| classes: |
| - system.linux.system.repo.docker_legacy |
| - system.kubernetes.pool.cluster |
| - system.linux.network.hosts |
| - system.salt.minion.cert.k8s_client |
| - system.salt.minion.cert.etcd_client |
| - cluster.k8s-ha-calico |
| parameters: |
| docker: |
| host: |
| pkgs: |
| - ${_param:kubernetes_docker_package} |
| - python-docker |
| options: |
| bip: 172.31.255.1/24 |
| storage-driver: overlay2 |
| kubernetes: |
| pool: |
| proxy: |
| daemon_opts: |
| cluster-cidr: ${_param:calico_private_network}/${_param:calico_private_netmask} |
| kubelet: |
| address: ${_param:single_address} |
| fail_on_swap: ${_param:kubelet_fail_on_swap} |
| network: |
| calico: |
| enabled: true |
| image: ${_param:kubernetes_calico_image} |
| calicoctl_image: ${_param:kubernetes_calico_calicoctl_image} |
| cni_image: ${_param:kubernetes_calico_cni_image} |
| kube_controllers_image: ${_param:kubernetes_calico_kube_controllers_image} |
| etcd: |
| ssl: |
| enabled: true |
| policy: |
| enabled: ${_param:kubernetes_calico_policy_enabled} |
| common: |
| addons: |
| virtlet: |
| enabled: ${_param:kubernetes_virtlet_enabled} |
| namespace: ${_param:kubernetes_addon_namespace} |
| image: ${_param:kubernetes_virtlet_image} |
| criproxy_version: ${_param:kubernetes_criproxy_version} |
| criproxy_source: ${_param:kubernetes_criproxy_checksum} |
| hosts: |
| - ${_param:kubernetes_compute01_hostname} |
| hyperkube: |
| image: ${_param:kubernetes_hyperkube_image} |
| pause_image: ${_param:kubernetes_pause_image} |
| linux: |
| network: |
| resolv: |
| dns: |
| - 172.18.208.44 |
| - 172.18.176.4 |
| - 10.254.0.10 |
| interface: |
| ens3: |
| enabled: true |
| type: eth |
| proto: static |
| name: ${_param:primary_interface} |
| address: ${_param:deploy_address} |
| netmask: 255.255.255.0 |
| gateway: 192.168.10.1 |
| post_up_cmds: |
| - ip r rep 10.254.0.0/16 via ${_param:deploy_address} |
| ens4: |
| enabled: true |
| type: eth |
| proto: static |
| address: ${_param:single_address} |
| netmask: '255.255.255.0' |
| ipflush_onchange: true |
| restart_on_ipflush: true |