Add net.ipv4.ip_forward=1 and use ansible sysctl.
Signed-off-by: Lantao Liu <lantaol@google.com>
This commit is contained in:
Lantao Liu
parent
2dae863f87
commit
b2dcb9f3ec
@ -15,16 +15,17 @@
|
|||||||
|
|
||||||
- name: "Start CRI-Containerd"
|
- name: "Start CRI-Containerd"
|
||||||
systemd: name=cri-containerd daemon_reload=yes state=started enabled=yes
|
systemd: name=cri-containerd daemon_reload=yes state=started enabled=yes
|
||||||
|
|
||||||
- name: "Set bridge-nf-call-iptables"
|
- name: "Set bridge-nf-call-iptables"
|
||||||
lineinfile:
|
sysctl:
|
||||||
line: "net/bridge/bridge-nf-call-iptables = 1"
|
name: net.bridge.bridge-nf-call-iptables
|
||||||
dest: /etc/sysctl.conf
|
value: 1
|
||||||
insertafter: 'EOF'
|
|
||||||
regexp: '\/net\/bridge\/bridge-nf-call-iptables = 1'
|
- name: "Set ip_forward"
|
||||||
state: present
|
sysctl:
|
||||||
ignore_errors: true
|
name: net.ipv4.ip_forward
|
||||||
|
value: 1
|
||||||
|
|
||||||
- name: "Check kubelet args in kubelet config"
|
- name: "Check kubelet args in kubelet config"
|
||||||
shell: grep "^Environment=\"KUBELET_EXTRA_ARGS=" /etc/systemd/system/kubelet.service.d/10-kubeadm.conf
|
shell: grep "^Environment=\"KUBELET_EXTRA_ARGS=" /etc/systemd/system/kubelet.service.d/10-kubeadm.conf
|
||||||
ignore_errors: true
|
ignore_errors: true
|
||||||
@ -32,9 +33,9 @@
|
|||||||
|
|
||||||
- name: "Add runtime args in kubelet conf"
|
- name: "Add runtime args in kubelet conf"
|
||||||
lineinfile:
|
lineinfile:
|
||||||
dest: "/etc/systemd/system/kubelet.service.d/10-kubeadm.conf"
|
dest: "/etc/systemd/system/kubelet.service.d/10-kubeadm.conf"
|
||||||
line: "Environment=\"KUBELET_EXTRA_ARGS= --container-runtime=remote --runtime-request-timeout=15m --image-service-endpoint=/var/run/cri-containerd.sock --container-runtime-endpoint=/var/run/cri-containerd.sock\""
|
line: "Environment=\"KUBELET_EXTRA_ARGS= --container-runtime=remote --runtime-request-timeout=15m --image-service-endpoint=/var/run/cri-containerd.sock --container-runtime-endpoint=/var/run/cri-containerd.sock\""
|
||||||
insertafter: '\[Service\]'
|
insertafter: '\[Service\]'
|
||||||
when: check_args.stdout == ""
|
when: check_args.stdout == ""
|
||||||
|
|
||||||
- name: "Start Kubelet"
|
- name: "Start Kubelet"
|
||||||
@ -43,6 +44,6 @@
|
|||||||
# TODO This needs to be removed once we have consistent concurrent pull results
|
# TODO This needs to be removed once we have consistent concurrent pull results
|
||||||
- name: "Pre-pull pause container image"
|
- name: "Pre-pull pause container image"
|
||||||
shell: |
|
shell: |
|
||||||
/usr/local/bin/ctr pull gcr.io/google_containers/pause:3.0
|
/usr/local/bin/ctr pull gcr.io/google_containers/pause:3.0
|
||||||
/usr/local/bin/crictl --runtime-endpoint /var/run/cri-containerd.sock \
|
/usr/local/bin/crictl --runtime-endpoint /var/run/cri-containerd.sock \
|
||||||
pull gcr.io/google_containers/pause:3.0
|
pull gcr.io/google_containers/pause:3.0
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user