Update

roles/nginx_load_balancer/tasks/main.yml

@@ -0,0 +1,69 @@
+---
+# tasks file for nginx_load_balancer
+
+# (Recommended) If you have plans to upgrade this single control-plane kubeadm cluster to high 
+# availability you should specify the --control-plane-endpoint to set 
+# the shared endpoint for all control-plane nodes.
+# Such an endpoint can be either a DNS name or an IP address of a load-balancer
+
+# Install nginx
+- name: Install nginx
+  apt:
+    pkg: nginx
+  tags:
+    - nginx
+
+# Start and Enable nginx
+- name: Start and Enable nginx
+  service:
+    name: nginx
+    state: started
+    enabled: yes
+  tags:
+    - nginx
+
+# Create a directory for extra nginx configs. This allows for easy management of configs
+- name: Create /etc/nginx/tcpconf.d directory
+  file:
+    path: /etc/nginx/tcpconf.d
+    state: directory
+  tags:
+    - nginx
+
+# Adding this line at the end of the file will ensure nginx loads configs in the tcpconf.d directory on startup
+- name: Add include statement to /etc/nginx/nginx.conf
+  lineinfile:
+    path: /etc/nginx/nginx.conf
+    line: "include /etc/nginx/tcpconf.d/*;"
+    state: present
+    backup: yes
+  tags:
+    - nginx
+
+# This config will build an upstream telling the nginx load balancer what servers to load balance
+- name: Create /etc/nginx/tcpconf.d/kubernetes.conf
+  template:
+    src: kubernetes_conf.j2
+    dest: /etc/nginx/tcpconf.d/kubernetes.conf
+  tags:
+    - nginx
+
+- name: Reload nginx
+  command: nginx -s reload
+  tags:
+    - nginx
+
+# Add firewall port for apiserver
+- name: Add firewall ports
+  firewalld:
+    port: "{{ item.port }}"
+    permanent: yes
+    state: enabled
+  with_items:
+    - { port: 6443/tcp }
+    - { port: 8472/tcp }
+    - { port: 8080/tcp }
+  tags:
+    - firewalld
+
+