adrien/ansible-role-kubernetes
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Update deployment
Some checks failed
continuous-integration/drone/push Build is pending
Details
continuous-integration/drone Build is failing
Details

Browse source
This commit is contained in:
Adrien Reslinger 2021-07-10 00:04:39 +02:00
parent 1008484e46
commit 0c02bc3a32
Signed by: adrien
GPG key ID: DA7B27055C66D6DE
1 changed files with 31 additions and 36 deletions
Download patch file Download diff file Expand all files Collapse all files

67
tasks/RedHat.yml
View file

@ -51,44 +51,38 @@
# register: result # register: result
# until: result is successful # until: result is successful
- name: Register kubernetes firewalld service #- name: Register kubernetes firewalld service
template: # template:
src: "etc/firewalld/services/kubernetes.xml.j2" # src: "etc/firewalld/services/kubernetes.xml.j2"
dest: "/etc/firewalld/services/kubernetes.xml" # dest: "/etc/firewalld/services/kubernetes.xml"
group: root # group: root
owner: root # owner: root
mode: 0644 # mode: 0644
register: need_firewalld_reload # register: need_firewalld_reload
when:
- kubernetes_server|bool
- name: Reload firewalld configuration
service:
name: firewalld
state: reloaded
enabled: yes
when:
- kubernetes_server|bool
- need_firewalld_reload is changed
#- name: reload firewalld to refresh service list
# command: firewall-cmd --reload
# when: # when:
# - need_firewalld_reload is changed
# - kubernetes_server|bool # - kubernetes_server|bool
#
# Définir interface #- name: Reload firewalld configuration
- name: Open Firewalld # service:
firewalld: # name: firewalld
zone: external # state: reloaded
service: kubernetes # enabled: yes
permanent: true # when:
state: enabled # - kubernetes_server|bool
immediate: true # - need_firewalld_reload is changed
when: #
# - need_firewall|bool ## Définir interface
# - firewall_name == "firewalld" #- name: Open Firewalld
- kubernetes_server|bool # firewalld:
# zone: external
# service: kubernetes
# permanent: true
# state: enabled
# immediate: true
# when:
## - need_firewall|bool
## - firewall_name == "firewalld"
# - kubernetes_server|bool
#- name: Create kubernetes firewalld zone #- name: Create kubernetes firewalld zone
# firewalld: # firewalld:
@ -107,6 +101,7 @@
when: when:
- kubernetes_server|bool - kubernetes_server|bool
with_items: with_items:
- "{{ (lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.network + '/' + lookup('vars', 'ansible_' + kubernetes_interface ).ipv4.netmask) | ipaddr('net') }}"
- "{{ kubernetes_pods_network }}" - "{{ kubernetes_pods_network }}"
- "10.96.0.0/12" - "10.96.0.0/12"