Skip to content

Latest commit

 

History

History
91 lines (63 loc) · 5.22 KB

README.md

File metadata and controls

91 lines (63 loc) · 5.22 KB

Production-grade Kubernetes Cluster Provisioning in Hetzner Cloud with Terraform and k0sctl

GitHub forks GitHub Repo stars

The purpose of this repo is to share a simple way to provision Infrastructure in Hetzner Cloud via Terraform for a Kubernetes Cluster. The resources will be used to create a k0s Cluster.

Hetzner Cloud is a great cloud provider which offers a truly great service with a good performance/cost ratio. With Hetzner's Cloud Controller Manager and CSI driver it's possible to automatically provision load balancers and persistent volumes very easily.

This config will create 7 servers, within a private network, for a Kubernetes Cluster:

  • 3 Master Nodes with each 2 vCPUs and 4 GB RAM (CX21)
  • 3 Worker Nodes with each 2 vCPUs, 8 GB RAM (CX31)
  • 1 Private Network (10.0.0.0/8) with 1 Subnet (10.250.0.0/24)
  • 1 Bastion Host to connect to the private network (CX11)

Prerequesites

Prepare environment

With the following steps we will create the resources mentioned above:

  1. Clone this repo
  2. Modify terraform.tfvars, add your API Key and at least the your SSH Fingerprint.
  3. Add SSH Key to cloudinit/cloud-init.yaml.cfg (line 13)
  4. Change the username in cloudinit/cloud-init.yaml.cfg (line 8 and 30)
  5. Run terraform plan and check if everything looks good
  6. Run terraform apply and give it approx. 2 minutes

You can add more customizations in the cloud-init file if needed

k0s - Zero Friction Kubernetes

Now that you got all resources ready, we can install a k0s cluster within a few minutes to create a production grade Kubernetes cluster.

k0s is a lightwight open-source Kubernetes Distribution with all batteries included. It can be installed on cloud instances like the ones we've created in Hetzner but also in public clouds, on bare-metal servers, on a single Raspberry Pi or a cluster of Pi's.

Getting Started with k0s

With k0sctl the installation of a production-grade cluster is completly automated, as well as Day 2 operations like scaling or upgrading the cluster.

To run k0sctl we first need to download it. In this instruction I will use homebrew:

brew install k0sproject/tap/k0sctl

Provided a configuration file describing the desired cluster state, k0sctl will connect to the listed hosts, determines the current state of the hosts and configures them as needed to form a k0s cluster.

Please adjust the k0sctl.yaml via adding the ip address of the Bastion Host and the Loadbalancer. As soon as we've added them we can now apply the desired cluster state and form the k0s cluster.

k0sctl apply --config k0s/k0sctl.yaml

You now have a Kubernetes cluster with 3 master nodes and 3 worker nodes.

Hetzner Cloud Integration

Hetzner Cloud offers useful integration tooling for Kubernetes and Hetzner Cloud Projects.

Let's start with adding our API Key to the YAML file (hetzner/hcloud-secret.yaml) for the secret, so the Cloud Controller Manager and the Container Storage Interface Driver can interact with our Hetzner Cloud Project. After this change we need to apply the YAML to our k0s cluster:

# Grab kubeconfig file from previously created cluster
k0sctl kubeconfig  --config k0s/k0sctl.yaml > kubeconfig

# Apply hcloud secret manifest
kubectl apply -f 'hetzner/hcloud-secret.yaml' --kubeconfig kubeconfig

Hetzner Cloud CCM

Hetzner Cloud offers a Kubernetes Cloud Controller Manager for Hetzner Cloud. This CCM is useful if we want to create Loadbalancer Services, Zones in Kubernetes, use private networks of Hetzner for Pods or make Kubernetes more aware of the nodes in a Hetzner Cloud Project.

For k0s there needs to be some small changes to the manifests from Hetzner since kubelet is in a different directory with k0s. These changes are already made in hetzner/ccm.yaml, so let's apply the manifest.

# Apply CCM manifest
kubectl apply -f 'hetzner/hcloud-ccm.yaml' --kubeconfig kubeconfig

Hetzner Cloud CSI

Hetzner Cloud offers a CSI (container storage interface) driver, so you can dynamically create persistent volumes in your Kubernetes Cluster, using volumes in your Hetzner Cloud project.

# Apply CSI manifest
kubectl apply -f 'hetzner/hcloud-csi.yaml' --kubeconfig kubeconfig

Done. You now have a fully functional and production grade Kubernetes cluster with 3 master nodes, 3 worker nodes and the ability to create services with type loadbalancer and stateful application in your cluster with persistent volumes from Hetzner Cloud.