adrien/ansible-role-kubernetes
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Update deployment
Some checks failed
continuous-integration/drone/push Build is pending
Details
continuous-integration/drone Build is failing
Details

Browse source
This commit is contained in:
Adrien Reslinger 2021-07-10 00:04:39 +02:00
parent 1008484e46
commit 0c02bc3a32
Signed by: adrien
GPG key ID: DA7B27055C66D6DE
1 changed files with 31 additions and 36 deletions
Download patch file Download diff file Expand all files Collapse all files

67
tasks/RedHat.yml
View file

@ -51,44 +51,38 @@
# register: result
# until: result is successful
- name: Register kubernetes firewalld service
template:
src: "etc/firewalld/services/kubernetes.xml.j2"
dest: "/etc/firewalld/services/kubernetes.xml"
group: root
owner: root
mode: 0644
register: need_firewalld_reload
when:
- kubernetes_server|bool
- name: Reload firewalld configuration
service:
name: firewalld
state: reloaded
enabled: yes
when:
- kubernetes_server|bool
- need_firewalld_reload is changed
#- name: reload firewalld to refresh service list
# command: firewall-cmd --reload
#- name: Register kubernetes firewalld service
# template:
# src: "etc/firewalld/services/kubernetes.xml.j2"
# dest: "/etc/firewalld/services/kubernetes.xml"
# group: root
# owner: root
# mode: 0644
# register: need_firewalld_reload
# when:
# - need_firewalld_reload is changed
# - kubernetes_server|bool
# Définir interface
- name: Open Firewalld
firewalld:
zone: external
service: kubernetes
permanent: true
state: enabled
immediate: true
when:
# - need_firewall|bool
# - firewall_name == "firewalld"
- kubernetes_server|bool
#
#- name: Reload firewalld configuration
# service:
# name: firewalld
# state: reloaded
# enabled: yes
# when:
# - kubernetes_server|bool
# - need_firewalld_reload is changed
#
## Définir interface
#- name: Open Firewalld
# firewalld:
# zone: external
# service: kubernetes
# permanent: true
# state: enabled
# immediate: true
# when:
## - need_firewall|bool
## - firewall_name == "firewalld"
# - kubernetes_server|bool
#- name: Create kubernetes firewalld zone
# firewalld:
@ -107,6 +101,7 @@
when:
- kubernetes_server|bool
with_items:
- "{{ (lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.network + '/' + lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.netmask) | ipaddr('net') }}"
- "{{ kubernetes_pods_network }}"
- "10.96.0.0/12"