2022-01-06 07:16:18 +01:00
|
|
|
# You need to replace these
|
|
|
|
hcloud_token = "xxxxxxxxxxxxxxxxxxYYYYYYYYYYYYYYYYYYYzzzzzzzzzzzzzzzzzzzzz"
|
|
|
|
public_key = "/home/username/.ssh/id_ed25519.pub"
|
2022-01-25 21:41:01 +01:00
|
|
|
# Must be "private_key = null" when you want to use ssh-agent, for a Yubikey like device auth or an SSH key-pair with passphrase
|
2022-01-06 07:16:18 +01:00
|
|
|
private_key = "/home/username/.ssh/id_ed25519"
|
|
|
|
|
|
|
|
# These can be customized, or left with the default values
|
|
|
|
# For Hetzner locations see https://docs.hetzner.com/general/others/data-centers-and-connection/
|
|
|
|
# For Hetzner server types see https://www.hetzner.com/cloud
|
2022-02-25 19:16:38 +01:00
|
|
|
location = "fsn1" # change to `ash` for us-east Ashburn, Virginia location
|
|
|
|
network_region = "eu-central" # change to `us-east` if location is ash
|
|
|
|
network_ip_range = "10.0.0.0/8"
|
|
|
|
network_subnets = {
|
|
|
|
control_plane = "10.1.0.0/16"
|
|
|
|
subnet1 = "10.2.0.0/16"
|
|
|
|
subnet2 = "10.3.0.0/16"
|
|
|
|
}
|
|
|
|
|
2022-01-06 07:16:18 +01:00
|
|
|
control_plane_server_type = "cpx11"
|
|
|
|
lb_server_type = "lb11"
|
2022-02-10 03:01:40 +01:00
|
|
|
|
|
|
|
# At least 3 server nodes is recommended for HA, otherwise you need to turn off automatic upgrade (see ReadMe).
|
2022-02-25 19:16:38 +01:00
|
|
|
servers_num = 3
|
2022-02-10 03:01:40 +01:00
|
|
|
|
2022-02-24 17:19:31 +01:00
|
|
|
|
2022-02-23 16:46:46 +01:00
|
|
|
agent_nodepools = {
|
|
|
|
big = {
|
|
|
|
server_type = "cpx31",
|
2022-02-25 19:16:38 +01:00
|
|
|
count = 1,
|
|
|
|
subnet = "subnet1",
|
2022-02-24 17:19:31 +01:00
|
|
|
}
|
|
|
|
small = {
|
|
|
|
server_type = "cpx21",
|
2022-02-25 19:16:38 +01:00
|
|
|
count = 2,
|
|
|
|
subnet = "subnet2",
|
2022-02-23 16:46:46 +01:00
|
|
|
}
|
|
|
|
}
|
2022-01-13 22:41:36 +01:00
|
|
|
|
|
|
|
# If you want to use a specific Hetzner CCM and CSI version, set them below, otherwise leave as is for the latest versions
|
|
|
|
# hetzner_ccm_version = ""
|
2022-01-15 09:04:21 +01:00
|
|
|
# hetzner_csi_version = ""
|
|
|
|
|
2022-02-01 23:32:10 +01:00
|
|
|
# If you want to use letsencrypt with tls Challenge, the email address is used to send you certificates expiration notices
|
|
|
|
# traefik_acme_tls = true
|
|
|
|
# traefik_acme_email = "mail@example.com"
|
2022-02-07 16:09:46 +01:00
|
|
|
|
|
|
|
# If you want to allow non-control-plane workloads to run on the control-plane nodes set "true" below. The default is "false".
|
|
|
|
# allow_scheduling_on_control_plane = true
|
2022-02-16 03:18:40 +01:00
|
|
|
|
|
|
|
# If you want to disable automatic upgrade of k3s (stable channel), you can set this to false, default is "true".
|
|
|
|
# automatically_upgrade_k3s = false
|
|
|
|
|
|
|
|
# If you would like to specify the k3s upgrade channel from the get go, you can do so, the default is "stable".
|
|
|
|
# For a list of available channels, see https://rancher.com/docs/k3s/latest/en/upgrades/basic/ and https://update.k3s.io/v1-release/channels
|
|
|
|
# k3s_upgrade_channel = "latest"
|