Create Halyard Instance w/ Persistent Disk Click CREATE INSTANCE. Important: Make sure to create your instance in the same network/zone as your Kubernetes cluster. Input Name, Region, Zone and Machine type. Select Ubuntu 18.04 LTS Minimal boot disk. Click Management, security, disks, networking, sole tenancy. Select the Disks tab. Under Additional disks, click the + […]
Install Cert-Manager If you haven’t already, install Cert-Manager. https://itsmetommy.com/2019/06/23/kubernetes-cert-manager-on-gke-using-lets-encrypt/ Install Istio with SDS using Helm Add repo and update https://github.com/istio/istio/releases/ # latest release Add repo. helm repo add istio.io https://storage.googleapis.com/istio-release/releases/1.2.6/charts/ Update. helm repo update Install CRD helm install istio.io/istio-init –name istio-init –namespace istio-system Install Istio https://istio.io/docs/tasks/traffic-management/ingress/secure-ingress-sds/ helm install istio.io/istio –name istio \ –namespace istio-system \ –set […]
Install Cert-Manager If you haven’t already, install Cert-Manager. https://itsmetommy.com/2019/06/23/kubernetes-cert-manager-on-gke-using-lets-encrypt/ Enable Istio in GKE Verify { kubectl get service -n istio-system kubectl get pods -n istio-system } Enable Istio on namespace kubectl label ns itsmetommy istio-injection=enabled Create Certificate cat <<EOF > itsmetommy-certificate.yaml apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: itsmetommy-yourdomain-com-tls namespace: istio-system spec: secretName: itsmetommy-yourdomain-com-tls commonName: ‘*.itsmetommy.yourdomain.com’ […]
Enable nested virtualization on an instance https://cloud.google.com/compute/docs/instances/enable-nested-virtualization-vm-instances Create a boot disk. gcloud compute disks create disk1 –image-project centos-cloud –image-family centos-7 –zone us-central1-a Create image with License. Note: This may take a minute. gcloud compute images create nested-vm-image –source-disk=disk1 –source-disk-zone=us-central1-a –licenses=https://www.googleapis.com/compute/v1/projects/vm-options/global/licenses/enable-vmx Delete source disk, as it is no longer needed. gcloud compute disks delete disk1 –zone […]
I showed you how to create a GKE cluster with Terraform in a previous post. When I went to enable Istio, it wasn’t as simple as I thought. I ended up having to add an additional google-beta provider, along with having to add this google-beta provider within the google_container_cluster resource. Update gkecluster/provider.tf https://www.terraform.io/docs/providers/google/provider_versions.html You can […]