mirror of
https://github.com/optim-enterprises-bv/terraform-talos.git
synced 2025-10-29 17:42:47 +00:00
update proxmox readme
This commit is contained in:
Serge Logvinov
@@ -9,6 +9,9 @@ endif
|
||||
help:
|
||||
@awk 'BEGIN {FS = ":.*?## "} /^[0-9a-zA-Z_-]+:.*?## / {sub("\\\\n",sprintf("\n%22c"," "), $$2);printf "\033[36m%-30s\033[0m %s\n", $$1, $$2}' $(MAKEFILE_LIST)
|
||||
|
||||
init: ## Initialize terraform
|
||||
terraform init -upgrade
|
||||
|
||||
create-config: ## Genereate talos configs
|
||||
terraform apply -auto-approve -target=local_file.worker_patch
|
||||
talosctl gen config --output-dir _cfgs --with-docs=false --with-examples=false --config-patch-worker @templates/worker.patch.yaml ${CLUSTERNAME} https://${ENDPOINT}:6443
|
||||
|
||||
@@ -2,15 +2,35 @@
|
||||
|
||||
It was tested on Proxmox version 7.4-3
|
||||
|
||||
## Agenda
|
||||
Local utilities
|
||||
|
||||
* create VM config in directory `/etc/pve/qemu-server/VMID.conf`
|
||||
* allow cloud-init on VM
|
||||
* prepare network config
|
||||
* upload user-data (talos machine config) to the Proxmox host
|
||||
* upload meta-data to the Proxmox host
|
||||
* terraform
|
||||
* talosctl
|
||||
* kubectl
|
||||
* yq
|
||||
|
||||
## VM template
|
||||
## Kubernetes addons
|
||||
|
||||
* [cilium](https://github.com/cilium/cilium) 1.12.4
|
||||
* [metrics-server](https://github.com/kubernetes-sigs/metrics-server) 0.5.0
|
||||
* [rancher.io/local-path](https://github.com/rancher/local-path-provisioner) 0.0.19
|
||||
* [Talos CCM](https://github.com/siderolabs/talos-cloud-controller-manager) edge, controller: `cloud-node`.
|
||||
Talos CCM labels the nodes, and approve node server certificate signing request.
|
||||
* [Proxmox CCM](https://github.com/sergelogvinov/proxmox-cloud-controller-manager) edge, controller: `cloud-node-lifecycle`.
|
||||
Proxmox CCM deletes the kubernetes node resource if they was deleted in Proxmox.
|
||||
* [Proxmox CSI](https://github.com/sergelogvinov/proxmox-csi-plugin)
|
||||
Allows you to mount Proxmox disk to the pods.
|
||||
|
||||
All deployments use nodeSelector, controllers runs on control-plane, all other on workers.
|
||||
|
||||
# Steps
|
||||
|
||||
* [Prepare](prepare/) - (optional) it uses ansible to configure the proxmox node/cluster.
|
||||
* [Images](images/) - upload the Talos OS image to the Proxmox storage.
|
||||
* [Init](init/) - creates the roles to Proxmox CCM/CSI.
|
||||
* Bootstrap cluster
|
||||
|
||||
## Images
|
||||
|
||||
First we need to upload the talos OS image to the Proxmox host machine.
|
||||
If you do not have shared storage, you need to upload image to each machine.
|
||||
@@ -28,18 +48,122 @@ terraform init -upgrade
|
||||
terraform apply
|
||||
```
|
||||
|
||||
Terraform is not capable of creating account tokens, so you should create them through the web portal instead.
|
||||
Or use this command:
|
||||
|
||||
```shell
|
||||
# On the proxmox server.
|
||||
pveum user token add kubernetes@pve ccm -privsep 0
|
||||
```
|
||||
|
||||
## Bootstrap cluster
|
||||
|
||||
Result VM config:
|
||||
Terraform will create the Talos machine config and upload it to the Proxmox server, but only for worker nodes.
