Skip to content
This repository has been archived by the owner on Jan 11, 2023. It is now read-only.

Latest commit

 

History

History
66 lines (44 loc) · 2.77 KB

using-cross-resource-group-nodes.md

File metadata and controls

66 lines (44 loc) · 2.77 KB
Raw

Cross resource group nodes

Feature status: Alpha since v1.12.

Kubernetes v1.12 adds support for cross resource group (RG) nodes and unmanaged (such as on-prem) nodes in Azure cloud provider. A few assumptions are made for such nodes:

  • Cross-RG nodes are in same region and set with required labels (as clarified in the following part)
  • Nodes will not be part of the load balancer managed by cloud provider
  • Both node and container networking should be configured properly by provisioning tools
  • AzureDisk is supported for Azure cross-RG nodes, but not for on-prem nodes

TOC:

Pre-requirements

Because cross-RG nodes and unmanaged nodes won't be added to Azure load balancer backends, feature gate ServiceNodeExclusion should be enabled for master components (e.g. kube-controller-manager).

Cross-RG nodes

Cross-RG nodes should register themselves with required labels together with cloud provider:

  • alpha.service-controller.kubernetes.io/exclude-balancer=true, which is used to exclude the node from load balancer.
  • kubernetes.azure.com/resource-group=<rg-name>, which provides external RG and is used to get node information.
  • cloud provider config
    • --cloud-provider=azure when using kube-controller-manager
    • --cloud-provider=external when using cloud-controller-manager

For example,

kubelet ... \
  --cloud-provider=azure \
  --cloud-config=/etc/kubernetes/azure.json \
  --node-labels=alpha.service-controller.kubernetes.io/exclude-balancer=true,kubernetes.azure.com/resource-group=<rg-name>

Unmanaged nodes

On-prem nodes are different from Azure nodes, all Azure coupled features (such as load balancers and Azure managed disks) are not supported for them. To prevent the node being deleted, Azure cloud provider will always assumes the node existing.

On-prem nodes should register themselves with labels alpha.service-controller.kubernetes.io/exclude-balancer=true and kubernetes.azure.com/managed=false:

  • alpha.service-controller.kubernetes.io/exclude-balancer=true, which is used to exclude the node from load balancer.
  • kubernetes.azure.com/managed=false, which indicates the node is on-prem or on other clouds.

For example,

kubelet ...\
  --cloud-provider= \
  --node-labels=alpha.service-controller.kubernetes.io/exclude-balancer=true,kubernetes.azure.com/managed=false

Reference

See design docs for cross resource group nodes in KEP 20180809-cross-resource-group-nodes.