2016-06-08 03:45:25 +08:00
## Kubernetes on AWS with Terraform
**Overview:**
2017-03-02 01:25:58 +08:00
This project will create:
* VPC with Public and Private Subnets in # Availability Zones
* Bastion Hosts and NAT Gateways in the Public Subnet
* A dynamic number of masters, etcd, and worker nodes in the Private Subnet
* even distributed over the # of Availability Zones
* AWS ELB in the Public Subnet for accessing the Kubernetes API from the internet
2016-06-08 03:45:25 +08:00
2017-03-02 01:25:58 +08:00
**Requirements**
- Terraform 0.8.7 or newer
2016-06-08 03:45:25 +08:00
**How to Use:**
2017-04-12 21:11:39 +08:00
- Export the variables for your AWS credentials or edit `credentials.tfvars` :
2016-06-08 03:45:25 +08:00
```
2017-04-12 21:11:39 +08:00
export AWS_ACCESS_KEY_ID="www"
export AWS_SECRET_ACCESS_KEY ="xxx"
export AWS_SSH_KEY_NAME="yyy"
export AWS_DEFAULT_REGION="zzz"
2016-06-08 03:45:25 +08:00
```
2017-04-12 21:11:39 +08:00
- Rename `contrib/terraform/aws/terraform.tfvars.example` to `terraform.tfvars`
2016-06-08 03:45:25 +08:00
2017-04-12 21:11:39 +08:00
- Update `contrib/terraform/aws/terraform.tfvars` with your data
- Allocate new AWS Elastic IPs: Depending on # of Availability Zones used (2 for each AZ)
- Create an AWS EC2 SSH Key
2016-06-08 03:45:25 +08:00
2017-04-12 21:11:39 +08:00
- Run with `terraform apply --var-file="credentials.tfvars"` or `terraform apply` depending if you exported your AWS credentials
- Terraform automatically creates an Ansible Inventory file called `hosts` with the created infrastructure in the directory `inventory`
2017-03-02 01:25:58 +08:00
- Once the infrastructure is created, you can run the kargo playbooks and supply inventory/hosts with the `-i` flag.
2016-06-08 03:45:25 +08:00
2017-04-12 21:11:39 +08:00
**Troubleshooting**
***Remaining AWS IAM Instance Profile***:
If the cluster was destroyed without using Terraform it is possible that
the AWS IAM Instance Profiles still remain. To delete them you can use
the `AWS CLI` with the following command:
```
aws iam delete-instance-profile --region < region_name > --instance-profile-name < profile_name >
```
***Ansible Inventory doesnt get created:***
It could happen that Terraform doesnt create an Ansible Inventory file automatically. If this is the case copy the output after `inventory=` and create a file named `hosts` in the directory `inventory` and paste the inventory into the file.
2017-03-02 01:25:58 +08:00
**Architecture**
2016-06-08 03:45:25 +08:00
2017-03-02 01:25:58 +08:00
Pictured is an AWS Infrastructure created with this Terraform project distributed over two Availability Zones.
2016-06-08 03:45:25 +08:00
2017-03-02 01:25:58 +08:00
![AWS Infrastructure with Terraform ](docs/aws_kargo.png )