58 lines
1.4 KiB
YAML
58 lines
1.4 KiB
YAML
---
|
|
#- name: Add kubernetes repository
|
|
# yumrepo:
|
|
# name: kubernetes
|
|
# description: "Kubernetes Repository"
|
|
# baseurl: https://packages.cloud.google.com/yum/repos/kubernetes-$releasever-x86_64
|
|
# gpgcheck: yes
|
|
# enabled: yes
|
|
# gpgkey: https://packages.cloud.google.com/yum/doc/yum-key.gpg
|
|
# state: present
|
|
|
|
- name: Add Official kubernetes's repo
|
|
template:
|
|
src: "etc/yum.repos.d/kubernetes.repo.j2"
|
|
dest: "/etc/yum.repos.d/kubernetes.repo"
|
|
group: root
|
|
owner: root
|
|
mode: 0644
|
|
when:
|
|
- not ansible_machine == "armv7l"
|
|
- not ansible_machine == "armv6l"
|
|
|
|
- name: Register kubernetes firewalld service
|
|
template:
|
|
src: "etc/firewalld/services/kubernetes.xml.j2"
|
|
dest: "/etc/firewalld/services/kubernetes.xml"
|
|
group: root
|
|
owner: root
|
|
mode: 0644
|
|
register: need_firewalld_reload
|
|
when:
|
|
- kubernetes_server|bool
|
|
|
|
#- name: Reload firewalld configuration
|
|
# service:
|
|
# name: firewalld
|
|
# state: reloaded
|
|
# enabled: yes
|
|
# when:
|
|
# - kubernetes_server|bool
|
|
|
|
- name: reload firewalld to refresh service list
|
|
command: firewall-cmd --reload
|
|
when:
|
|
- need_firewalld_reload is changed
|
|
- kubernetes_server|bool
|
|
|
|
# Définir interface
|
|
- name: Open Firewalld
|
|
firewalld:
|
|
service: kubernetes
|
|
permanent: true
|
|
state: enabled
|
|
immediate: true
|
|
when:
|
|
# - need_firewall|bool
|
|
# - firewall_name == "firewalld"
|
|
- kubernetes_server|bool
|