Skip to content
This repository was archived by the owner on Aug 19, 2021. It is now read-only.

Deploy the Software Stack

Jump to bottom
mawinkler edited this page Nov 11, 2019 · 17 revisions

Google Cloud

ansible-playbook --vault-password-file ../.vault-pass.txt -i gcp_inventory.gcp.yml --extra-vars="type=gcp" deploy.yml

or Amazon AWS

ansible-playbook --vault-password-file ../.vault-pass.txt -i ec2.py --extra-vars="type=aws" deploy.yml

or Microsoft Azure (future)

ansible-playbook --vault-password-file ../.vault-pass.txt -i azure_rm.py --extra-vars="type=azure" deploy.yml

or VMware ESXi

ansible-playbook --vault-password-file ../.vault-pass.txt -i hosts --extra-vars="type=esx" deploy.yml

During the deployment, a directory called ./site_<type> is created and populated with information on how to access your environment including setup logs. Example:

cat site_gcp/jenkins.log
NAME:   jenkins
LAST DEPLOYED: Sat Oct 26 10:38:54 2019
NAMESPACE: jenkins
STATUS: DEPLOYED

RESOURCES:
==> v1/ConfigMap
NAME           DATA  AGE
jenkins        6     1s
jenkins-tests  1     1s

==> v1/Deployment
NAME     READY  UP-TO-DATE  AVAILABLE  AGE
jenkins  0/1    1           0          1s

==> v1/PersistentVolumeClaim
NAME     STATUS  VOLUME                                    CAPACITY  ACCESS MODES  STORAGECLASS     AGE
jenkins  Bound   pvc-cefb4273-f7dc-11e9-8699-42010a9c0018  8Gi       RWO           rook-ceph-block  1s

==> v1/Pod(related)
NAME                      READY  STATUS   RESTARTS  AGE
jenkins-7447ddf9db-2pfdv  0/1    Pending  0         0s
...

cat site_gcp/jenkins.txt
URL: http://123.123.123.123:30013
Username: admin
Password: XXXXXXXXX

Use this info to access the services or to troubleshoot.

Note: The k8s master is tainted, which means that it does not run Kubernetes workload (which is best practice).

For that reason, services like Tiller and Rook-Ceph will initialize themselves only after workers did join the cluster. Therefore, the deploy.yml waits for the following condition to be met:

Number of rook-ceph-osd-#- pods equal count of worker nodes in the cluster

That typically takes in between two to three minutes. The deployment of Smart Check, Jenkins, etc. will take place after that initial initialization process.

Next Step (optional)

  • Deploy the Endpoints
  • [Deep Security]
  • [Deep Security Smart Check]
  • [Container Orchestration]
  • [Container Runtimes]
  • [Container Registry]
  • [Cluster Storage]
  • Jenkins
  • GitLab
  • [Linkerd]

Wiki

About MOADSD-NG

Getting Started

MOADSD-NG Containerized

MOADSD-NG Manual Setup

Adapt MOADSD-NG to Your Needs

The MOADSD-NG Life-Cycle

Software Components

Tipps

Final Words

Deprecated Chapters

Clone this wiki locally