This document provides steps to deploy a Harvester cluster on Equinix Metal platform.
The Equinix Metal platform allows users to use external iPXE script files to provision nodes. We'll demonstrate creating a Harvester cluster by booting iPXE scripts from the user's Github repository.
Fork this repository to the user's GitHub organization and clone it locally.
Edit the ipxe-install file:
#!ipxe
kernel https://releases.rancher.com/harvester/master/harvester-master-vmlinuz-amd64 ip=dhcp net.ifnames=1 rd.cos.disable rd.noverifyssl root=live:https://releases.rancher.com/harvester/master/harvester-master-rootfs-amd64.squashfs console=ttyS1,115200 harvester.install.automatic=true harvester.install.config_url=https://metadata.platformequinix.com/userdata
initrd https://releases.rancher.com/harvester/master/harvester-master-initrd-amd64
boot
The URLs after kernel and initrd tell the iPXE program to boot kernel and initrd image from these URL. We use the official images here. If the user doesn't need to change the URL, the forked repository can be left as it is. If the user needs to use different images, please modify the URLs and commit the ipxe-install file. Then push back to the forked repository.
The console=ttyS1,115200 parameter tells the installer ttyS1 is the primary console, since it's the only console that end users can use on Equinix Metal (the SOS console).
The harvester.install.automatic=true parameter tells the installer we want to do the automatic installation.
The harvester.install.config_url=https://metadata.platformequinix.com/userdata parameter tells the installer we want to fetch the Harvester configuration from this URL, which contains the userdata specified by the user when creating nodes. The harvester configuration contains sensitive credentials. We can prevent those credentials from leaking by using userdata that can only be seen by provisioning nodes.
-
Select
Custom iPXEoption for the Operating System. -
In
Custom iPXE Settings- Input URL to the
ipxe-installfile into theIPXE Script URLfield. - Do not enable the
Persist PXE as the first boot option after provisioning.option.
- Input URL to the
-
Type a hostname (optional).
-
In
Optional Settings-
Enable
Add User Dataoption, paste the Harvester configuration to it. The following is an example:#cloud-config token: token # replace with a desired token os: ssh_authorized_keys: - ssh-rsa ... # replace with your public key password: p@ssword # replace with a your password install: mode: create networks: harvester-mgmt: # The management bond name. This is mandatory. interfaces: - name: eth0 default_route: true method: dhcp device: /dev/sda iso_url: https://releases.rancher.com/harvester/master/harvester-master-amd64.iso tty: ttyS1,115200n8
- The userdata file is included in the source and the user can modify it according to any need.
- The Harvester installer doesn't require the
#cloud-configline at the beginning, but Equinix Metal validates if the userdata contains it.
-
-
Click
Deploy Now -
The user can use the SOS console of the provisioned server to see the installation process.
-
The Harvester GUI can be accessed at
https://<server_public_ip>:30443.
The procedure to create new servers to join an existing Harvester cluster is similar to the one that creates a new cluster.
The only difference is in the userdata:
#cloud-config
server_url: https://<new_cluster_server_ip>:8443
token: token # replace with the token you set when creating a new cluster
os:
ssh_authorized_keys:
- ssh-rsa ... # replace with your public key
password: p@ssword # replace with a your password
install:
mode: join
networks:
harvester-mgmt: # The management bond name. This is mandatory.
interfaces:
- name: eth0
default_route: true
method: dhcp
device: /dev/sda
iso_url: https://releases.rancher.com/harvester/master/harvester-master-amd64.iso
tty: ttyS1,115200nNOTE: two fields are different:
server_url: In the previous step, we create a new server to start a new Harvester cluster, use that server's public IP address here.install.mode: Should bejoin.
NOTE: the user can create multiple servers to join a cluster with the same userdata at once.