Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/errordeveloper/kata-eks


https://github.com/errordeveloper/kata-eks

Last synced: about 1 year ago
JSON representation

Awesome Lists containing this project

README 

          
# Kata Containers on EKS



This repo demostrates how to setup an EKS cluster with [Kata Containers](https://katacontainers.io/) as CRI (via containerd).



To create a cluster, run `eksctl`:



```

eksctl create cluster --config-file=cluster.yaml --without-nodegroup

```



This will create a cluster without a nodegroup to begin with (so VPC CNI can be replaced with Cilium).

Later a nodegroup will be added to the cluster.



Kata currently doesn't work with built-in VPC CNI, however it works perfectly with Cilium.

Before deploying Cilium, `kube-system:daemonset/aws-node` need to be deleted:



```

kubectl delete --namespace=kube-system daemonset aws-node

```



Deploy Cilium:



```

kubectl apply -f cilium-1.7-eks.yaml

```



The `eksctl` config file (`cluster-management.yaml`) has a custom bootstrap script that use a self-extracting

container image to deploy Kata components (see `images/extract` and `images/kata-installer` for details). 



The nodegroup uses `i3.metal` instance type (just one instance to save costs, of course, it can be scaled up).



Next, deploy runtimeclasses `kata-qemu` and `kata-fc`:



```

kubectl apply -f kata-runtimeclasses.yaml

```



Next, add a nodegroup:

```

eksctl create nodegroup --config-file=management-cluster.yaml

```



Once `eksctl` exits, there should be one `i3.metal` node in this cluseter:



```

kubectl get nodes

```



Next, you may wish to observe `kube-system` namespace, once all pods are ready, the cluster should be ready to

run Kata pods/VMs and any workload in general.



```

kubectl get pods --namespace=kube-system

```



Now, you can try `kubectl apply -f podinfo.yaml` and just deploy a simple app with `runtimeClass: kata-qemu`.