Commit Graph

277 Commits (5b958c7741fe98220e5eb8da7c73975b75a3e62f)

Author SHA1 Message Date
Kelsey Hightower e8d728d016 remove remote access to insecure port 2017-10-02 06:48:09 -07:00
Kelsey Hightower 765c1fb5fa remove remote access to insecure port 2017-10-02 06:46:01 -07:00
Kelsey Hightower ede3437ee8 update to kubernetes 1.8 2017-10-01 20:37:09 -07:00
Steven Trescinski 7f7fd71874 Fixed '--service-cluster-ip-range' subnet for Controller Manager 2017-10-01 12:11:33 -07:00
Kalimar Maia 51e8709080 Instructions for having a default configuration. 2017-10-01 12:11:05 -07:00
Frank Ederveen 92772d2f69 226: use curl for OSX downloads 2017-10-01 12:10:39 -07:00
Leonardo Faoro b7550ca7ab remove trailing space 2017-09-04 16:08:43 -07:00
Leonardo Faoro 4441278561 remove trailing-spaces and blank lines 2017-09-04 16:08:43 -07:00
Kelsey Hightower 4ca7c45046 update docs 2017-08-31 07:17:23 -07:00
Niko Virtala f9486b081f fix KUBERNETES_PUBLIC_ADDRESS value
Instead of 'value(address)' 'value(name)' should be used to make the following forwarding-rules creation command to work. With 'value(address)' it returns an error: "ERROR: (gcloud.compute.forwarding-rules.create) Could not fetch resource: - The resource 'projects/some-random-project/regions/us-central1/addresses/w.x.y.z' was not found"
2017-08-11 14:48:11 -07:00
Adriaan de Jonge 7631b261fb Update kubectl to 1.7.0 2017-08-11 14:47:46 -07:00
Emilian Losneanu dc5fc10559 Update docker.com url 2017-08-11 14:47:31 -07:00
Abraham Ingersoll 6609858e67 Enable kubectl portfw on workers, fixes #78 2017-07-12 05:56:57 -06:00
David Ross 4d442675ba Update 05-kubernetes-controller.md
there is a bug in Kubernetes 1.6.1 that causes an error when validating the kubernetes environment and etcd.  (https://github.com/kubernetes/kubernetes/pull/39716)   I found that using the 1.7.0 version I did not get this error.  Affects the README, this file and the client configuration (moving to 1.7.0 to match)
2017-07-12 05:55:20 -06:00
David Ross 0f826cf436 Update 07-kubectl.md
as per my other pull request, using 1.7.0 fixes an error with etcd configuration on the Kubernetes cluster.
2017-07-12 05:54:56 -06:00
Glenn Oppegard 87c0662652 Grammar fix for 06-kubernetes-worker.md 2017-07-12 05:54:19 -06:00
Ádám Sándor bdeab26587 Add missing additional IP range in firewall validation output 2017-06-30 22:30:22 -04:00
Luis Buriola 4749e604a3 Update range for health check
This new IP range is listed on the following docs:

https://cloud.google.com/compute/docs/load-balancing/health-checks
https://cloud.google.com/compute/docs/load-balancing/http/
2017-06-02 07:57:17 -07:00
Tennis Smith bf66a60585 Update 05-kubernetes-controller.md
Unless the region is explicitly passed, I get the error:
```
ERROR: (gcloud.compute.target-pools.create) Some requests did not succeed:
 - Invalid value for field 'region': 'us-central1-b'. Unknown region.
```
2017-06-02 07:56:58 -07:00
Michael McClanahan 2983b28f13 Use gcloud compute scp instead of copy-files 2017-06-02 07:56:05 -07:00
Alan Hollis 1c53942442 Bump kubernetes to v1.6.1 2017-05-01 21:59:56 -07:00
David Castillo 0c37c60b72 Add missing backslash 2017-05-01 21:59:33 -07:00
David Castillo 8ce3a545c4 Update 01-infrastructure-gcp.md, fix #153 2017-05-01 21:59:33 -07:00
David Castillo 980059abab Fix typo in 03-auth-configs.md 2017-05-01 21:59:16 -07:00
Rory McCune 77cc14e86a Add Authentication to etcd configuration
Added two flags needed to activate client and peer authentication in etcd
2017-04-12 05:51:53 -04:00
Mads H. Danquah d81abdbcf1 Move certificate and private-key away from /var/run
It is cleared out at reboot.

