Refresh and add Apple Silicon (#338)

* Delete CKA stuff. It's covered in CKA repo * Rename nodes * Cluster up again * Update issue template * Update README * Begin rearranging docs * Update links * Initial mac instructions * iterm2 image * update ssh-copy-id to be cross platform * remove vagrant specific * Apple scripts WIP * Add var for architecture * order input files * Apple build working! * auto-locate docs * install sshpass * Set execute bit * apple done! * install sshpass * edits * Corrections * kube version output * Adjustments * Adjustments
2025-12-18 10:48:57 +03:00 · 2024-03-18 05:16:56 +00:00
parent 645b296cb6
commit 65b5a11784
81 changed files with 1400 additions and 787 deletions
--- a/docs/09-install-cri-workers.md
+++ b/docs/09-install-cri-workers.md
@@ -6,52 +6,90 @@ Reference: https://github.com/containerd/containerd/blob/main/docs/getting-start

 ### Download and Install Container Networking

-The commands in this lab must be run on each worker instance: `worker-1`, and `worker-2`. Login to each controller instance using SSH Terminal.
+The commands in this lab must be run on each worker instance: `node01`, and `node02`. Login to each controller instance using SSH Terminal.

-Here we will install the container runtime `containerd` from the Ubuntu distribution, and kubectl plus the CNI tools from the Kubernetes distribution. Kubectl is required on worker-2 to initialize kubeconfig files for the worker-node auto registration.
+Here we will install the container runtime `containerd` from the Ubuntu distribution, and kubectl plus the CNI tools from the Kubernetes distribution. Kubectl is required on `node02` to initialize kubeconfig files for the worker-node auto registration.

-[//]: # (host:worker-1-worker-2)
+[//]: # (host:node01-node02)

 You can perform this step with [tmux](01-prerequisites.md#running-commands-in-parallel-with-tmux).

-Set up the Kubernetes `apt` repository
+1. Update the apt package index and install packages needed to use the Kubernetes apt repository:
+    ```bash
+    {
+        sudo apt-get update
+        sudo apt-get install -y apt-transport-https ca-certificates curl
+    }
+    ```

-```bash
-{
-  KUBE_LATEST=$(curl -L -s https://dl.k8s.io/release/stable.txt | awk 'BEGIN { FS="." } { printf "%s.%s", $1, $2 }')
+1. Set up the required kernel modules and make them persistent
+    ```bash
+    {
+        cat <<EOF | sudo tee /etc/modules-load.d/k8s.conf
+    overlay
+    br_netfilter
+    EOF

-  sudo mkdir -p /etc/apt/keyrings
-  curl -fsSL https://pkgs.k8s.io/core:/stable:/${KUBE_LATEST}/deb/Release.key | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+        sudo modprobe overlay
+        sudo modprobe br_netfilter
+    }
+    ```

-  echo "deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/${KUBE_LATEST}/deb/ /" | sudo tee /etc/apt/sources.list.d/kubernetes.list
-}
-```
+1.  Set the required kernel parameters and make them persistent
+    ```bash
+    {
+        cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf
+    net.bridge.bridge-nf-call-iptables  = 1
+    net.bridge.bridge-nf-call-ip6tables = 1
+    net.ipv4.ip_forward                 = 1
+    EOF

-Install `containerd` and CNI tools, first refreshing `apt` repos to get up to date versions.
+        sudo sysctl --system
+    }
+    ```

-```bash
-{
-  sudo apt update
-  sudo apt install -y containerd kubernetes-cni kubectl ipvsadm ipset
-}
-```
+1.  Determine latest version of Kubernetes and store in a shell variable

-Set up `containerd` configuration to enable systemd Cgroups
+    ```bash
+    KUBE_LATEST=$(curl -L -s https://dl.k8s.io/release/stable.txt | awk 'BEGIN { FS="." } { printf "%s.%s", $1, $2 }')
+    ```

-```bash
-{
-  sudo mkdir -p /etc/containerd
+1. Download the Kubernetes public signing key
+    ```bash
+    {
+        sudo mkdir -p /etc/apt/keyrings
+        curl -fsSL https://pkgs.k8s.io/core:/stable:/${KUBE_LATEST}/deb/Release.key | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+    }
+    ```

-  containerd config default | sed 's/SystemdCgroup = false/SystemdCgroup = true/' | sudo tee /etc/containerd/config.toml
-}
-```
+1. Add the Kubernetes apt repository
+    ```bash
+    echo "deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/${KUBE_LATEST}/deb/ /" | sudo tee /etc/apt/sources.list.d/kubernetes.list
+    ```

-Now restart `containerd` to read the new configuration
+1. Install the container runtime and CNI components
+    ```bash
+    sudo apt update
+    sudo apt-get install -y containerd kubernetes-cni kubectl ipvsadm ipset
+    ```

-```bash
-sudo systemctl restart containerd
-```
+1.  Configure the container runtime to use systemd Cgroups. This part is the bit many students miss, and if not done results in a controlplane that comes up, then all the pods start crashlooping. `kubectl` will also fail with an error like `The connection to the server x.x.x.x:6443 was refused - did you specify the right host or port?`
+
+    1. Create default configuration and pipe it through `sed` to correctly set Cgroup parameter.
+
+        ```bash
+        {
+            sudo mkdir -p /etc/containerd
+            containerd config default | sed 's/SystemdCgroup = false/SystemdCgroup = true/' | sudo tee /etc/containerd/config.toml
+        }
+        ```
+
+    1.  Restart containerd
+
+        ```bash
+        sudo systemctl restart containerd
+        ```


-Prev: [Bootstrapping the Kubernetes Control Plane](08-bootstrapping-kubernetes-controllers.md)</br>
-Next: [Bootstrapping the Kubernetes Worker Nodes](10-bootstrapping-kubernetes-workers.md)
+Next: [Bootstrapping the Kubernetes Worker Nodes](./10-bootstrapping-kubernetes-workers.md)</br>
+Prev: [Bootstrapping the Kubernetes Control Plane](./08-bootstrapping-kubernetes-controllers.md)