Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/aledbf/kubernetes-cluster-intel-nuc

Kubernetes cluster running on Intel NUC
https://github.com/aledbf/kubernetes-cluster-intel-nuc

Last synced: 3 months ago
JSON representation

Kubernetes cluster running on Intel NUC

Host: GitHub
URL: https://github.com/aledbf/kubernetes-cluster-intel-nuc
Owner: aledbf
Created: 2015-12-03T01:17:53.000Z (about 9 years ago)
Default Branch: master
Last Pushed: 2016-01-18T00:26:26.000Z (almost 9 years ago)
Last Synced: 2024-10-14T15:56:48.906Z (3 months ago)
Language: Shell
Size: 217 KB
Stars: 53
Watchers: 7
Forks: 7
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# kubernetes-cluster-intel-nuc
Kubernetes cluster running on Intel NUC

Based on https://github.com/coreos/coreos-kubernetes

## Why?

I need a portable Cluster :P

![Final result 1](screenshots/result1.jpg)
![Final result 2](screenshots/result2.jpg)

## Create configuration:

customize network parameters and cluster size in `build-user-data.sh`
```
./build-user-data.sh
```

## CoreOS installation

To keep the installation process simple we use the provided iso file to create

mount usb drive:

```
mount /dev/sdb1 /mnt
```

install CoreOS
```
wget https://raw.githubusercontent.com/coreos/init/master/bin/coreos-install
chmod +x coreos-install
sudo ./coreos-install -d /dev/sda -C stable -V 835.9.0 -c /mnt/user-data-
```

Reboot

## Configure kubectl

```
kubectl config set-cluster nuc --server=https://10.4.0.2:443 --certificate-authority=${PWD}/ssl/ca.pem
kubectl config set-credentials nuc-admin --certificate-authority=${PWD}/ssl/ca.pem --client-key=${PWD}/ssl/admin-key.pem --client-certificate=${PWD}/ssl/admin.pem
kubectl config set-context nuc --cluster=nuc --user=nuc-admin
kubectl config use-context nuc
```

```
$ kubectl get nodes
NAME LABELS STATUS AGE
10.4.0.2 kubernetes.io/hostname=10.4.0.2 Ready 3d
10.4.0.3 kubernetes.io/hostname=10.4.0.3 Ready 3d
10.4.0.4 kubernetes.io/hostname=10.4.0.4 Ready 1h
10.4.0.5 kubernetes.io/hostname=10.4.0.5 Ready 1h
```

## Client certificate installation

To access the apiserver url (https://10.4.0.2) we need a client certificate. Without one we will see this error:
```
$ curl https://10.4.0.2/ -v
* Trying 10.4.0.2...
* Connected to 10.4.0.2 (10.4.0.2) port 443 (#0)
* WARNING: using IP address, SNI is being disabled by the OS.
* TLS 1.2 connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
* Server certificate: kube-controller
* Server certificate: kube-ca
> GET / HTTP/1.1
> Host: 10.4.0.2
> User-Agent: curl/7.43.0
> Accept: */*
>
< HTTP/1.1 401 Unauthorized
< Content-Type: text/plain; charset=utf-8
< Date: Sun, 20 Dec 2015 22:42:52 GMT
< Content-Length: 13
<
Unauthorized
* Connection #0 to host 10.4.0.2 left intact
```

```
curl https://10.4.0.2/ -E ssl/worker.p12: --cacert ssl/ca.pem
{
"paths": [
"/api",
"/api/v1",
"/apis",
"/apis/extensions",
"/apis/extensions/v1beta1",
"/healthz",
"/healthz/ping",
"/logs/",
"/metrics",
"/resetMetrics",
"/swagger-ui/",
"/swaggerapi/",
"/ui/",
"/version"
]
}
```

To fix this issue we need to install the generated certificate `worker.p12` and `ca.pem` located in the ssl directory.

## Addon installation:
```
kubectl create -f manifests/kube-dns-rc.yaml
kubectl create -f manifests/kube-dns-svc.yaml
kubectl create -f manifests/kube-ui-rc.yaml
kubectl create -f manifests/kube-ui-svc.yaml
```

Now we can access `kube-ui` located in `https://10.4.0.2/api/v1/proxy/namespaces/kube-system/services/kube-ui/#/dashboard/`

![Image of kube-ui](screenshots/kube-ui.png)

## TODO:
- installation using TFTP (using a raspberry pi as server using https://github.com/pin/tftp)
- no user intervention in installation
- no internet connection for installation
-