# 重新配置启动 haproxy - hosts: lb tasks: - name: 配置 haproxy template: src={{ base_dir }}/roles/lb/templates/haproxy.cfg.j2 dest=/etc/haproxy/haproxy.cfg - name: 重启haproxy服务 shell: systemctl restart haproxy - hosts: new-master roles: - { role: os-harden, when: "OS_HARDEN is defined and OS_HARDEN == 'yes'" } - prepare - docker - kube-master - kube-node # 根据hosts中配置,以下两种网络只会安装一种 - { role: calico, when: "CLUSTER_NETWORK == 'calico'" } - { role: flannel, when: "CLUSTER_NETWORK == 'flannel'" } # 禁止业务 pod调度到 master节点 tasks: - name: 禁止业务 pod调度到 master节点 shell: "{{ bin_dir }}/kubectl cordon {{ NODE_IP }} " when: DEPLOY_MODE != "allinone" ignore_errors: true - name: 设置master节点role shell: "{{ bin_dir }}/kubectl label node {{ NODE_IP }} kubernetes.io/role=master --overwrite" ignore_errors: true