67 lines
1.5 KiB
YAML
67 lines
1.5 KiB
YAML
---
|
|
- name: Update and upgrade apt packages
|
|
apt:
|
|
upgrade: yes
|
|
update_cache: yes
|
|
force_apt_get: yes
|
|
cache_valid_time: 86400
|
|
|
|
- name: Install apt packages
|
|
apt:
|
|
name: ['apt-transport-https', 'ca-certificates', 'curl', 'gnupg', 'lsb-release']
|
|
state: present
|
|
|
|
- name: Disable ufw
|
|
command: 'ufw disable'
|
|
when: ansible_distribution_version == '20.04'
|
|
|
|
- name: Disable SWAP since kubernetes can't work with swap enabled (1/2)
|
|
command: 'swapoff -a'
|
|
|
|
- name: Disable SWAP in fstab since kubernetes can't work with swap enabled (2/2)
|
|
replace:
|
|
path: /etc/fstab
|
|
regexp: '^([^#].*?\sswap\s+sw\s+.*)$'
|
|
replace: '# \1'
|
|
|
|
- name: Add br_netfilter to module autoload
|
|
lineinfile:
|
|
path: /etc/modules-load.d/k8s.conf
|
|
line: "{{ item }}"
|
|
create: true
|
|
with_items:
|
|
- 'overlay'
|
|
- 'br_netfilter'
|
|
|
|
- name: Add br_netfilter to module autoload
|
|
modprobe:
|
|
name: "{{ item }}"
|
|
state: present
|
|
become: true
|
|
with_items:
|
|
- 'overlay'
|
|
- 'br_netfilter'
|
|
|
|
- name: Add br_netfilter to module autoload
|
|
lineinfile:
|
|
path: /etc/sysctl.d/k8s.conf
|
|
line: "{{ item }}"
|
|
create: true
|
|
with_items:
|
|
- 'net.bridge.bridge-nf-call-iptables = 1'
|
|
- 'net.bridge.bridge-nf-call-ip6tables = 1'
|
|
- 'net.ipv4.ip_forward = 1'
|
|
|
|
- name: Disable net.bridge.bridge-nf-call-iptables
|
|
sysctl:
|
|
name: "{{ item }}"
|
|
value: 1
|
|
with_items:
|
|
- 'net.bridge.bridge-nf-call-iptables'
|
|
- 'net.bridge.bridge-nf-call-ip6tables'
|
|
|
|
- name: Disable net.ipv4.ip_forward
|
|
sysctl:
|
|
name: net.ipv4.ip_forward
|
|
value: "1"
|