update to Kubernetes 1.4

Author: kelseyhightower

README.md

@@ -17,8 +17,8 @@ The target audience for this tutorial is someone planning to support a productio
 
 ## Cluster Details
 
-* Kubernetes 1.3.6
-* Docker 1.11.2
+* Kubernetes 1.4.0
+* Docker 1.12.1
 * [CNI Based Networking](https://github.com/containernetworking/cni)
 * Secure communication between all components (etcd, control plane, workers)
 * Default Service Account and Secrets

docs/01-infrastructure-aws.md

@@ -1,6 +1,6 @@
 # Cloud Infrastructure Provisioning - Amazon Web Services
 
-This lab will walk you through provisioning the compute instances required for running a H/A Kubernetes cluster. A total of 9 virtual machines will be created.
+This lab will walk you through provisioning the compute instances required for running a H/A Kubernetes cluster. A total of 6 virtual machines will be created.
 
 The guide assumes you'll be creating resources in the `us-west-2` region.
 
@@ -280,65 +280,6 @@ ssh ubuntu@${WORKER_0_PUBLIC_IP_ADDRESS}
 
 ### Virtual Machines
 
-#### etcd
-
-```
-ETCD_0_INSTANCE_ID=$(aws ec2 run-instances \
-  --associate-public-ip-address \
-  --image-id ${IMAGE_ID} \
-  --count 1 \
-  --key-name kubernetes \
-  --security-group-ids ${SECURITY_GROUP_ID} \
-  --instance-type t2.small \
-  --private-ip-address 10.240.0.10 \
-  --subnet-id ${SUBNET_ID} | \
-  jq -r '.Instances[].InstanceId')
-```
-
-```
-aws ec2 create-tags \
-  --resources ${ETCD_0_INSTANCE_ID} \
-  --tags Key=Name,Value=etcd0
-```
-
-```
-ETCD_1_INSTANCE_ID=$(aws ec2 run-instances \
-  --associate-public-ip-address \
-  --image-id ${IMAGE_ID} \
-  --count 1 \
-  --key-name kubernetes \
-  --security-group-ids ${SECURITY_GROUP_ID} \
-  --instance-type t2.small \
-  --private-ip-address 10.240.0.11 \
-  --subnet-id ${SUBNET_ID} | \
-  jq -r '.Instances[].InstanceId')
-```
-
-```
-aws ec2 create-tags \
-  --resources ${ETCD_1_INSTANCE_ID} \
-  --tags Key=Name,Value=etcd1
-```
-
-```
-ETCD_2_INSTANCE_ID=$(aws ec2 run-instances \
-  --associate-public-ip-address \
-  --image-id ${IMAGE_ID} \
-  --count 1 \
-  --key-name kubernetes \
-  --security-group-ids ${SECURITY_GROUP_ID} \
-  --instance-type t2.small \
-  --private-ip-address 10.240.0.12 \
-  --subnet-id ${SUBNET_ID} | \
-  jq -r '.Instances[].InstanceId')
-```
-
-```
-aws ec2 create-tags \
-  --resources ${ETCD_2_INSTANCE_ID} \
-  --tags Key=Name,Value=etcd2
-```
-
 #### Kubernetes Controllers
 
 ```
@@ -350,7 +291,7 @@ CONTROLLER_0_INSTANCE_ID=$(aws ec2 run-instances \
   --key-name kubernetes \
   --security-group-ids ${SECURITY_GROUP_ID} \
   --instance-type t2.small \
-  --private-ip-address 10.240.0.20 \
+  --private-ip-address 10.240.0.10 \
   --subnet-id ${SUBNET_ID} | \
   jq -r '.Instances[].InstanceId')
 ```
@@ -376,7 +317,7 @@ CONTROLLER_1_INSTANCE_ID=$(aws ec2 run-instances \
   --key-name kubernetes \
   --security-group-ids ${SECURITY_GROUP_ID} \
   --instance-type t2.small \
-  --private-ip-address 10.240.0.21 \
+  --private-ip-address 10.240.0.11 \
   --subnet-id ${SUBNET_ID} | \
   jq -r '.Instances[].InstanceId')
 ```
@@ -402,7 +343,7 @@ CONTROLLER_2_INSTANCE_ID=$(aws ec2 run-instances \
   --key-name kubernetes \
   --security-group-ids ${SECURITY_GROUP_ID} \
   --instance-type t2.small \
-  --private-ip-address 10.240.0.22 \
+  --private-ip-address 10.240.0.12 \
   --subnet-id ${SUBNET_ID} | \
   jq -r '.Instances[].InstanceId')
 ```
@@ -430,7 +371,7 @@ WORKER_0_INSTANCE_ID=$(aws ec2 run-instances \
   --key-name kubernetes \
   --security-group-ids ${SECURITY_GROUP_ID} \
   --instance-type t2.small \
-  --private-ip-address 10.240.0.30 \
+  --private-ip-address 10.240.0.20 \
   --subnet-id ${SUBNET_ID} | \
   jq -r '.Instances[].InstanceId')
 ```
@@ -456,7 +397,7 @@ WORKER_1_INSTANCE_ID=$(aws ec2 run-instances \
   --key-name kubernetes \
   --security-group-ids ${SECURITY_GROUP_ID} \
   --instance-type t2.small \
-  --private-ip-address 10.240.0.31 \
+  --private-ip-address 10.240.0.21 \
   --subnet-id ${SUBNET_ID} | \
   jq -r '.Instances[].InstanceId')
 ```
@@ -482,7 +423,7 @@ WORKER_2_INSTANCE_ID=$(aws ec2 run-instances \
   --key-name kubernetes \
   --security-group-ids ${SECURITY_GROUP_ID} \
   --instance-type t2.small \
-  --private-ip-address 10.240.0.32 \
+  --private-ip-address 10.240.0.22 \
   --subnet-id ${SUBNET_ID} | \
   jq -r '.Instances[].InstanceId')
 ```
@@ -508,13 +449,10 @@ aws ec2 describe-instances \
   jq -j '.Reservations[].Instances[] | .InstanceId, "  ", .Placement.AvailabilityZone, "  ", .PrivateIpAddress, "  ", .PublicIpAddress, "\n"'
 ```
 ```
-i-f3714f2e  us-west-2c  10.240.0.22  XX.XXX.XX.XX
 i-ae714f73  us-west-2c  10.240.0.11  XX.XX.XX.XXX
 i-f4714f29  us-west-2c  10.240.0.21  XX.XX.XXX.XXX
 i-f6714f2b  us-west-2c  10.240.0.12  XX.XX.XX.XX
-i-e26e503f  us-west-2c  10.240.0.30  XX.XX.XXX.XXX
-i-e36e503e  us-west-2c  10.240.0.31  XX.XX.XX.XX
+i-e26e503f  us-west-2c  10.240.0.22  XX.XX.XXX.XXX
 i-e8714f35  us-west-2c  10.240.0.10  XX.XX.XXX.XXX
 i-78704ea5  us-west-2c  10.240.0.20  XX.XX.XXX.XXX
-i-4a6e5097  us-west-2c  10.240.0.32  XX.XX.XX.XX
 ```