|
||||
It will also create a metadata file, which is a very important file that contains information such as region, zone, and providerID.
|
||||
This metadata is used by the Talos CCM to label the nodes and it also required by the Proxmox CCM/CSI.
|
||||
|
||||
VM config looks like:
|
||||
|
||||
```yaml
|
||||
# /etc/pve/qemu-server/VMID.conf
|
||||
# Worker node /etc/pve/qemu-server/worker-11.conf
|
||||
cpu: host
|
||||
cicustom: user=local:snippets/VMID.yaml,meta=local:snippets/VMID.meta
|
||||
cicustom: user=local:snippets/worker.yaml,meta=local:snippets/worker-11.metadata.yaml
|
||||
ipconfig0: ...
|
||||
net0: ...
|
||||
```
|
||||
|
||||
```shell
|
||||
make create-config create-templates
|
||||
Metadata file looks like:
|
||||
|
||||
```yaml
|
||||
# /var/lib/vz/snippets/worker-11.metadata.yaml
|
||||
hostname: worker-11
|
||||
instance-id: 1050
|
||||
instance-type: 2VCPU-4GB
|
||||
provider-id: proxmox://cluster-1/1050
|
||||
region: cluster-1
|
||||
zone: node1
|
||||
```
|
||||
|
||||
Worker machine config:
|
||||
|
||||
```yaml
|
||||
# /var/lib/vz/snippets/worker.yaml
|
||||
version: v1alpha1
|
||||
debug: false
|
||||
persist: true
|
||||
machine:
|
||||
type: worker
|
||||
...
|
||||
```
|
||||
|
||||
First we need to define our cluster:
|
||||
|
||||
```hcl
|
||||
proxmox_domain = "example.com"
|
||||
proxmox_host = "node1.example.com"
|
||||
proxmox_nodename = "node1"
|
||||
proxmox_storage = "data"
|
||||
proxmox_image = "talos"
|
||||
|
||||
vpc_main_cidr = "172.16.0.0/24"
|
||||
|
||||
# We will create one control-plane node on the Proxmox node `node1` (count = 1)
|
||||
controlplane = {
|
||||
"node1" = {
|
||||
id = 500
|
||||
count = 1,
|
||||
cpu = 2,
|
||||
mem = 6144,
|
||||
},
|
||||
"node2" = {
|
||||
id = 520
|
||||
count = 0,
|
||||
cpu = 2,
|
||||
mem = 6144,
|
||||
},
|
||||
}
|
||||
|
||||
# One web and worker node:
|
||||
instances = {
|
||||
"node1" = {
|
||||
web_id = 1000
|
||||
web_count = 1,
|
||||
web_cpu = 2,
|
||||
web_mem = 4096,
|
||||
worker_id = 1050
|
||||
worker_count = 1,
|
||||
worker_cpu = 2,
|
||||
worker_mem = 4096,
|
||||
},
|
||||
"node2" = {
|
||||
web_id = 2000
|
||||
web_count = 0,
|
||||
web_cpu = 2,
|
||||
web_mem = 4096,
|
||||
worker_id = 2050
|
||||
worker_count = 0,
|
||||
worker_cpu = 2,
|
||||
worker_mem = 4096,
|
||||
},
|
||||
}
|
||||
```
|
||||
|
||||
Create all configs
|
||||
|
||||
```shell
|
||||
make init create-config create-templates
|
||||
```
|
||||
|
||||
Launch the control-plane node
|
||||
|
||||
```shell
|
||||
make create-controlplane
|
||||
# wait ~2 minutes
|
||||
make create-controlplane-bootstrap
|
||||
```
|
||||
|
||||
Receive `kubeconfig` file
|
||||
|
||||
```shell
|
||||
make create-kubeconfig
|
||||
```
|
||||
|
||||
Reference in New Issue
Block a user