rke/cluster.yml

---
nodes:
  - address: 1.1.1.1
    user: ubuntu
    role:
    - controlplane
    - etcd
    ssh_key_path: /home/user/.ssh/id_rsa
    port: 2222
  - address: 2.2.2.2
    user: ubuntu
    role:
    - worker
    ssh_key: |-
      -----BEGIN RSA PRIVATE KEY-----

      -----END RSA PRIVATE KEY-----
  - address: example.com
    user: ubuntu
    role:
    - role
    hostname_override: node3
    internal_address: 192.168.1.6
    labels:
      app: ingress

services:
  etcd:
    # if external etcd is used
    # path: /etcdcluster
    # external_urls:
    #   - https://etcd-example.com:2379
    # ca_cert: |-
    #   -----BEGIN CERTIFICATE-----
    #   xxxxxxxxxx
    #   -----END CERTIFICATE-----
    # cert: |-
    #   -----BEGIN CERTIFICATE-----
    #   xxxxxxxxxx
    #   -----END CERTIFICATE-----
    # key: |-
    #   -----BEGIN PRIVATE KEY-----
    #   xxxxxxxxxx
    #   -----END PRIVATE KEY-----
  kube-api:
    service_cluster_ip_range: 10.233.0.0/18
    pod_security_policy: false
    extra_args:
      v: 4
  kube-controller:
    cluster_cidr: 10.233.64.0/18
    service_cluster_ip_range: 10.233.0.0/18
  scheduler:
  kubelet:
    cluster_domain: cluster.local
    cluster_dns_server: 10.233.0.3
    infra_container_image: gcr.io/google_containers/pause-amd64:3.0
  kubeproxy:

# supported plugins are:
# flannel
# calico
# canal
# weave
#
# If you are using calico on AWS or GCE, use the network plugin config option:
# 'calico_cloud_provider: aws'
# or
# 'calico_cloud_provider: gce'
# network:
#   plugin: calico
#   options:
#     calico_cloud_provider: aws
#
# To specify flannel interface, you can use the 'flannel_iface' option:
# network:
#   plugin: flannel
#   options:
#     flannel_iface: eth1

network:
  plugin: flannel
  options:
    
authentication:
  strategy: x509

# all addon manifests MUST specify a namespace
addons: |-
    ---
    apiVersion: v1
    kind: Pod
    metadata:
      name: my-nginx
      namespace: default
    spec:
      containers:
      - name: my-nginx
        image: nginx
        ports:
        - containerPort: 80

system_images:
  etcd: rancher/etcd:v3.0.17
  kubernetes: rancher/k8s:v1.8.7-rancher1-1
  alpine: alpine:latest
  nginx_proxy: rancher/rke-nginx-proxy:v0.1.1
  cert_downloader: rancher/rke-cert-deployer:v0.1.1
  kubernetes_services_sidecar: rancher/rke-service-sidekick:v0.1.0
  kubedns: rancher/k8s-dns-kube-dns-amd64:1.14.5
  dnsmasq: rancher/k8s-dns-dnsmasq-nanny-amd64:1.14.5
  kubedns_sidecar: rancher/k8s-dns-sidecar-amd64:1.14.5
  kubedns_autoscaler: rancher/cluster-proportional-autoscaler-amd64:1.0.0
  flannel: rancher/coreos-flannel:v0.9.1
  flannel_cni: rancher/coreos-flannel-cni:v0.2.0


ssh_key_path: ~/.ssh/test

# Kubernetes authorization mode
# Use `mode: rbac` to enable RBAC
# Use `mode: none` to disable authorization
authorization:
  mode: rbac

# If set to true, rke won't fail when unsupported Docker version is found
ignore_docker_version: false

kubernetes_version: v1.8.7-rancher1-1

# List of registry credentials, if you are using a Docker Hub registry,
# you can omit the `url` or set it to `docker.io`
private_registries:
  - url: registry.com
    user: Username
    password: password
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`---`
Structure and config changes 2017-11-28 17:45:24 +00:00			`nodes:`
			`- address: 1.1.1.1`
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`user: ubuntu`
Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00			`role:`
			`- controlplane`
			`- etcd`
Add ssh key and path per host 2017-12-02 17:07:47 +00:00			`ssh_key_path: /home/user/.ssh/id_rsa`
SSH port is configurable 2018-01-19 18:42:42 +00:00			`port: 2222`
Structure and config changes 2017-11-28 17:45:24 +00:00			`- address: 2.2.2.2`
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`user: ubuntu`
Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00			`role:`
			`- worker`
Add ssh key and path per host 2017-12-02 17:07:47 +00:00			`ssh_key: \|-`
			`-----BEGIN RSA PRIVATE KEY-----`

