Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/sighupio/fury-aks-installer

Fury Kubernetes Installer - AKS (Microsoft Azure Kubernetes Managed Service)
https://github.com/sighupio/fury-aks-installer

aks cncf fury fury-installer kubernetes terraform terraform-module

Last synced: about 2 months ago
JSON representation

Fury Kubernetes Installer - AKS (Microsoft Azure Kubernetes Managed Service)

Host: GitHub
URL: https://github.com/sighupio/fury-aks-installer
Owner: sighupio
License: bsd-3-clause
Created: 2020-04-28T08:37:52.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2023-09-05T12:30:55.000Z (over 1 year ago)
Last Synced: 2024-05-17T02:57:04.769Z (8 months ago)
Topics: aks, cncf, fury, fury-installer, kubernetes, terraform, terraform-module
Language: HCL
Homepage: https://kubernetesfury.com
Size: 33.4 MB
Stars: 1
Watchers: 11
Forks: 3
Open Issues: 2
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        


    

    Fury AKS Installer



![Release](https://img.shields.io/github/v/release/sighupio/fury-aks-installer?label=Latest%20Release)

![License](https://img.shields.io/github/license/sighupio/fury-aks-installer?label=License)

[![Slack](https://img.shields.io/badge/slack-@kubernetes/fury-yellow.svg?logo=slack&label=Slack)](https://kubernetes.slack.com/archives/C0154HYTAQH)

**Fury AKS Installer** deploys a production-grade Kubernetes Fury cluster on Azure Kubernetes Service (AKS).

If you are new to Kubernetes Fury please refer to the [official documentation][kfd-docs] on how to get started.

## Modules

The installer is composed of four terraform modules:

|            Module             |                       Description                      |

| ----------------------------- | ------------------------------------------------------ |

| [VNet][vnet-module]           | Deploy the necessary networking infrastructure         |

| [VPN][vpn-module]             | Deploy the a VPN Server to connect to private clusters |

| [AKS][aks-module]             | Deploy the AKS cluster                                 |

| [State][state-module]         | Deploy the Backend for Terraform State                 |

Click on each module to see its full documentation.

## Architecture

**Fury AKS Installer** deploys and configures a production-ready AKS cluster without having to learn all internals of the service.

![Fury Architecture](./docs/assets/fury_installer_architecture.png)

The [AKS module][aks-module] deploys a **private control plane** cluster, where the control plane endpoint is not publicly accessible.

The [VNet module][vnet-module] setups all the necessary networking infrastructure.

The [VPN module][vpn-module] setups one or more bastion hosts with an OpenVPN server.

The bastion host includes an OpenVPN instance easily manageable by using [furyagent][furyagent] to provide access to the cluster.

> 🕵🏻‍♂️ [Furyagent][furyagent] is a tool developed by SIGHUP to manage OpenVPN and SSH user access to the bastion host.

## Usage

### Requirements

- **Azure CLI** >= `2.48.1`

- **Azure** account with enough permission to create an AKS Cluster.

- **terraform** = `>=1.3.0`

- `ssh` or **OpenVPN Client** - [Tunnelblick][tunnelblick] (on macOS) or [OpenVPN Connect][openvpn-connect] (for other OS) are recommended.

### Create AKS Cluster

To create the cluster via the installers:

1. (optional) Use the [State module][state-module] to deploy the storage account and container to store terraform state

2. Use the [VNet module][vnet-module] to deploy the networking infrastructure

3. (optional) Use the [VPN module][vpn-module] to deploy the openvpn bastion host

4. (optional) Configure access to the OpenVPN instance of the bastion host via [furyagent][furyagent]

5. (optional) Connect to the OpenVPN instance

6. Use the [AKS module][aks-module] to deploy the AKS cluster

Please refer to each module documentation and the [examples](examples/) folder for more details.

## Useful links

- [AKS pricing](https://azure.microsoft.com/en-us/pricing/details/kubernetes-service/)

- [Committed use Instances pricing](https://azure.microsoft.com/en-us/pricing/details/virtual-machines/linux/)

- [Identity in AKS](https://learn.microsoft.com/en-us/azure/aks/concepts-identity)

[aks-installer-docs]: https://docs.kubernetesfury.com/docs/installers/managed/aks/

[aks-module]: https://github.com/sighupio/fury-aks-installer/tree/master/modules/aks

[vnet-module]: https://github.com/sighupio/fury-aks-installer/tree/master/modules/vnet

[vpn-module]: https://github.com/sighupio/fury-aks-installer/tree/master/modules/vpn

[state-module]: https://github.com/sighupio/fury-aks-installer/tree/master/modules/state

[kfd-docs]: https://docs.kubernetesfury.com/docs/distribution/

[furyagent]: https://github.com/sighupio/furyagent

[tunnelblick]: https://tunnelblick.net/downloads.html

[openvpn-connect]: https://openvpn.net/vpn-client/

### Reporting Issues

In case you experience any problem with the module, please [open a new issue](https://github.com/sighupio/fury-aks-installer/issues/new).

## License

This module is open-source and it's released under the following [LICENSE](LICENSE)