mirror of
https://github.com/kelseyhightower/kubernetes-the-hard-way.git
synced 2025-09-18 18:10:41 +03:00
Update scripts to add PodCIDR firewall rule for dns
This commit is contained in:
@@ -2,7 +2,7 @@
|
||||
set -x
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION environment variables"
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
|
@@ -1,8 +1,8 @@
|
||||
#!/usr/bin/bash
|
||||
set -x
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS and NUM_WORKERS environment variables"
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
|
@@ -4,7 +4,7 @@ set -x
|
||||
DOCKER_VERSION=1.12.5
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION environment variables"
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
|
@@ -32,8 +32,8 @@ gcloud -q compute firewall-rules delete \
|
||||
kubernetes-allow-healthz \
|
||||
kubernetes-allow-icmp \
|
||||
kubernetes-allow-internal \
|
||||
kubernetes-allow-internal-podcidr \
|
||||
kubernetes-allow-rdp \
|
||||
kubernetes-nginx-service \
|
||||
kubernetes-allow-ssh \
|
||||
kubernetes-nginx-service
|
||||
|
||||
|
@@ -1,8 +1,8 @@
|
||||
#!/usr/bin/bash
|
||||
set -x
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS and NUM_WORKERS environment variables"
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
|
@@ -2,7 +2,12 @@
|
||||
set -x
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION environment variables"
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
if [[ ! ${KUBERNETES_VERSION} =~ ^v[0-9].[0-9].[0-9]$ ]]; then
|
||||
echo "KUBERNETES_VERSION must be in form 'vX.Y.Z'"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
|
@@ -1,8 +1,8 @@
|
||||
#!/usr/bin/bash
|
||||
set -x
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS and NUM_WORKERS environment variables"
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
@@ -114,4 +114,5 @@ done
|
||||
|
||||
for host in ${kube_hosts}; do
|
||||
gcloud compute copy-files ca.pem kubernetes-key.pem kubernetes.pem ${host}:~/
|
||||
sleep 2
|
||||
done
|
||||
|
@@ -1,8 +1,8 @@
|
||||
#!/usr/bin/bash
|
||||
set -x
|
||||
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS and NUM_WORKERS env vars"
|
||||
if [[ -z ${NUM_CONTROLLERS} || -z ${NUM_WORKERS} || -z ${KUBERNETES_VERSION} ]]; then
|
||||
echo "Must set NUM_CONTROLLERS, NUM_WORKERS and KUBERNETES_VERSION (e.g. 'vX.Y.Z') environment variables"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
@@ -25,6 +25,11 @@ gcloud compute firewall-rules create kubernetes-allow-internal \
|
||||
--network kubernetes \
|
||||
--source-ranges 10.240.0.0/24
|
||||
|
||||
gcloud compute firewall-rules create kubernetes-allow-internal-podcidr \
|
||||
--allow tcp:0-65535,udp:0-65535,icmp \
|
||||
--network kubernetes \
|
||||
--source-ranges 10.200.0.0/16
|
||||
|
||||
gcloud compute firewall-rules create kubernetes-allow-rdp \
|
||||
--allow tcp:3389 \
|
||||
--network kubernetes \
|
||||
|
Reference in New Issue
Block a user