badhouseplants/k8s-cluster-config
Archived
4
0
Fork 0
Code Issues 6 Pull Requests 1 Actions Packages Projects Releases Activity

WIP: configure rook

Browse Source
This commit is contained in:
Nikolai Rodionov 2023-12-29 21:02:38 +01:00
parent e54ea10a13
commit 5a416b2770
Signed by: allanger
GPG Key ID: 0AA46A90E25592AD
10 changed files with 387 additions and 34 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
badhouseplants/helmfile.yaml
View File

@ -5,42 +5,42 @@ releases:
- <<: *drone - <<: *drone
installed: true installed: true
namespace: drone-service namespace: drone-service
createNamespace: false createNamespace: true
- <<: *drone-runner-docker - <<: *drone-runner-docker
installed: true installed: true
namespace: drone-service namespace: drone-service
createNamespace: false createNamespace: true
- <<: *longhorn - <<: *longhorn
installed: true installed: true
namespace: longhorn-system namespace: longhorn-system
createNamespace: false createNamespace: true
- <<: *argocd - <<: *argocd
installed: true installed: true
namespace: argo-system namespace: argo-system
createNamespace: false createNamespace: true
- <<: *nrodionov - <<: *nrodionov
installed: true installed: true
namespace: nrodionov-application namespace: nrodionov-application
createNamespace: false createNamespace: true
- <<: *minecraft - <<: *minecraft
installed: true installed: true
namespace: minecraft-application namespace: minecraft-application
createNamespace: false createNamespace: true
- <<: *gitea - <<: *gitea
installed: true installed: true
namespace: gitea-service namespace: gitea-service
createNamespace: false createNamespace: true
- <<: *funkwhale - <<: *funkwhale
installed: true installed: true
namespace: funkwhale-application namespace: funkwhale-application
createNamespace: false createNamespace: true
- <<: *prometheus - <<: *prometheus
installed: true installed: true
@ -50,16 +50,11 @@ releases:
- <<: *loki - <<: *loki
installed: true installed: true
namespace: monitoring-system namespace: monitoring-system
createNamespace: false createNamespace: true
- <<: *promtail - <<: *promtail
installed: true installed: true
namespace: monitoring-system namespace: monitoring-system
createNamespace: false
- <<: *bitwarden
installed: false
namespace: bitwarden-application
createNamespace: true createNamespace: true
- <<: *redis - <<: *redis
@ -82,11 +77,6 @@ releases:
namespace: database-service namespace: database-service
createNamespace: true createNamespace: true
- <<: *mysql
installed: false
namespace: database-service
createNamespace: true
- <<: *docker-mailserver - <<: *docker-mailserver
installed: true installed: true
namespace: mail-service namespace: mail-service
@ -95,7 +85,7 @@ releases:
- <<: *istio-gateway-resources - <<: *istio-gateway-resources
installed: true installed: true
namespace: istio-system namespace: istio-system
createNamespace: false createNamespace: true
- <<: *vaultwarden - <<: *vaultwarden
createNamespace: true createNamespace: true
@ -107,6 +97,16 @@ releases:
namespace: woodpecker-ci namespace: woodpecker-ci
createNamespace: true createNamespace: true
- <<: *rook-ceph
installed: true
namespace: rook-ceph
createNamespace: true
- <<: *rook-ceph-cluster
installed: true
namespace: rook-ceph-cluster
createNamespace: true
bases: bases:
- ../environments.yaml - ../environments.yaml
- ../repositories.yaml - ../repositories.yaml

2
badhouseplants/values/values.istio-gateway-resources.yaml
View File

@ -76,7 +76,7 @@ istio-gateway:
- '*' - '*'
port: port:
name: ssh name: ssh
number: 22 number: 2022
protocol: TCP protocol: TCP
- name: badhouseplants-minecraft - name: badhouseplants-minecraft
servers: servers:

6
badhouseplants/values/values.istio-ingressgateway.yaml
View File

@ -6,7 +6,7 @@ service:
protocol: TCP protocol: TCP
targetPort: 25565 targetPort: 25565
- name: ssh-gitea - name: ssh-gitea
port: 22 port: 2222
protocol: TCP protocol: TCP
targetPort: 22 targetPort: 22
- name: http2 - name: http2
@ -21,10 +21,6 @@ service:
port: 1194 port: 1194
protocol: TCP protocol: TCP
targetPort: 1194 targetPort: 1194
- name: tcp
port: 25
protocol: TCP
targetPort: 25
# ----------- # -----------
# -- Email # -- Email
# ----------- # -----------

96
badhouseplants/values/values.rook-ceph-cluster.yaml Normal file
View File

@ -0,0 +1,96 @@
cephFileSystems:
- name: ceph-filesystem
spec:
metadataPool:
replicated:
size: 3
dataPools:
- failureDomain: host
replicated:
size: 3
name: data0
metadataServer:
activeCount: 1
activeStandby: true
resources:
limits:
cpu: "200m"
memory: "256Mi"
requests:
cpu: "50m"
memory: "128Mi"
priorityClassName: system-cluster-critical
storageClass:
enabled: true
isDefault: false
name: ceph-filesystem
pool: data0
reclaimPolicy: Delete
allowVolumeExpansion: true
volumeBindingMode: "Immediate"
mountOptions: []
parameters:
csi.storage.k8s.io/provisioner-secret-name: rook-csi-cephfs-provisioner
csi.storage.k8s.io/provisioner-secret-namespace: "{{ .Release.Namespace }}"
csi.storage.k8s.io/controller-expand-secret-name: rook-csi-cephfs-provisioner
csi.storage.k8s.io/controller-expand-secret-namespace: "{{ .Release.Namespace }}"
csi.storage.k8s.io/node-stage-secret-name: rook-csi-cephfs-node
csi.storage.k8s.io/node-stage-secret-namespace: "{{ .Release.Namespace }}"
csi.storage.k8s.io/fstype: ext4
cephObjectStores: []
# - name: ceph-objectstore
# spec:
# metadataPool:
# failureDomain: host
# replicated:
# size: 3
# dataPool:
# failureDomain: host
# erasureCoded:
# dataChunks: 2
# codingChunks: 1
# preservePoolsOnDelete: true
# gateway:
# port: 80
# resources:
# limits:
# cpu: "150m"
# memory: "256Mi"
# requests:
# cpu: "50m"
# memory: "128Mi"
# instances: 1
# priorityClassName: system-cluster-critical
# storageClass:
# enabled: true
# name: ceph-bucket
# reclaimPolicy: Delete
# volumeBindingMode: "Immediate"
# parameters:
# region: us-east-1
# ingress:
# enabled: false
cephClusterSpec:
resources:
mgr:
limits:
cpu: "200m"
memory: "512Mi"
requests:
cpu: "100m"
memory: "128Mi"
mon:
limits:
cpu: "200m"
memory: "512Mi"
requests:
cpu: "100m"
memory: "128Mi"
osd:
limits:
cpu: "200m"
memory: "2Gi"
requests:
cpu: "100m"
memory: "256Mi"

