Skip to content

didiberman/kubelab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
k8s
k8s
 
 
scripts
scripts
 
 
terraform
terraform
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

KubeLab

Production-ready Kubernetes cluster on Hetzner Cloud with GitOps.

What This Creates

Component Spec
Control Plane CX23 (2 vCPU, 4GB) in Falkenstein
Workers 2x CX23 across fsn1 + hel1
Load Balancer Hetzner LB11 for ingress
GitOps ArgoCD pre-installed
CNI Flannel (via k3s)
Ingress Traefik (k3s default)
CCM Hetzner Cloud Controller Manager

Cost: ~€17/month

Quick Start

cd terraform
cp terraform.tfvars.example terraform.tfvars
# Edit terraform.tfvars with your Hetzner API token

terraform init
terraform apply

Post-Deploy

# Get kubeconfig
$(terraform output -raw kubeconfig_command)
export KUBECONFIG=$PWD/kubeconfig.yaml

# Verify cluster
kubectl get nodes

# Access ArgoCD UI
kubectl port-forward svc/argocd-server -n argocd 8080:443
# Open https://localhost:8080
# User: admin
# Password: $(terraform output -raw argocd_password_command)

Architecture

                         Internet
                            │
               ┌────────────┴────────────┐
               │     Load Balancer       │
               │   (Hetzner LB11)        │
               └────────────┬────────────┘
                            │ :80/:443
        ┌───────────────────┼───────────────────┐
        │                   │                   │
        ▼                   ▼                   │
┌───────────────┐   ┌───────────────┐          │
│   Worker 1    │   │   Worker 2    │          │
│   (fsn1)      │   │   (hel1)      │          │
│  10.0.1.20    │   │  10.0.1.21    │          │
└───────────────┘   └───────────────┘          │
        │                   │                   │
        └─────────┬─────────┘                   │
                  │ Private Network             │
                  │ (10.0.0.0/16)              │
                  │                             │
         ┌────────┴────────┐                   │
         │  Control Plane  │◄──────────────────┘
         │ (fsn1 + ArgoCD) │    :6443 (k8s API)
         │   10.0.1.10     │
         └─────────────────┘

Deploy Apps via ArgoCD

Option 1: ArgoCD UI

  1. Open ArgoCD UI (see above)
  2. Click + NEW APP
  3. Set repo URL, path, and destination
  4. Click CREATE

Option 2: kubectl

kubectl apply -f - <<EOF
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  name: my-app
  namespace: argocd
spec:
  project: default
  source:
    repoURL: https://github.com/YOUR_USERNAME/kubelab
    path: k8s/my-app
    targetRevision: HEAD
  destination:
    server: https://kubernetes.default.svc
    namespace: default
  syncPolicy:
    automated:
      prune: true
      selfHeal: true
EOF

Expose Apps via Ingress

kubectl apply -f - <<EOF
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: my-app-ingress
spec:
  rules:
  - http:
      paths:
      - path: /
        pathType: Prefix
        backend:
          service:
            name: my-app
            port:
              number: 80
EOF

Access via load balancer IP from terraform output load_balancer_ip.

Terraform Outputs

Output Description
control_plane_ip SSH access to control plane
worker_ips Worker node IPs and locations
load_balancer_ip Public ingress IP
kubeconfig_command Command to fetch kubeconfig
argocd_password_command Get ArgoCD admin password
argocd_ui_command Port-forward command for UI

Cleanup

terraform destroy

Tech Stack

  • IaC: Terraform + Hetzner Provider
  • K8s Distribution: k3s
  • GitOps: ArgoCD
  • Cloud: Hetzner Cloud (EU regions)

About

Didi's kubernetes lab

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages