This is a guide on how to use the Cluster API Provider for IONOS Cloud (CAPIC) to create a Kubernetes cluster on IONOS Cloud. To learn more about the Cluster API, please refer to the official Cluster API book.
In order to deploy a K8s cluster with CAPIC, you require the following:
-
A machine image, containing pre-installed, matching versions of
kubeadmandkubelet. The machine image can be built with image-builder and needs to be available at the location where the machine will be created on. For more information, check the custom image guide. -
clusterctl, which you can download from Cluster API (CAPI) releases on GitHub. -
A Kubernetes cluster for running your CAPIC controller.
Before creating a Kubernetes cluster on IONOS Cloud, you must initialize a management cluster where CAPI and CAPIC controllers run.
First, we need to add the IONOS Cloud provider to clusterctl config file ~/.cluster-api/clusterctl.yaml:
providers:
- name: ionoscloud
url: https://github.com/ionos-cloud/cluster-api-provider-ionoscloud/releases/latest/infrastructure-components.yaml
type: InfrastructureProviderIf XDG_CONFIG_HOME is set the configuration should be written to $XDG_CONFIG_HOME/cluster-api/clusterctl.yaml.
clusterctl init --infrastructure=ionoscloudCAPIC requires several environment variables to be set in order to create a Kubernetes cluster on IONOS Cloud.
They can be exported or saved inside the clusterctl config file at ~/.cluster-api/clusterctl.yaml
## -- Cloud-specific environment variables -- ##
IONOS_TOKEN # The token of the IONOS Cloud account.
## -- Cluster API-related environment variables -- ##
CONTROL_PLANE_ENDPOINT_HOST # The control plane endpoint host (optional).
# If it's not an IP but an FQDN, the provider must be able to resolve it
# to the value for CONTROL_PLANE_ENDPOINT_IP.
CONTROL_PLANE_ENDPOINT_IP # The IPv4 address of the control plane endpoint.
CONTROL_PLANE_ENDPOINT_PORT # The port of the control plane endpoint (optional).
# Defaults to 6443.
CONTROL_PLANE_ENDPOINT_LOCATION # The location of the control plane endpoint.
CLUSTER_NAME # The name of the cluster.
KUBERNETES_VERSION # The version of Kubernetes to be installed (can also be set via clusterctl).
## -- Kubernetes Cluster-related environment variables -- ##
IONOSCLOUD_DATACENTER_ID # The datacenter ID where the cluster should be created.
IONOSCLOUD_MACHINE_NUM_CORES # The number of cores (optional).
# Defaults to 4 for control plane and 2 for worker nodes.
IONOSCLOUD_MACHINE_MEMORY_MB # The memory in MB (optional).
# Defaults to 8192 for control plane and 4096 for worker nodes.
IONOSCLOUD_MACHINE_IMAGE_ID # The image ID.
IONOSCLOUD_MACHINE_SSH_KEYS # The SSH keys to be used.The IONOS_TOKEN should be stored in a secret in the same namespace as the management cluster.
The secret should have the following structure:
apiVersion: v1
kind: Secret
metadata:
name: my-ionos-credentials
type: Opaque
stringData:
token: "Token-Goes-Here"In order to create a new cluster, you need to generate a cluster manifest with clusterctl and then apply it with kubectl.
# Generate a cluster manifest
clusterctl generate cluster ionos-quickstart \
--infrastructure ionoscloud \
--kubernetes-version v1.29.2 \
--control-plane-machine-count 3 \
--worker-machine-count 3 > cluster.yaml
# Create the workload cluster by applying the manifest
kubectl apply -f cluster.yamlclusterctl describe cluster ionos-quickstartWait until the cluster is ready. This can take a few minutes.
You can use the following command to get the kubeconfig:
clusterctl get kubeconfig ionos-quickstart > ionos-quickstart.kubeconfigIf you do not have CNI yet, you can use the following command to install a CNI:
KUBECONFIG=ionos-quickstart.kubeconfig kubectl apply -f https://docs.projectcalico.org/manifests/calico.yamlAfter that you should see your nodes become ready:
KUBECONFIG=ionos-quickstart.kubeconfig kubectl get nodesYou may use our provided flavors for generating cluster with CNI, please refer to the Cluster templates section.
Or if your cluster does not have a CNI, you can install one manually. For example, to install Calico:
make crs-calico
kubectl apply -f templates/crs/cni/calico.yamlWe provide a helm chart for the Cloud Controller Manager for IONOS Cloud. Refer to its README for detailed installation instructions.
Note: Deleting a cluster will also delete any associated volumes that have been attached to the servers
kubectl delete cluster ionos-quickstartWe provide various templates for creating clusters. Some of these templates provide you with a CNI already.
For templates using CNIs you're required to create ConfigMaps to make ClusterResourceSets available.
To enable ClusterResourceSets feature,
you need to set the following environment variable before doing clusterctl init:
# This enables the ClusterResourceSet feature that we are using to deploy CNI
export EXP_CLUSTER_RESOURCE_SET="true"We provide the following templates:
| Flavor | Template File | CRS File |
|---|---|---|
| default | templates/cluster-template.yaml | - |
| calico | templates/cluster-template-calico.yaml | templates/crs/cni/calico.yaml |
| auto-image | templates/cluster-template-auto-image.yaml | - |
Before this cluster can be deployed, calico needs to be configured. As a first step we
need to generate a manifest. Simply use our Makefile:
make crs-calico
Now install the ConfigMap into your k8s:
kubectl create cm calico --from-file=data=templates/crs/cni/calico.yaml
Now, you can create a cluster using the calico flavor:
$ clusterctl generate cluster dev-calico \
--infrastructure ionoscloud \
--kubernetes-version v1.28.6 \
--control-plane-machine-count 1 \
--worker-machine-count 3 \
--flavor calico > cluster.yaml
$ kubectl apply -f cluster.yamlThis template makes use of labels on custom built images. Please refer to the custom image docs for more information.
If you need anything specific that requires a more complex setup, we recommend to use custom templates:
clusterctl generate custom-cluster ionos-quickstart \
--kubernetes-version v1.27.8 \
--control-plane-machine-count 1 \
--worker-machine-count 3 \
--from ~/workspace/custom-cluster-template.yaml > custom-cluster.yamlAccess to metrics is secured by default. Before using it, it is necessary to create appropriate roles and role bindings. For more information, refer to Cluster API documentation.