This article details the steps needed to setup the “gce.py” and also the configuration changes needed to create a GCP instance using Ansible . “gce.py” is the python module which talks to the GCP cloud to gather instance details . In order to use “gce.py” we need to create a credentials in GCP console as a P12 format and make changes to the “gce.ini” and “secrets.py” files to enable this communication . The newer Ansible module uses the JSON format of the API credentials to enable the communication with GCP cloud . …
This article is an Addendum to the Article on Creating secure services in Kubernetes. This is solely for debug/verification of the letsencrypt certificates that we are using in kubernetes .
Certificates Order creation:
The process of issuing certificate is as follows: Create Certificate, Create Order and Create Challenge . Each of these operations should complete successfully . The details are mentioned in the docs in the article’s reference section .
Lets check the order for confirmation — tls-secretd was the secret I used in the Ingress definitions while debugging
$ kubectl describe order tls-secretd-1812893479 Name: tls-secretd-1812893479-2396897813 Namespace: default Labels: <none>…
Any enterprise would need a secure connection to its service offerings . In the previous article on setting up LoadBalancer we explored the ways to bring up a cloud Layer 4 LoadBalancer on GCP platform and also configured the Nginx Ingress controller . In this article we will secure the service connection using “tls” and “letsencrypt” for https access to your pods
Jetstack has created a customer resource in Kubernetes as “cert-manager” which has various components and uses different mechanisms to issue and validate the certificate for secure client access . The details of which can be found here .
Have you ever wondered you could have written your own LoadBalancer for K8s instead of going through all the documentation out there , well then look no further! I will walk you through the setup for bringing up a Nginx Ingress Controller and a Layer 4 LoadBalancer on a Kubernetes GCP cluster .
Kubernetes has decoupled the cloud specific control loops from kube-controller . So if you need LoadBalancers, Node Controls on the specific cloud platform then you have to install the cloud controller manager separately . This still does not support the storage on those nodes , Storage for…
In this article, we will install the Kubernetes Package Manager “helm” and deploy a Statefulset on to a Kubernetes cluster. First, we will do it as a helm chart and then also the traditional way of using the “kubectl apply” command.
This is the continuation of the previous article on setting up the k8s cluster using “kubeadm” and the changes that are needed for the cluster to support GCP Dynamic storage. …
An easy way to bring up the Kubernetes Cluster using kubeadm for your test environment.
All the managed clusters GKE, AKS, and EKS on the cloud have only two states Start or Delete Clusters. Although AKS does provide an auto-shutdown choice, you still need to enable the script. And also you do not have the master node configuration at your end. In this article, we will install Kubernetes using kubeadm on virtual machines so that we can stop and restart the cluster at our convenience and not get billed during the stoppage time. …
After the first tutorial Ansible101 for installing and setting up Ansible on to an Ubuntu Box , let us now write a playbook to create an instance in AWS . In this tutorial your Ansible could be in any cloud GCP / AWS /Azure /Alibaba Cloud or even your local laptop and a new instance will be created in your AWS account .
Ansible File Structure
Ansible will have the following file structure . Create the following directories under “/etc” . You may need sudo permission to do so
You also need the following files
ansible.cfg and hosts
Note:The lines starting with “$” are the unix commands that needs to be executed in the Ubuntu Box
Here we are going to see how to install Ansible on to a Ubuntu Box(16.04) will work for Ubuntu 18.x ,19.x and 20.x as well.
Make sure you have the right Python Version
Follow the steps below or simply download and execute the file ./py.sh from https://github.com/rangapv/pyUpgrade.git repo to upgrade the python version/new python installation and jump to the section Next Update the libraries down below for Ansible Install.
$ python --version
If the output is python2.* then do this