docs/01-infrastructure-gcp.md

@@ -1,15 +1,6 @@
 # Cloud Infrastructure Provisioning - Google Cloud Platform
 
-This lab will walk you through provisioning the compute instances required for running a H/A Kubernetes cluster. A total of 9 virtual machines will be created.
-
-If you are following this guide using the GCP free trial you may run into the following error:
-
-```
-ERROR: (gcloud.compute.instances.create) Some requests did not succeed:
- - Quota 'CPUS' exceeded. Limit: 8.0
-```
-
-This means you'll only be able to create 8 machines until you upgrade your account. In that case skip the provisioning of the `worker2` node to avoid hitting the CPUS qouta.
+This lab will walk you through provisioning the compute instances required for running a H/A Kubernetes cluster. A total of 6 virtual machines will be created.
 
 After completing this guide you should have the following compute instances:
 
@@ -19,15 +10,12 @@ gcloud compute instances list
 
 ````
 NAME         ZONE           MACHINE_TYPE   PREEMPTIBLE  INTERNAL_IP  EXTERNAL_IP      STATUS
-controller0  us-central1-f  n1-standard-1               10.240.0.20  XXX.XXX.XXX.XXX  RUNNING
-controller1  us-central1-f  n1-standard-1               10.240.0.21  XXX.XXX.XXX.XXX  RUNNING
-controller2  us-central1-f  n1-standard-1               10.240.0.22  XXX.XXX.XXX.XXX  RUNNING
-etcd0        us-central1-f  n1-standard-1               10.240.0.10  XXX.XXX.XXX.XXX  RUNNING
-etcd1        us-central1-f  n1-standard-1               10.240.0.11  XXX.XXX.XXX.XXX  RUNNING
-etcd2        us-central1-f  n1-standard-1               10.240.0.12  XXX.XXX.XXX.XXX  RUNNING
-worker0      us-central1-f  n1-standard-1               10.240.0.30  XXX.XXX.XXX.XXX  RUNNING
-worker1      us-central1-f  n1-standard-1               10.240.0.31  XXX.XXX.XXX.XXX  RUNNING
-worker2      us-central1-f  n1-standard-1               10.240.0.32  XXX.XXX.XXX.XXX  RUNNING
+controller0  us-central1-f  n1-standard-1               10.240.0.10  XXX.XXX.XXX.XXX  RUNNING
+controller1  us-central1-f  n1-standard-1               10.240.0.11  XXX.XXX.XXX.XXX  RUNNING
+controller2  us-central1-f  n1-standard-1               10.240.0.12  XXX.XXX.XXX.XXX  RUNNING
+worker0      us-central1-f  n1-standard-1               10.240.0.20  XXX.XXX.XXX.XXX  RUNNING
+worker1      us-central1-f  n1-standard-1               10.240.0.21  XXX.XXX.XXX.XXX  RUNNING
+worker2      us-central1-f  n1-standard-1               10.240.0.22  XXX.XXX.XXX.XXX  RUNNING
 ````
 
 > All machines will be provisioned with fixed private IP addresses to simplify the bootstrap process.
@@ -50,8 +38,7 @@ Create a subnet for the Kubernetes cluster:
 ```
 gcloud compute networks subnets create kubernetes \
   --network kubernetes \
-  --range 10.240.0.0/24 \
-  --region us-central1
+  --range 10.240.0.0/24
 ```
 
 ```
@@ -140,73 +127,38 @@ All the VMs in this lab will be provisioned using Ubuntu 16.04 mainly because it
 
 ### Virtual Machines
 
-#### etcd
-
-```
-gcloud compute instances create etcd0 \
- --boot-disk-size 200GB \
- --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
- --image-project ubuntu-os-cloud \
- --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.10 \
- --subnet kubernetes
-```
-
-```
-gcloud compute instances create etcd1 \
- --boot-disk-size 200GB \
- --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
- --image-project ubuntu-os-cloud \
- --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.11 \
- --subnet kubernetes
-```
-
-```
-gcloud compute instances create etcd2 \
- --boot-disk-size 200GB \
- --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
- --image-project ubuntu-os-cloud \
- --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.12 \
- --subnet kubernetes
-```
-
 #### Kubernetes Controllers
 
 ```
 gcloud compute instances create controller0 \
  --boot-disk-size 200GB \
  --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
+ --image ubuntu-1604-xenial-v20160921 \
  --image-project ubuntu-os-cloud \
  --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.20 \
+ --private-network-ip 10.240.0.10 \
  --subnet kubernetes
 ```
 
 ```
 gcloud compute instances create controller1 \
  --boot-disk-size 200GB \
  --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
+ --image ubuntu-1604-xenial-v20160921 \
  --image-project ubuntu-os-cloud \
  --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.21 \
+ --private-network-ip 10.240.0.11 \
  --subnet kubernetes
 ```
 
 ```
 gcloud compute instances create controller2 \
  --boot-disk-size 200GB \
  --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
+ --image ubuntu-1604-xenial-v20160921 \
  --image-project ubuntu-os-cloud \
  --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.22 \
+ --private-network-ip 10.240.0.12 \
  --subnet kubernetes
 ```
 
@@ -216,33 +168,31 @@ gcloud compute instances create controller2 \
 gcloud compute instances create worker0 \
  --boot-disk-size 200GB \
  --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
+ --image ubuntu-1604-xenial-v20160921 \
  --image-project ubuntu-os-cloud \
  --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.30 \
+ --private-network-ip 10.240.0.20 \
  --subnet kubernetes
 ```
 
 ```
 gcloud compute instances create worker1 \
  --boot-disk-size 200GB \
  --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
+ --image ubuntu-1604-xenial-v20160921 \
  --image-project ubuntu-os-cloud \
  --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.31 \
+ --private-network-ip 10.240.0.21 \
  --subnet kubernetes
 ```
 
-If you are using the GCP free trial which limits your account to 8 nodes, skip the creation of `worker2` to avoid hitting the CPUS qouta.
-
 ```
 gcloud compute instances create worker2 \
  --boot-disk-size 200GB \
  --can-ip-forward \
- --image ubuntu-1604-xenial-v20160627 \
+ --image ubuntu-1604-xenial-v20160921 \
  --image-project ubuntu-os-cloud \
  --machine-type n1-standard-1 \
- --private-network-ip 10.240.0.32 \
+ --private-network-ip 10.240.0.22 \
  --subnet kubernetes
 ```

docs/02-certificate-authority.md

@@ -149,19 +149,16 @@ cat > kubernetes-csr.json <<EOF
     "worker0",
     "worker1",
     "worker2",
-    "ip-10-240-0-30",
-    "ip-10-240-0-31",
-    "ip-10-240-0-32",
+    "ip-10-240-0-20",
+    "ip-10-240-0-21",
+    "ip-10-240-0-22",
     "10.32.0.1",
     "10.240.0.10",
     "10.240.0.11",
     "10.240.0.12",
     "10.240.0.20",
     "10.240.0.21",
     "10.240.0.22",
-    "10.240.0.30",
-    "10.240.0.31",
-    "10.240.0.32",
     "${KUBERNETES_PUBLIC_ADDRESS}",
     "127.0.0.1"
   ],
@@ -212,7 +209,7 @@ openssl x509 -in kubernetes.pem -text -noout
 Set the list of Kubernetes hosts where the certs should be copied to:
 
 ```
-KUBERNETES_HOSTS=(controller0 controller1 controller2 etcd0 etcd1 etcd2 worker0 worker1 worker2)
+KUBERNETES_HOSTS=(controller0 controller1 controller2 worker0 worker1 worker2)
 ```
 
 ### GCE