• Stars
    star
    113
  • Rank 310,115 (Top 7 %)
  • Language
    Python
  • Created over 7 years ago
  • Updated almost 4 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Rancher 1.6 Installation. Doesn't support Rancher 2.0

Ansible Playbooks for Rancher Hosts

This is a series of playbooks designed to quickly bring up a Rancher environment.

This is an overview of how the project behaves. For specific instructions on installing and using these playbooks with static and dynamic inventories, please see INSTALL.md.

NOTE: This is a work in progress. As of this writing it will provision an Ubuntu 16.04 environment with static hosts or dynamic hosts in EC2.

In the future it will adapt to RHEL/CentOS/Ubuntu/Debian according to the system where the playbooks run. It will also grow to support other providers with dynamic inventory support.

Prerequisites

Install Python

Ubuntu 16.04 doesn't come with Python installed by default. You can either install it manually after booting the instances, or you can add the following to cloud-config:

#!/bin/bash

apt-get -qq update
apt-get -qq -y install python-pip

Alternatively, add the following:

#cloud-config

package_upgrade: true
package_update: true
packages: 
  - curl
  - python
  - python-pip

Ansible Vault

This project uses the Ansible Vault for storing private information. There is a sample vault provided with this repository. The password is ansible and can be changed by following the instructions on rekeying located here.

If you wish to skip using the Vault and instead store passwords in plaintext in the various configuration files, you can do so by removing all references to private.yml from the vars_files key in any YAML file in the root of the project (e.g. rancher.yml, haproxy.yml, etc.)

Prior to removing this file, copy its variables out to another variable file, such as group_vars/all.yml.

Inventory

The project uses a mixture of static and dynamic inventory. Static entries go into static_server and static_node in inventory/hosts. Dynamic hosts will be brought in and added to their corresponding groups. All hosts and groups will then be collected into server:children, loadbalancer:children, and node:children for processing by the playbooks themselves.

Supported Inventory Systems

  • Static
  • EC2

Enabling Dynamic Inventory Systems

Dynamic inventory provider scripts and their configuration files are stored in inventory_providers. To activate one or more of them, symlink them to the inventory directory:

$ cd inventory
$ ln -s ../inventory_providers/ec2.py ec2.py

EC2

See INSTALL_EC2.md

Playbooks

All playbooks are included in site.yml. To execute a full run:

$ ansible-playbook site.yml

Note: you won't be able to run a server and node install in the first run. You will need to install the server and then configure API keys in the Vault.

Optionally, you can filter by one or more roles:

$ ansible-playbook --limit node site.yml

Individual playbooks can be run as outlined below.

Rancher

This playbook installs the version of Docker indicated in group_vars/all.yml on hosts with a role tag of server or node. It goes on to install Rancher Server on all hosts with role set to server. If the role is set to node, and if there are API keys for the environment located in the Vault, it will register nodes with the Rancher server.

The Rancher configuration in group_vars/server.yml designates the architecture:

  • single node, internal database
  • single node, external database
  • single node, bind-mount database
  • single node, force HA
    • sets external database
    • use this if you want HA and will add additional servers later

Ansible will automatically configure Rancher to use an external database if any of the following are true:

  • use_external_db is true
  • force_ha is true
  • more than one instance has a tag of role=server

If Rancher Server will use an external database, set the database parameters in group_vars/server.yml and set the db_pass in the Vault.

Ansible will perform sanity checks and fail if the database parameters are missing, but it will not test that the parameters are actually correct.

Ansible will create the database and its user if needed.

See INSTALL.md for more information about automatic host registration.

To run the Rancher playbook on its own, execute:

$ ansible-playbook rancher.yml

HAProxy

This playbook installs HAProxy on hosts with role set to loadbalancer, or if no hosts exist with this tag, it will install HAProxy on hosts with role set to server. The latter is only appropriate for single-server environments. If you are running Rancher in an HA configuration, create additional instances tagged with role=loadbalancer and change haproxy.yml to run on nodes with this tag.

NOTE: If you wish to disable HAProxy entirely, set haproxy_enabled to false in vars/default.yml.

After installing HAProxy this playbook then configures it for SSL termination using the certificate stored in the Vault. The certificate provided in the vault is a self-signed certificate for a fake domain - please replace it with your own certificate.

HAProxy performs pass-through TCP proxying to Rancher Server using the Proxy protocol. This absolves us of the need to have HAProxy perform additional analysis of the content to enable Websockets or GRPC communication between the server and the nodes.

Ansible will automatically populate haproxy.cfg with the internal IPs of all Rancher servers (members of the server group). Should these IPs change (e.g. if servers are added or removed), or if you need to rebuild the configuration (such as if you change the certificate), simply re-run this playbook:

$ ansible-playbook --tags config haproxy.yml

Alternative Post-Install Node Setup (optional)

This section applies if you do not use these playbooks to register your nodes with Rancher automatically.

Since you already have an Ansible environment that knows your hosts by their EC2 tag, you can use this to install the Rancher Agent onto your nodes.

After logging into the server and configuring access control, select your environment and add a node. Copy the command that Rancher gives you and use it from your Ansible control station:

$ ansible node -a "<command>"

This will reach out to all of your nodes in parallel and instruct them to install the agent. Within a few moments you'll see them appear in the UI.

More Repositories

1

rancher

Complete container management platform
Go
23,193
star
2

os

Tiny Linux distro that runs the entire OS as Docker containers
Go
6,437
star
3

k3os

Purpose-built OS for Kubernetes, fully managed by Kubernetes.
Go
3,403
star
4

rke

Rancher Kubernetes Engine (RKE), an extremely simple, lightning fast Kubernetes distribution that runs entirely within containers.
Go
3,197
star
5

rio

Application Deployment Engine for Kubernetes
Go
2,282
star
6

local-path-provisioner

Dynamically provisioning persistent local storage with Kubernetes
Go
2,138
star
7

fleet

Deploy workloads from Git to large fleets of Kubernetes clusters
Go
1,514
star
8

convoy

A Docker volume plugin, managing persistent container volumes.
Go
1,308
star
9

rke2

Go
1,028
star
10

old-vm

(OBSOLETE) Package and Run Virtual Machines as Docker Containers
Go
646
star
11

ui

Rancher UI
JavaScript
598
star
12

cattle

Infrastructure orchestration engine for Rancher 1.x
Java
574
star
13

k3c

Lightweight local container engine for container development
Go
571
star
14

system-upgrade-controller

In your Kubernetes, upgrading your nodes
Go
502
star
15

dashboard

The Rancher UI
Vue
449
star
16

charts

Github based Helm Chart Index Repository providing charts crafted for Rancher Manager
Smarty
389
star
17

community-catalog

Catalog entries contributed by the community
Smarty
384
star
18

install-docker

Scripts for docker-machine to install a particular docker version
Shell
370
star
19

dapper

Docker build wrapper
Go
358
star
20

quickstart

HCL
357
star
21

terraform-provider-rke

Terraform provider plugin for deploy kubernetes cluster by RKE(Rancher Kubernetes Engine)
Go
340
star
22

opni

Multi Cluster Observability with AIOps
Go
334
star
23

cli

Rancher CLI
Go
331
star
24

kim

In ur kubernetes, buildin ur imagez
Go
326
star
25

trash

Minimalistic Go vendored code manager
Go
296
star
26

elemental

Elemental is an immutable Linux distribution built to run Rancher and its corresponding Kubernetes distributions RKE2 and k3s. It is built using the Elemental-toolkit
Go
295
star
27

terraform-controller

Use K8s to Run Terraform
Go
292
star
28

elemental-toolkit

❄️ The toolkit to build, ship and maintain cloud-init driven Linux derivatives based on container images
Go
272
star
29

remotedialer

HTTP in TCP in Websockets in HTTP in TCP, Tunnel all the things!
Go
255
star
30

terraform-provider-rancher2

Terraform Rancher2 provider
Go
222
star
31

rancher-compose

Docker compose compatible client to deploy to Rancher
Go
214
star
32

wrangler

Write controllers like a boss
Go
205
star
33

os-vagrant

Ruby
176
star
34

k3k

Kubernetes in Kubernetes
Go
163
star
35

rancher-cleanup

Shell
160
star
36

rancher-catalog

Smarty
155
star
37

docs

Documentation for Rancher products (for 2.0/new site)
SCSS
140
star
38

fleet-examples

Fleet usage examples
Shell
140
star
39

catalog-dockerfiles

Dockerfiles for Rancher Catalog containers
Shell
131
star
40

api-spec

Specification for Rancher REST API implementation
121
star
41

k8s-intro-training

HTML
114
star
42

sherdock

Docker Image Manager
JavaScript
110
star
43

norman

APIs on APIs on APIs
Go
108
star
44

docker-from-scratch

Tiny Docker in Docker
Go
105
star
45

backup-restore-operator

Go
99
star
46

lb-controller

Load Balancer for Rancher services via ingress controllers backed up by a Load Balancer provider of choice
Go
97
star
47

pipeline

Go
96
star
48

container-crontab

Simple cron runner for containers
Go
88
star
49

terraform-modules

Rancher Terraform Modules
HCL
85
star
50

system-charts

Replaced by rancher/charts. The deprecation process is in progress.
Mustache
84
star
51

os2

EXPERIMENTAL: A Rancher and Kubernetes optimized immutable Linux distribution based on openSUSE
Go
82
star
52

cluster-api-provider-rke2

RKE2 bootstrap and control-plane Cluster API providers.
Go
81
star
53

vagrant

Vagrant file to stand up a Local Rancher install with 3 nodes
Shell
79
star
54

rancher-dns

A simple DNS server that returns different answers depending on the IP address of the client making the request
Go
79
star
55

giddyup

Go
78
star
56

kontainer-engine

Provisioning kubernetes cluster at ease
Go
78
star
57

go-rancher

Go language bindings for Rancher API
Go
74
star
58

go-skel

Skeleton for Rancher Go Microservices
Shell
71
star
59

runc-cve

CVE patches for legacy runc packaged with Docker
Dockerfile
69
star
60

terraform-k3s-aws-cluster

HCL
67
star
61

agent

Shell
64
star
62

kontainer-driver-metadata

This repository is to keep information of k8s versions and their dependencies like k8s components flags and system addons images.
Go
63
star
63

external-dns

Service updating external DNS with Rancher services records for Rancher 1.6
Go
63
star
64

terraform-provider-rancher2-archive

[Deprecated] Use https://github.com/terraform-providers/terraform-provider-rancher2
Go
62
star
65

gitjob

Go
59
star
66

types

Rancher API types
Go
59
star
67

rancher-docs

Rancher Documentation
JavaScript
58
star
68

rancher.github.io

HTML
58
star
69

ui-driver-skel

Skeleton Rancher UI driver for custom docker-machine drivers
JavaScript
58
star
70

rke2-charts

Shell
56
star
71

os-services

RancherOS Service Compose Templates
Shell
54
star
72

turtles

Rancher CAPI extension
Go
50
star
73

client-python

A Python client for Rancher APIs
Python
49
star
74

hyperkube

Rancher hyperkube images
48
star
75

partner-charts

A catalog based on applications from independent software vendors (ISVs). Most of them are SUSE Partners.
Smarty
47
star
76

rancher-cloud-controller-manager

A kubernetes cloud-controller-manager for the rancher cloud
Go
44
star
77

steve

Kubernetes API Translator
Go
43
star
78

rodeo

Smarty
43
star
79

cluster-template-examples

43
star
80

cis-operator

Go
43
star
81

rancherd

Bootstrap Rancher and k3s/rke2
Go
42
star
82

10acre-ranch

Build Rancher environment on GCE
Shell
41
star
83

elemental-operator

The Elemental operator is responsible for managing the OS versions and maintaining a machine inventory to assist with edge or baremetal installations.
Go
41
star
84

secrets-bridge

Go
40
star
85

storage

Rancher specific storage plugins
Shell
39
star
86

k8s-sql

Storage backend for Kubernetes using Go database/sql
Go
37
star
87

lasso

Low level generic controller framework
Go
36
star
88

server-chart

[Deprecated] Helm chart for Rancher server
Shell
36
star
89

os-packer

Shell
36
star
90

pipeline-example-go

Go
36
star
91

system-tools

This repo is for tools helping with various cleanup tasks for rancher projects. Example: rancher installation cleanup
Go
35
star
92

rancher-metadata

A simple HTTP server that returns EC2-style metadata information that varies depending on the source IP address making the request.
Go
31
star
93

os-base

Base file system for RancherOS images
Shell
31
star
94

image-mirror

Shell
31
star
95

websocket-proxy

Go
29
star
96

rke-tools

Tools container for supporting functions in RKE
Go
29
star
97

gdapi-python

Python Binding to API spec
Python
28
star
98

wins

Windows containers connect to Windows host
Go
28
star
99

api-ui

Embedded UI for any service that implements the Rancher API spec
JavaScript
27
star
100

migration-tools

Go
27
star