It appears that only the file-name part of --tls-cert-file /
--tls-private-key-file is used and that the path is taken from
--cert-dir (which defaults to /var/run/kubernetes) so to make the path
stick we also add a --cert-dir
2017-04-12 05:51:28 -04:00
arjunyel c32977f361 Update kubectl to 1.6.0 release
Kubectl 1.6.0 has now been fully released https://github.com/kubernetes/kubernetes/releases/tag/v1.6.0
2017-03-31 16:21:40 +02:00
Tom Payne 450709e996 fix formatting of bootstrap token generation 2017-03-29 23:38:45 +02:00
Jesse Newland 610099af09 Remove quotes from audit log, signing key args 2017-03-26 21:08:01 -07:00
Mike Rostermund e6459ccbd5 Fix typo 2017-03-26 19:34:43 -07:00
Kelsey Hightower 69f4ecfa82 clean up formatting 2017-03-25 20:23:14 -07:00
Kelsey Hightower 180596398e clean up docs 2017-03-25 19:27:49 -07:00
Kelsey Hightower f49493d286 doc clean up and basic formatting improvements 2017-03-25 18:52:58 -07:00
Kelsey Hightower 8022f4077b remove AWS support 2017-03-25 18:06:03 -07:00
Kelsey Hightower 4989117cf2 remove AWS support 2017-03-25 14:20:31 -07:00
Kelsey Hightower 2d5f895aac update to Kubernetes 1.6 2017-03-25 12:04:05 -07:00
Kelsey Hightower 81cc65cc27 update to Kubernetes 1.6 2017-03-25 11:53:08 -07:00
Kelsey Hightower ebe2845c17 update to Kubernetes 1.6 2017-03-25 11:50:26 -07:00
Kelsey Hightower c01f16bc3e update to Kubernetes 1.6 2017-03-25 11:45:32 -07:00
Kelsey Hightower f62e9c9777 update to Kubernetes 1.6 2017-03-25 11:41:26 -07:00
Kelsey Hightower e9c25522a4 update to Kubernetes 1.6 2017-03-25 10:07:48 -07:00
Kelsey Hightower 53ee78b73e update to Kubernetes 1.6 2017-03-25 09:58:47 -07:00
Kelsey Hightower 7e009610b2 update for 1.6 2017-03-25 09:44:23 -07:00
Kelsey Hightower 6827ce575e make kube-dns work again 2017-03-24 08:31:17 -07:00
Kelsey Hightower c72849f7e3 document the CSR approve flow 2017-03-24 04:24:53 -07:00
Kelsey Hightower f7532568be document the RBAC role binding process for TLS bootstrapping 2017-03-24 04:16:29 -07:00
Kelsey Hightower 94cbe1e683 add docs on using custom kubeconfigs 2017-03-24 04:08:34 -07:00
Kelsey Hightower 99d342cc3c add authentication lab 2017-03-23 23:08:54 -07:00
Kelsey Hightower 5a5314f3c9 clean up pod cidr firewall-rule 2017-03-23 19:51:39 -07:00
Kelsey Hightower 3b1700d85e update to Kubernetes 1.6 2017-03-23 19:48:14 -07:00
Balazs Rauznitz b7ae204c86 Make the AWS region configurable 2017-03-23 08:49:54 -07:00
Jason Price 68dc4507c2 adding filter to aws describe-instances command to filter by the vpc-id 2017-03-23 08:48:52 -07:00
ksingh7 4ad918e7c6 FIX #72 for LoadBalancer creation on AWS
kube-controller-manager and kube-apiserver service unit files are missing
one option --cloud-provider=aws parameter, which is creating problem while
creating ELB on AWS when type: LoadBalancer is provided in service YAML file.
This commit fixes that, issue
2017-03-23 08:48:23 -07:00
ksingh7 e465ee81f1 Node details to run client commands from
docs/06.kubectl.md does not instruct from which node those commands must be run.
The previous modules does explain that. For a newbie its helpful to tell them
from which node they must run commands of doc/06-kubectl.md.