			`-----END RSA PRIVATE KEY-----`
Structure and config changes 2017-11-28 17:45:24 +00:00			`- address: example.com`
			`user: ubuntu`
Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00			`role:`
			`- role`
Structure and config changes 2017-11-28 17:45:24 +00:00			`hostname_override: node3`
			`internal_address: 192.168.1.6`
Fix/improve documentation for ingress controller Fixes #341 2018-02-11 00:21:26 +00:00			`labels:`
			`app: ingress`
Set up kubernetes components 2017-10-29 09:45:21 +00:00
			`services:`
			`etcd:`
External etcd 2018-02-14 20:58:35 +00:00			`# if external etcd is used`
			`# path: /etcdcluster`
			`# external_urls:`
			`# - https://etcd-example.com:2379`
			`# ca_cert: \|-`
			`# -----BEGIN CERTIFICATE-----`
			`# xxxxxxxxxx`
			`# -----END CERTIFICATE-----`
			`# cert: \|-`
			`# -----BEGIN CERTIFICATE-----`
			`# xxxxxxxxxx`
			`# -----END CERTIFICATE-----`
			`# key: \|-`
			`# -----BEGIN PRIVATE KEY-----`
			`# xxxxxxxxxx`
			`# -----END PRIVATE KEY-----`
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`kube-api:`
some small fixes add debugging to hosts.go add kubelet and kubeproxy defaults to cluster file add more service configuration remove hosts sudo 2017-10-30 06:31:06 +00:00			`service_cluster_ip_range: 10.233.0.0/18`
Enable PodSecurityPolicy support 2017-12-20 01:51:07 +00:00			`pod_security_policy: false`
WIP add extra args to running services 2017-11-10 19:53:48 +00:00			`extra_args:`
Minor cluster.yaml updates 2017-11-22 00:58:21 +00:00			`v: 4`
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`kube-controller:`
typo 2017-11-01 18:50:00 +00:00			`cluster_cidr: 10.233.64.0/18`
some small fixes add debugging to hosts.go add kubelet and kubeproxy defaults to cluster file add more service configuration remove hosts sudo 2017-10-30 06:31:06 +00:00			`service_cluster_ip_range: 10.233.0.0/18`
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`scheduler:`
			`kubelet:`
some small fixes add debugging to hosts.go add kubelet and kubeproxy defaults to cluster file add more service configuration remove hosts sudo 2017-10-30 06:31:06 +00:00			`cluster_domain: cluster.local`
add network plugin support add template configration through env variables add kubedns addon 2017-11-06 20:50:41 +00:00			`cluster_dns_server: 10.233.0.3`
some small fixes add debugging to hosts.go add kubelet and kubeproxy defaults to cluster file add more service configuration remove hosts sudo 2017-10-30 06:31:06 +00:00			`infra_container_image: gcr.io/google_containers/pause-amd64:3.0`
Set up kubernetes components 2017-10-29 09:45:21 +00:00			`kubeproxy:`
Use cluster level k8s version 2018-01-30 23:45:44 +00:00
Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00			`# supported plugins are:`
			`# flannel`
			`# calico`
			`# canal`
			`# weave`
			`#`
			`# If you are using calico on AWS or GCE, use the network plugin config option:`
			`# 'calico_cloud_provider: aws'`
			`# or`
			`# 'calico_cloud_provider: gce'`
Update cluster.yml 2018-02-26 19:48:22 +00:00			`# network:`
			`# plugin: calico`
			`# options:`
			`# calico_cloud_provider: aws`
			`#`
			`# To specify flannel interface, you can use the 'flannel_iface' option:`
			`# network:`
			`# plugin: flannel`
			`# options:`
			`# flannel_iface: eth1`

Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00			`network:`
			`plugin: flannel`
			`options:`
Update cluster.yml 2018-02-26 19:48:22 +00:00
Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00			`authentication:`
			`strategy: x509`
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00
Minor cluster.yaml updates 2017-11-22 00:58:21 +00:00			`# all addon manifests MUST specify a namespace`
addons based on k8s jobs and configmaps 2017-11-18 12:51:28 +00:00			`addons: \|-`
			`---`
			`apiVersion: v1`
			`kind: Pod`
			`metadata:`
			`name: my-nginx`
			`namespace: default`
			`spec:`
			`containers:`
			`- name: my-nginx`
			`image: nginx`
			`ports:`
			`- containerPort: 80`
Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00
			`system_images:`
			`etcd: rancher/etcd:v3.0.17`
			`kubernetes: rancher/k8s:v1.8.7-rancher1-1`
			`alpine: alpine:latest`
			`nginx_proxy: rancher/rke-nginx-proxy:v0.1.1`
			`cert_downloader: rancher/rke-cert-deployer:v0.1.1`
			`kubernetes_services_sidecar: rancher/rke-service-sidekick:v0.1.0`
			`kubedns: rancher/k8s-dns-kube-dns-amd64:1.14.5`
			`dnsmasq: rancher/k8s-dns-dnsmasq-nanny-amd64:1.14.5`
			`kubedns_sidecar: rancher/k8s-dns-sidecar-amd64:1.14.5`
			`kubedns_autoscaler: rancher/cluster-proportional-autoscaler-amd64:1.0.0`
Update cluster.yml 2018-02-26 19:48:22 +00:00			`flannel: rancher/coreos-flannel:v0.9.1`
			`flannel_cni: rancher/coreos-flannel-cni:v0.2.0`

Updated cluster.yml with current values and according to `rke config` 2018-01-25 11:49:13 +00:00
			`ssh_key_path: ~/.ssh/test`

			`# Kubernetes authorization mode`
			# Use `mode: rbac` to enable RBAC
			# Use `mode: none` to disable authorization
			`authorization:`
			`mode: rbac`

			`# If set to true, rke won't fail when unsupported Docker version is found`
			`ignore_docker_version: false`

			`kubernetes_version: v1.8.7-rancher1-1`

			`# List of registry credentials, if you are using a Docker Hub registry,`
			# you can omit the `url` or set it to `docker.io`
			`private_registries:`
			`- url: registry.com`
			`user: Username`
			`password: password`