731356631613536643332
64613934346234316564613564363863356663653063333432316434353633333138643561316638
6563386233656364310a626363663234623161363537323035663663383333353138386239623934
65613231666661633262633439393462316337393532623263363630353133373236

View File

@ -31,8 +31,11 @@ all:
kubernetes_role: node
hosts:
pi-kub-node-1.desu.ltd:
keepalived_priority: 50
pi-kub-node-2.desu.ltd:
keepalived_priority: 49
pi-kub-node-3.desu.ltd:
keepalived_priority: 48
desktop:
hosts:
dsk-ryzen-0.desu.ltd:

View File

@ -23,3 +23,11 @@
- name: install openshift
pip: name=openshift state=latest
tags: [ k8s, packages, pip ]
- hosts: pik8s_nodes
gather_facts: no
roles:
- role: keepalived
vars:
keepalived_auth_pass: "{{ secret_keepalived_pass }}"
keepalived_vip: "192.168.102.200/16"
tags: [ k8s, keepalived ]

View File

@ -0,0 +1,21 @@
# vim:ft=ansible:
# Node priority. Should be assigned differently for each host
keepalived_priority: 50
# Node state. Should be "MASTER" on the master and "BACKUP" on backup machines
keepalived_state: "BACKUP"
# The interface to assign the VIP to
keepalived_interface: "eth0"
# The virtual router ID
keepailved_virtual_router_id: 51
# The VIP to pass around. Include the subnet mask like so:
# 192.168.0.5/24
keepalived_vip: ""
# Advertisement interval in seconds
keepalived_advert_int: 1
# Name of the vrrp instance
keepalived_vrrp_instance_name: "VI_1"
# Keepalived authentication password
#keepalived_auth_pass

View File

@ -0,0 +1,5 @@
#!/usr/bin/env ansible-playbook
# vim:ft=ansible:
---
- name: restart keepalived
systemd: name=keepalived state=restarted

View File

@ -0,0 +1,11 @@
#!/usr/bin/env ansible-playbook
# vim:ft=ansible:
---
- name: install keepalived
apt: name=keepalived state=present
when: ansible_os_family == 'Debian'
- name: template out config
template: src=keepalived.conf dest=/etc/keepalived/keepalived.conf mode="0640"
notify: restart keepalived
- name: ensure keepalived is running
systemd: name=keepalived state=started enabled=yes

View File

@ -0,0 +1,14 @@
vrrp_instance {{ keepalived_vrrp_instance_name }} {
state {{ keepalived_state }}
interface {{ keepalived_interface }}
virtual_router_id {{ keepailved_virtual_router_id }}
priority {{ keepalived_priority }}
advert_int {{ keepalived_advert_int }}
authentication {
auth_type PASS
auth_pass {{ keepalived_auth_pass }}
}
virtual_ipaddress {
{{ keepalived_vip }}
}
}