This module create all required resources for deploy a Virtual Machines to host a kubernetes cluster using RKE (Rancher Kubernetes Engine).
module "az_vms" {
source = "git::https://github.com/walmartdigital/k8s-vms-module.git?ref=0.2.2"
name_suffix = "abc123"
cluster_name = "my-cluster"
environment = "staging"
main_resource_group = "my-resource-group"
vnet_name = "my-vnet-name"
subnet_name = "my-subnet-name"
images_resource_group = "my-images-resource-group"
k8s_image_name = "k8s-v1.0.0"
bastion_image_name = "bastion-v1.0.0"
ssh_public_key = "abc123"
worker_count = "2"
worker_network_security_group_id = "network-security-group-id"
worker_lb_address_pool_id_private = "loadbalancer-address-pool-id_private"
worker_lb_address_pool_id_public = "loadbalancer-address-pool-id_public"
worker_vm_size = "my-worker-vm-size"
manager_vm_size = "my-manager-vm-size"
worker_count = "my-worker-quantity"
bastion_disk_size = "my-worker-disk-size"
worker_disk_size = "my-worker-disk-size"
}By default all ssh access to to Bastion is blocked. If its needed allow access trough internet, must be used a white list of allowed ips:
block_bastion_ssh = "no"
bastion_ssh_allowed_ips = ["10.0.0.1", "AzureCloud"]Take on consideration that can be used Azure wildcards like AzureCloud (allow access to any azure public cloud).
- main_resource_group: A string representing the resource group where all resources will be provisioned, this resource group needs to be previously created (required).
- environment: A string used as environment where the cluster is deployed (required).
- name_suffix: A string used as name suffix (required).
- cluster_name: A string used as the cluster name (required).
- vnet_name: A string representing the resource group virtual network (required).
- subnet_name: A string representing the subnet associated to virtual network (required).
- images_resource_group: A string representing the resource group where to find the custom images (required).
- k8s_image_name: A string used as custom k8s image name (required).
- bastion_image_name: A string used as custom bastion image name (required).
- ssh_public_key: A string used as the public ssh key for connect to bastion (required).
- managert_count: A string used as number of managers (default: 3).
- worker_count: A string used as number of workers (default: 3).
- network_security_group_id: A string used as network security group ID.
- worker_lb_address_pool_id_public: A string used as load balancer public address pool ID.
- worker_lb_address_pool_id_private: A string used as load balancer private address pool ID.
- default_tags: Tags assigned to every resource that support it (type: map).
- worker_vm_size: A string used to assign a custom azure vm size configuration for workers.
- manager_vm_size: A string used to assign a custom azure vm size configuration for managers.
- create_bastion: "no" if you don't want to create bastion (default: "yes").
- create_managers: "no" if you don't want to create managers (default: "yes").
- bastion_disk_size: A string used to assign a custom azure disk size configuration for bastion (default: 30gb).
- worker_disk_size: A string used to assign a custom azure disk size configuration for workers (default: 30gb).
- bastion_public_ip: The bastion public IP address.
- bastion_private_ip: The bastion private IP address.
- worker_ips: The private IPs of the created worker VMs.
- manager_ips: The private IPs of the created manager VMs.
You can use our k8s-lb-module and k8s-nsg-module to configure and use a Load Balancer and Network Security Group 100% compatible with this module