fix: explicitly set bind-address for scheduler and controller-manager

cloud-labs-infra · Dec 1, 2023 · d97f936 · d97f936
1 parent f3778d0
commit d97f936
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 0 deletions.
diff --git a/defaults/main.yml b/defaults/main.yml
@@ -44,6 +44,19 @@ k8s_cluster_cluster_configuration:
   # In a cluster with more than one control plane instances, this field should be assigned
   # the address of the external load balancer in front of the control plane instances
   controlPlaneEndpoint: "{{ hostvars[inventory_hostname]['ansible_facts']['default_ipv4']['address'] }}:6443"
+  # controller-manager and scheduler listen 127.0.0.1 address and respective port by default.
+  # it could be a problem if you are going to deploy monitoring stack because it would be
+  # scrapping <node_ip>:<port> (node_ip - because those manifests have 'hostNetwork: true')
+  #
+  # read more about kube-controller-manager options:
+  #   https://kubernetes.io/docs/reference/command-line-tools-reference/kube-scheduler/
+  controllerManager:
+    extraArgs:
+      bind-address: 0.0.0.0
+  # https://kubernetes.io/docs/reference/command-line-tools-reference/kube-controller-manager/
+  scheduler:
+    extraArgs:
+      bind-address: 0.0.0.0
 
 # https://kubernetes.io/docs/reference/config-api/kubelet-config.v1beta1/
 k8s_cluster_kubelet_configuration:

diff --git a/molecule/end-to-end/verify.yml b/molecule/end-to-end/verify.yml
@@ -7,3 +7,7 @@
     - name: Include verify common
       ansible.builtin.include_tasks:
         file: ../verify-common.yml
+
+    - name: temporary test
+      shell: |
+        netstat -tulpn