GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → vietanhduong → my-cluster

vietanhduong / my-cluster

Licence: other
My Kubernetes cluster

Programming Languages

HCL
1544 projects
shell
77523 projects

Labels

kubernetesawstutorialvaultterraformeks

Projects that are alternatives of or similar to my-cluster

eks-anywhere-prow-jobs
This repository contains Prowjob configurations for Amazon EKS Anywhere. You can view the jobs at https://prow.eks.amazonaws.com.
Stars: ✭ 14 (-48.15%)
Mutual labels:  eks
vault-ca
Set of scripts to create your own CA using hashicorp Vault
Stars: ✭ 16 (-40.74%)
Mutual labels:  vault
eks-nvme-ssd-provisioner
EKS NVMe SSD provisioner for Amazon EC2 Instance Stores
Stars: ✭ 50 (+85.19%)
Mutual labels:  eks
vault-terraform-demo
Deploy HashiCorp Vault with Terraform in GKE.
Stars: ✭ 47 (+74.07%)
Mutual labels:  vault
homelab-vault-config
Config and scripts I use to manage my homelab Hashicorp Vault setup.
Stars: ✭ 28 (+3.7%)
Mutual labels:  vault
vault-demo
Walkthroughs and scripts for my @hashicorp Vault talks
Stars: ✭ 67 (+148.15%)
Mutual labels:  vault
vault-ctrl-tool
Simple tool for managing authentication, secrets, and leases for services.
Stars: ✭ 23 (-14.81%)
Mutual labels:  vault
iskan
Kubernetes Native, Runtime Container Image Scanning
Stars: ✭ 35 (+29.63%)
Mutual labels:  eks
vault-unseal
auto-unseal utility for Hashicorp Vault
Stars: ✭ 57 (+111.11%)
Mutual labels:  vault
vault-puppet
Using @hashicorp Vault with Puppet
Stars: ✭ 36 (+33.33%)
Mutual labels:  vault
k8s-istio-observe-frontend
Angular 12-based front-end UI for k8s Golang observability project: https://github.com/garystafford/k8s-istio-observe-backend/tree/2021-istio
Stars: ✭ 20 (-25.93%)
Mutual labels:  eks
laravel-php-k8s
Just a simple port of renoki-co/php-k8s for easier access in Laravel
Stars: ✭ 71 (+162.96%)
Mutual labels:  eks
practical-revault
Version 0 specifications for a Revault deployment
Stars: ✭ 25 (-7.41%)
Mutual labels:  vault
pentagon
Vault <-> Kubernetes Secrets
Stars: ✭ 56 (+107.41%)
Mutual labels:  vault
go-fsimpl
Go io/fs.FS filesystem implementations for various URL schemes
Stars: ✭ 225 (+733.33%)
Mutual labels:  vault
thycotic.secretserver
PowerShell module for automating with Thycotic Secret Server REST API
Stars: ✭ 41 (+51.85%)
Mutual labels:  vault
certctl
A command line tool able to request certificate generation from Vault to write certificate files to the local filesystem.
Stars: ✭ 13 (-51.85%)
Mutual labels:  vault
eks
AWS EKS - kubernetes project
Stars: ✭ 149 (+451.85%)
Mutual labels:  eks
ekz
An EKS-D Kubernetes distribution for desktop
Stars: ✭ 87 (+222.22%)
Mutual labels:  eks
vault-boshrelease
No description or website provided.
Stars: ✭ 29 (+7.41%)
Mutual labels:  vault
View All Similar Projects ➔

My Cluster

This repository is for my kubernetes cluster configurations.

Assume you are familiar with Terraform, Kubernetes, and AWS.

Some of the information you need to know:

  • I use EKS (Elastic Kubernetes Service) and Kubernetes version 1.20.
  • I deploy the cluster what I consider to be the backbone of the cluster (cert-manager, istio, argocd, vault) by using Terraform.
  • When deploying istio before you run "terraform apply" run install.sh script. I noted in READEME.md.
  • Istio version 1.9.7.
  • I manage Secrets with Hashicorp Vault.

Notes

  • If you use Cloudflare and Cert Manager to order a Certificate, the "Always use HTTPS" mode must be disabled.
  • If you use Istio, Gateway cannot be force request to HTTPS (443) httpsRedirect: true. You can change it after the challenge is over.
  • When working with Istio I had a lot of problems ordering the Let's Encrypt Certificate using http01 so I switched to using dns01 method by providing Cloudflare API Key. You can find related documents here.
  • The answer to the question "What is the different between 'node_groups' and 'worker_groups'?" in here.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].