mirror of
https://github.com/optim-enterprises-bv/terraform-talos.git
synced 2025-10-29 09:32:39 +00:00
Terraform examples
Local utilities
- terraform
- talosctl
- kubectl
- yq
Talos on Hetzner Cloud
This terraform example install Talos on HCloud with IPv4/IPv6 support.
Kubernetes addons
- cilium 1.12.4
- kubelet-serving-cert-approver
- metrics-server 0.5.0
- rancher.io/local-path 0.0.19
- hcloud-cloud-controller-manage fork of syself with few changes
NAME STATUS ROLES AGE VERSION INTERNAL-IP EXTERNAL-IP OS-IMAGE KERNEL-VERSION CONTAINER-RUNTIME ZONE REGION
store-1 Ready storage 206d v1.24.3 172.16.2.51 65.21.XX.XX Debian GNU/Linux 11 (bullseye) 5.10.0-15-amd64 containerd://1.4.13 hel1-dc1 hel1
master-1 Ready control-plane,master 207d v1.24.2 172.16.0.11 65.108.XX.XX Talos (v1.1.1) 5.15.54-talos containerd://1.6.6 hel1-dc2 hel1
master-2 Ready control-plane,master 206d v1.24.2 172.16.0.12 159.69.XX.XX Talos (v1.1.1) 5.15.54-talos containerd://1.6.6 fsn1-dc14 fsn1
master-3 Ready control-plane,master 26h v1.24.2 172.16.0.13 65.108.XX.XX Talos (v1.1.1) 5.15.54-talos containerd://1.6.6 hel1-dc2 hel1
Where:
- master-X - talos control plane nodes
- store-X - debian bare metal worker servers
Pod with IPv6
# kubectl exec -ti cilium-dddgc -- bash
root@controlplane-fsn1-1:/home/cilium# cilium node list
Name IPv4 Address Endpoint CIDR IPv6 Address Endpoint CIDR Source
controlplane-fsn1-1 172.16.0.12 10.32.0.0/24 2a01:4f8:c17:9967::1 2a01:4f8:c17:9967::/80 local
web-fsn1-1 172.16.0.50 10.32.2.0/24 2a01:4f8:c012:5795::1 2a01:4f8:c012:5795::/80 custom-resource
Prepare the base image
Use packer (system_os/hetzner) to upload image.
Create control plane
open config file terraform.tfvars and add params.
# regions to use
regions = ["nbg1", "fsn1", "hel1"]
# kubernetes control plane
controlplane = {
"all" = {
type_lb = ""
},
"nbg1" = {
count = 1,
type = "cpx21",
},
"fsn1" = {
count = 1,
type = "cax21",
},
"hel1" = {
count = 1,
type = "cpx21",
}
}
# Worker nodes by redion
instances = {
"nbg1" = {
web_count = 0,
web_type = "cx11",
worker_count = 1,
worker_type = "cpx11",
},
"fsn1" = {
web_count = 0,
web_type = "cx11",
worker_count = 0,
worker_type = "cpx11",
}
"hel1" = {
web_count = 0,
web_type = "cx21",
worker_count = 0,
worker_type = "cpx11",
}
}
make create-lb
Install control plane
Generate the default talos config
make create-config create-templates
And deploy the kubernetes master nodes
make create-controlplane
Bootstrap the first node
make create-controlplane-bootstrap
make create-kubeconfig
Deploy all other instances
make create-infrastructure
Add barematal (robot) servers
Run server in Rescue mode.
wget -O /tmp/metal-amd64.tar.gz https://github.com/siderolabs/talos/releases/download/v1.4.0/metal-amd64.tar.gz
tar -Oxzf /tmp/talos-amd64.tar.gz > /dev/sda
Part of Talos machineconfig:
network:
hostname: server-name
interfaces:
- interface: eth0
addresses:
- IPv4/mask
- IPv6/64
routes:
- network: 0.0.0.0/0
gateway: IPv4.GW
- network: ::/0
gateway: fe80::1
vlans:
- vlanId: VLAN-ID
dhcp: false
mtu: 1400
addresses:
- 172.16.2.XXX/24
routes:
- network: 172.16.0.0/16
gateway: 172.16.2.1
install:
disk: /dev/sda
wipe: false
Node Autoscaler
Cluster Autoscaler for Hetzner Cloud
Create/deploy autoscaler:
cat _cfgs/worker-as.yaml | base64 > _cfgs/worker-as.yaml.base64
kubectl -n kube-system create secret generic hcloud-init --from-file=worker=_cfgs/worker-as.yaml.base64 --from-literal=image="os=talos"
kubectl apply -f deployments/hcloud-autoscaler.yaml