This PR has a minor update about that information.
2017-03-23 08:48:23 -07:00
Noah Dietz 09a5f05eb6 add kubernetes.default to kubernetes-csr.json hosts 2017-03-23 08:44:35 -07:00
Ivan Font d3cd897b08 Add firewall rule to allow pods access to PodCIDR
This fixes issue #88 to allow pods access to PodCIDR such as the case of
DNS. When pods come up with an IP address in the cluster CIDR range,
they cannot access kubedns without a firewall rule to enable it. This
would also prevent pods from accessing each other depending on the
application.
2017-03-23 08:44:02 -07:00
Justin Santa Barbara a759be0db3 More nuance in etcd isolation recommendation
Clarify that while running etcd on a separate set of machine is a good idea, it isn't tested.
2017-03-23 08:43:29 -07:00
Marcelo f6e72b50db Updating instance images for Google Cloud Engine
Updating to newer images
2017-03-23 08:42:19 -07:00
Valentin Ouvrard d53aca31a5 upgrade to Kubernetes v1.5.1 and ETCD v3.0.15 2017-02-25 09:20:51 -08:00
Danny Kansas 4d7b87927f TLC => TLS 2017-02-25 09:16:00 -08:00
Chris Jones 753e71bac8 Note that all replicas of a component must share the same certificate. 2016-11-18 18:16:00 -08:00
Thor Wolpert 26ff21f9d0 Replaced deprecated flag --health-check with the new equivalent --http-health-check=kube-apiserver-check 2016-11-18 18:15:33 -08:00
Kelsey Hightower e7feed75a3 Update 01-infrastructure-gcp.md 2016-10-03 09:32:17 -04:00
Waldemar Quevedo bda65211ee Update 07-network.md 2016-10-01 08:25:24 -07:00
Joe Intrakamhang 5d8a0441ac Add config/zone cmds to the doc 2016-10-01 08:25:11 -07:00
keglevich3 0b5282165a remove duplication 2016-10-01 08:24:41 -07:00
Kelsey Hightower 599f45e2b1 open traffic between same security group 2016-09-27 06:58:21 -07:00
Kelsey Hightower f2370f3578 etcd blocks when using type notify 2016-09-27 05:55:26 -07:00
Kelsey Hightower b748f9d445 install etcd on the controller nodes 2016-09-27 05:50:33 -07:00
Kelsey Hightower 6a39adea4e clean up docs 2016-09-27 05:40:56 -07:00
Kelsey Hightower b3ce3ca14f streamline deletion of GCE resources 2016-09-27 05:38:09 -07:00
Kelsey Hightower 4f3f389468 streamline deletion of GCE resources 2016-09-27 05:37:22 -07:00
Kelsey Hightower f1981dad05 install etcd on the controller nodes 2016-09-27 05:31:57 -07:00
Kelsey Hightower be84590c87 update to Kubernetes 1.4 2016-09-27 05:25:38 -07:00
Kelsey Hightower 7fe980da3e Merge pull request #60 from mydharma/patch-1
jq -j is not a valid option. I think the author meant jq -r
2016-09-15 20:25:32 -07:00
thejsj 720cdab53c Fix typo 2016-09-14 22:41:42 -07:00
GGC 8ec636271d jq -j is not a valid option. I think the author meant jq -r 2016-09-14 19:37:20 -07:00
Kelsey Hightower b239d709f7 clean up docs 2016-09-11 08:22:09 -07:00
Kelsey Hightower 87ae2e1578 update ssh login info 2016-09-11 08:20:43 -07:00
Kelsey Hightower d922910910 document assumptions 2016-09-11 07:59:53 -07:00
Kelsey Hightower bd07c5e29d warn users about GCP free trial limitations 2016-09-11 07:42:23 -07:00
Kelsey Hightower 4f86a72faa add details regarding the auth token 2016-09-11 07:33:12 -07:00
Kelsey Hightower b614d3b222 add details regarding the auth token 2016-09-11 07:31:04 -07:00
Kelsey Hightower ce7eef3210 explain how pods get their subnets 2016-09-11 07:18:44 -07:00
Kelsey Hightower 9e05ffafad update cleanup guide 2016-09-11 07:06:48 -07:00
Kelsey Hightower 16cd466518 update kubedns add-on 2016-09-11 07:01:11 -07:00
Kelsey Hightower 608b4e5439 update kubedns add-on 2016-09-11 06:20:02 -07:00
Kelsey Hightower fdec4174ba doc clean up 2016-09-11 06:04:44 -07:00
Kelsey Hightower 60f4cfe453 add support for aws 2016-09-11 05:30:55 -07:00
Kelsey Hightower 31725f4e5d add support for aws 2016-09-11 05:27:57 -07:00
Kelsey Hightower 649eb76c84 add support for aws 2016-09-11 05:20:01 -07:00
Kelsey Hightower 41eae9dbfa add support for aws 2016-09-11 05:11:26 -07:00
Kelsey Hightower e4dc273f97 add support for aws 2016-09-11 05:06:32 -07:00
Kelsey Hightower e6ff289410 add support for aws 2016-09-11 04:18:27 -07:00
Kelsey Hightower 4108fda4a8 add support for aws 2016-09-11 04:08:38 -07:00
Kelsey Hightower 53b9361b82 add support for aws 2016-09-11 03:57:16 -07:00
Kelsey Hightower 7f8de7ce8a add support for aws 2016-09-11 03:53:13 -07:00
Kelsey Hightower 122e637439 add support for aws 2016-09-11 03:52:20 -07:00
Kelsey Hightower d182fe6411 add support for aws 2016-09-11 03:15:28 -07:00
Kelsey Hightower e9633430d1 add support for aws 2016-09-11 03:07:28 -07:00