Mirrors/geerlingguy.ansible-role-kubernetes
1
0
Fork 0
mirror of https://github.com/geerlingguy/ansible-role-kubernetes.git synced 2025-04-02 01:20:57 +02:00
Code Issues Projects Releases Wiki Activity

Ensure kernel modules are present

Browse Source
This commit is contained in:
Jim Speir 2023-02-21 23:33:02 +00:00
parent 4a4c88b6b8
commit f2c5df1079
1 changed files with 18 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
tasks/sysctl-setup.yml
View File

@ -7,7 +7,24 @@
ansible_distribution != 'Debian'
or ansible_distribution_major_version | int < 10
# See: https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#letting-iptables-see-bridged-traffic
# See: https://kubernetes.io/docs/setup/production-environment/container-runtimes/#forwarding-ipv4-and-letting-iptables-see-bridged-traffic
- name: Ensure relevant kernel module is enabled
modprobe:
name: br_netfilter
state: present
loop:
- br_netfilter
- overlay
- name: Persist kernel modules after reboot
lineinfile:
path: /etc/sysctl.d/k8s.conf
line: "{{ item }}"
loop:
- "net.bridge.bridge-nf-call-iptables = 1"
- "net.bridge.bridge-nf-call-ip6tables = 1"
- "net.ipv4.ip_forward = 1"
- name: Let iptables see bridged traffic.
sysctl:
name: "{{ item }}"