Ansible v2.5 (or newer) and python-netaddr is installed on the machine that will run Ansible commands
Jinja 2.9 (or newer) is required to run the Ansible Playbooks
The target servers must have access to the Internet in order to pull docker images
The target servers are configured to allow IPv4 forwarding
Your ssh key must be copied to all the servers part of your inventory
The firewalls are not managed, you’ll need to implement your own rules the way you used to. in order to avoid any issue during deployment you should disable your firewall
If kubespray is ran from non-root user account, correct privilege escalation method should be configured in the target servers. Then the ansible_become flag or command parameters --become or -b should be specified
Kubespray provides the following utilities to help provision your environment:
Terraform scripts for the following cloud providers:
Kubespray provides a way to verify inter-pod connectivity and DNS resolve with Netchecker. Netchecker ensures the netchecker-agents pods can resolve DNS requests and ping each over within the default namespace. Those pods mimic similar behavior of the rest of the workloads and serve as cluster health indicators.
Kubespray provides additional playbooks to manage your cluster: scale and upgrade.
You can add worker nodes from your cluster by running the scale playbook. For more information, see “Adding nodes”.
You can remove worker nodes from your cluster by running the remove-node playbook. For more information, see “Remove nodes”.
You can upgrade your cluster by running the upgrade-cluster playbook. For more information, see “Upgrades”.
You can reset your nodes and wipe out all components installed with Kubespray via the reset playbook.
注意: When running the reset playbook, be sure not to accidentally target your production cluster!