Update roles/kubernetes/tasks/main.yml

2025-10-27 08:43:05 +00:00 · 2025-10-20 13:55:08 +00:00 · 2025-10-20 13:49:55 +00:00 · 2025-10-20 13:32:39 +00:00 · 2025-10-20 13:24:55 +00:00 · 2025-10-20 13:18:49 +00:00
3 changed files with 79 additions and 41 deletions
--- a/roles/kube-master/tasks/main.yml
+++ b/roles/kube-master/tasks/main.yml
@ -40,19 +40,12 @@
  debug:
    var: flannel_manifest.stdout
- name: Forçar uso da interface correta
+- name: Adicionar --iface=eth1 ao flanneld
  become: true
-  replace:
+  ansible.builtin.lineinfile:
    path: /tmp/kube-flannel.yml
-    regexp: 'command: 
+    insertafter: '        - --kube-subnet-mgr'
-\[.*?flanneld.*?\]
+    line: '        - --iface=eth1'
 '
    replace: |
      command:
        - /opt/bin/flanneld
        - --ip-masq
        - --kube-subnet-mgr
        - --iface=eth1
@ -64,7 +57,6 @@
      - init
      - --pod-network-cidr=192.168.2.0/16 # .3. 
      - --apiserver-advertise-address=192.168.1.150
      - --cri-socket=unix:///run/containerd/containerd.sock
    creates: /etc/kubernetes/admin.conf 
@ -121,13 +113,13 @@
  debug:
    var: flannel_manifest2.stdout
-#- name: Aplicar o manifest do Flannel
+- name: Aplicar o manifest do Flannel
-#  become: yes
+  become: yes
-#  become_user: fenix 
+  become_user: fenix 
-#  shell: |
+  shell: |
-#    kubectl apply -f /tmp/kube-flannel.yml
+    kubectl apply -f /tmp/kube-flannel.yml
-#  environment:
+  environment:
-#    KUBECONFIG:  /home/fenix/.kube/config
+    KUBECONFIG:  /home/fenix/.kube/config
 - name: 34 Wait for Kubernetes API to be ready
  become: true
--- a/roles/kube-master/tasks/patch_netconf.py
+++ b/roles/kube-master/tasks/patch_netconf.py
@ -10,7 +10,7 @@ with open("/tmp/kube-flannel.yml", "r") as f:
 for doc in docs:
    if doc.get("kind") == "ConfigMap" and doc.get("metadata", {}).get("name") == "kube-flannel-cfg":
        doc["data"]["net-conf.json"] = '''{
-  "Network": "192.168.3.0/16",
+  "Network": "192.168.2.0/16",
  "Backend": {
    "Type": "vxlan"
  },
--- a/roles/kubernetes/tasks/main.yml
+++ b/roles/kubernetes/tasks/main.yml
@ -1,23 +1,69 @@
- name: Install containerd
+- name: disable UFW firewall for labs
  service:
    name: ufw
    state: stopped
    enabled: false
 - name: Disable SWAP
  shell: |
    swapoff -a
 - name: Disable SWAP in fstab
  lineinfile:
    path: /etc/fstab
    regexp: '^.*swap.*$'
    line: '#\0'
    backrefs: yes
 - name: Installation of apt-utils
  become: true
  apt:
    name:
      - apt-transport-https
    state: present
    update_cache: yes
 - name: Instalar containerd
  become: true
  apt:
    name: containerd
    state: present
-    update_cache: no
+    update_cache: yes
  become: true
- name: Hold Kubernetes packages
+- name: Criar diretório de configuração do containerd
  become: true
-  ansible.builtin.shell: |
+  file:
-    apt-mark hold containerd
+    path: /etc/containerd
-#- name: Add Kubernetes APT key
+    state: directory
-#  apt_key:
+    mode: '0755'
-#    url: https://packages.cloud.google.com/apt/doc/apt-key.gpg
+
-#    state: present
+- name: Gerar config.toml padrão do containerd
  become: true
  command: containerd config default > /etc/containerd/config.toml
  args:
    creates: /etc/containerd/config.toml
 - name: Ativar SystemdCgroup no containerd
  become: true
  replace:
    path: /etc/containerd/config.toml
    regexp: 'SystemdCgroup = false'
    replace: 'SystemdCgroup = true'
 - name: Reiniciar e habilitar containerd
  become: true
  systemd:
    name: containerd
    state: restarted
    enabled: true
 - name: Setting value of SystemdCgroup
  shell: |
    containerd config default | sudo tee /etc/containerd/config.toml | grep SystemdCgroup
    sed -i 's/SystemdCgroup = false/SystemdCgroup = true/g' /etc/containerd/config.toml
 #- name: Add Kubernetes repo
 #  apt_repository:
 #    repo: deb http://apt.kubernetes.io/ kubernetes-jammy main
 #    state: present
 - name: Adicionar chave GPG do Kubernetes
  become: true
@ -63,13 +109,13 @@
    state: absent
- name: Ativar ip_forward de forma idempotente
+#- name: Ativar ip_forward de forma idempotente
-  become: true
+#  become: true
-  ansible.builtin.sysctl:
+#  ansible.builtin.sysctl:
-    name: net.ipv4.ip_forward
+#    name: net.ipv4.ip_forward
-    value: '1'
+#    value: '1'
-    state: present
+#    state: present
-    reload: yes
+#    reload: yes
 - name: Configurar sysctl para Kubernetes
  become: true
Author	SHA1	Message	Date
fenix-gitea-admin	75ca33bfa9	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:55:08 +00:00
fenix-gitea-admin	c0022c470d	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:49:55 +00:00
fenix-gitea-admin	88ad914efe	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:32:39 +00:00
fenix-gitea-admin	24a1fc02fd	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:24:55 +00:00
fenix-gitea-admin	965d2d80c3	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:18:49 +00:00
fenix-gitea-admin	19ae31c442	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:13:50 +00:00
fenix-gitea-admin	ce5cd6d275	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:07:56 +00:00
fenix-gitea-admin	d06a6ac646	Update roles/kubernetes/tasks/main.yml	2025-10-20 13:02:01 +00:00
fenix-gitea-admin	7d6530ba4e	Update roles/kube-master/tasks/main.yml	2025-10-20 12:53:09 +00:00
fenix-gitea-admin	34cc967d0b	Update roles/kubernetes/tasks/main.yml	2025-10-20 12:51:59 +00:00
fenix-gitea-admin	5401347945	Update roles/kubernetes/tasks/main.yml	2025-10-20 12:51:32 +00:00
fenix-gitea-admin	16a6fae38e	Update roles/kubernetes/tasks/main.yml	2025-10-20 12:23:53 +00:00
fenix-gitea-admin	ee12fcec8b	Update roles/kubernetes/tasks/main.yml	2025-10-20 12:16:29 +00:00
fenix-gitea-admin	9721f54e7e	Update roles/kube-master/tasks/main.yml	2025-10-20 11:03:40 +00:00
fenix-gitea-admin	808ddb03eb	Update roles/kube-master/tasks/patch_netconf.py	2025-10-20 09:45:03 +00:00
fenix-gitea-admin	f14a0a137a	Update roles/kube-master/tasks/main.yml	2025-10-20 08:49:45 +00:00