215
badhouseplants/values/values.rook-ceph.yaml Normal file
View File

@ -0,0 +1,215 @@
---
csi:
csiRBDProvisionerResource: |
- name : csi-provisioner
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-resizer
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-attacher
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-snapshotter
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-rbdplugin
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-omap-generator
resource:
requests:
memory: 12Mi
cpu: 250m
limits:
memory: 1Gi
cpu: 500m
- name : liveness-prometheus
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
# -- CEPH CSI RBD plugin resource requirement list
# @default -- see values.yaml
csiRBDPluginResource: |
- name : driver-registrar
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : csi-rbdplugin
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : liveness-prometheus
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
# -- CEPH CSI CephFS provisioner resource requirement list
# @default -- see values.yaml
csiCephFSProvisionerResource: |
- name : csi-provisioner
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-resizer
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-attacher
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-snapshotter
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-cephfsplugin
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : liveness-prometheus
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
# -- CEPH CSI CephFS plugin resource requirement list
# @default -- see values.yaml
csiCephFSPluginResource: |
- name : driver-registrar
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : csi-cephfsplugin
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : liveness-prometheus
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
# -- CEPH CSI NFS provisioner resource requirement list
# @default -- see values.yaml
csiNFSProvisionerResource: |
- name : csi-provisioner
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 200m
- name : csi-nfsplugin
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : csi-attacher
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
# -- CEPH CSI NFS plugin resource requirement list
# @default -- see values.yaml
csiNFSPluginResource: |
- name : driver-registrar
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m
- name : csi-nfsplugin
resource:
requests:
memory: 128Mi
cpu: 50m
limits:
memory: 256Mi
cpu: 50m

2
environments.yaml
View File

@ -1,5 +1,5 @@
environments: environments:
badhouseplants: badhouseplants:
kubeContext: badhouseplants kubeContext: badhouseplants-arm
etersoft: etersoft:
kubeContext: etersoft kubeContext: etersoft

14
helmfile.yaml
View File

@ -9,37 +9,37 @@ releases:
- <<: *metrics-server - <<: *metrics-server
installed: true installed: true
namespace: kube-system namespace: kube-system
createNamespace: false createNamespace: true
- <<: *istio-base - <<: *istio-base
installed: true installed: true
namespace: istio-system namespace: istio-system
createNamespace: false createNamespace: true
- <<: *istio-gateway - <<: *istio-gateway
installed: true installed: true
namespace: istio-system namespace: istio-system
createNamespace: false createNamespace: true
- <<: *istiod - <<: *istiod
installed: true installed: true
namespace: istio-system namespace: istio-system
createNamespace: false createNamespace: true
- <<: *cert-manager - <<: *cert-manager
installed: true installed: true
namespace: cert-manager namespace: cert-manager
createNamespace: false createNamespace: true
- <<: *minio - <<: *minio
installed: true installed: true
namespace: minio-service namespace: minio-service
createNamespace: false createNamespace: true
- <<: *openvpn - <<: *openvpn
installed: true installed: true
namespace: openvpn-service namespace: openvpn-service
createNamespace: false createNamespace: true
- <<: *metallb - <<: *metallb
installed: true installed: true

14
releases.yaml
View File

@ -357,3 +357,17 @@ templates:
name: reflector name: reflector
chart: emberstack/reflector chart: emberstack/reflector
version: 7.1.216 version: 7.1.216
rook-ceph: &rook-ceph
name: rook-ceph
chart: rook/rook-ceph
version: v1.13.1
inherit:
- template: default-env-values
rook-ceph-cluster: &rook-ceph-cluster
name: rook-ceph-cluster
chart: rook/rook-ceph-cluster
version: v1.13.1
inherit:
- template: default-env-values

2
repositories.yaml
View File

@ -43,3 +43,5 @@ repositories:
url: https://firefly-iii.github.io/kubernetes/ url: https://firefly-iii.github.io/kubernetes/
- name: emberstack - name: emberstack
url: https://emberstack.github.io/helm-charts url: https://emberstack.github.io/helm-charts
- name: rook
url: https://charts.rook.io/release

30
test/test.yaml Normal file
View File

@ -0,0 +1,30 @@
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: pvc-test
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 5Gi
---
apiVersion: v1
kind: Pod
metadata:
name: pvc-test
spec:
restartPolicy: Never
volumes:
- name: vol
persistentVolumeClaim:
claimName: pvc-test
containers:
- name: pv-recycler
image: ubuntu
command: ["/bin/sh", "-c", "sleep 10000"]
volumeMounts:
- name: vol
mountPath: /data