winlinuxmatt
diff --git a/‎README.md‎
Lines changed: 55 additions & 91 deletions b/‎README.md‎
Lines changed: 55 additions & 91 deletions
diff --git a/‎cluster.tf‎
Lines changed: 32 additions & 67 deletions b/‎cluster.tf‎
Lines changed: 32 additions & 67 deletions
@@ -1,117 +1,81 @@
-# kubernetes_iac
-Terraform Kubernetes IAC
+# Kubernetes IAC
 
-This repository was constructed by following the instructions outlined in the enlightening article mentioned below. I have made certain modifications to adapt it to my specific cluster configuration. It is worth noting that the datasets or datastores on my proxmox might have different names compared to those in your proxmox setup. Therefore, it is essential to make the necessary adjustments according to your own setup. My proxmox cluster consists of three nodes and utilizes the ceph storage solution for efficient management of virtual machines across all nodes.
+Terraform Kubernetes Infrastructure as Code (IAC)
 
+This repository was created by following the instructions in the article linked below, with modifications to suit my specific cluster configuration. Note that the datasets or datastores on my Proxmox setup may differ from yours, so adjust accordingly. My Proxmox cluster consists of three nodes and uses Ceph for efficient virtual machine management across all nodes.
 
-Article: [Talos Cluster on Proxmox with Terraform](https://olav.ninja/talos-cluster-on-proxmox-with-terraform) by Olav
+**Article**: [Talos Cluster on Proxmox with Terraform](https://olav.ninja/talos-cluster-on-proxmox-with-terraform) by Olav
+
+---
 
 ## Additional Steps
 
-After setting up the cluster, there are a few additional steps that may be helpful to others.
+After setting up the cluster, you may find the following steps helpful.
 
 ### Connect to the Talos Kubernetes Cluster
 
-To connect to your Talos Kubernetes cluster using the outputs from Terraform, you need to set up your local environment with the correct configuration files. Follow these steps:
-
-1. Save the `kubeconfig` and `talosconfig` outputs to files on your local machine. Run the following commands:
+To connect to your Talos Kubernetes cluster using Terraform outputs, configure your local environment as follows:
 
+1. Save the `kubeconfig` and `talosconfig` outputs to files on your local machine:
 	```bash
-	terraform output -raw kubeconfig > ~/.kube/config && terraform output -raw talosconfig > ~/.talos/config
+	terraform output -raw kubeconfig > ~/.kube/config
+	terraform output -raw talosconfig > ~/.talos/config
 	```
 
-	Note: Adjust the file paths if necessary.
-
-2. Verify the file permissions for these files to avoid any security issues:
-
+2. Set appropriate file permissions to avoid security issues:
 	```bash
-	chmod 600 ~/.kube/config && chmod 600 ~/.talos/config
+	chmod 600 ~/.kube/config ~/.talos/config
 	```
 
-### Set Up kubectl
-
-To interact with the Kubernetes cluster, you can use `kubectl`. Here's an example command to get the list of nodes:
-
-```
-terraform output -raw kubeconfig > ~/.kube/config && terraform output -raw talosconfig > ~/.talos/config
-```
-
-This assumes you have ~/.kube/config and ~/.talos/config as the default locations for Kubernetes and Talos configurations. Adjust the file paths if necessary.
-Verify File Permissions
-Ensure the permissions for these files are set correctly to avoid any security issues:
-
-```
-chmod 600 ~/.kube/config && chmod 600 ~/.talos/config
-```
-
-Or you can do it all in one
+### Set Up `kubectl`
 
-```
-terraform output -raw kubeconfig > ~/.kube/config && terraform output -raw talosconfig > ~/.talos/config && chmod 600 ~/.kube/config && chmod 600 ~/.talos/config
-```
-
-Set Up kubectl
-Get the list of nodes
-
-```
+To interact with the Kubernetes cluster, use `kubectl`. For example, to list the nodes:
+```bash
 kubectl get nodes
 ```
 
+Sample output:
 ```
-NAME              STATUS   ROLES           AGE     VERSION
-talos-cp-01       Ready    control-plane   3h39m   v1.30.0
-talos-cp-02       Ready    control-plane   3h24m   v1.30.0
-talos-cp-03       Ready    control-plane   3h24m   v1.30.0
-talos-worker-01   Ready    <none>          3h39m   v1.30.0
-talos-worker-02   Ready    <none>          3h24m   v1.30.0
-talos-worker-03   Ready    <none>          3h24m   v1.30.0
-```
-Show the dashboard of one of the nodes via
-
-```
-talosctl dashboard -n talos-cp-01
+NAME              STATUS   ROLES           AGE   VERSION
+talos-cp-01       Ready    control-plane   83s   v1.32.0
+talos-cp-02       Ready    control-plane   86s   v1.32.0
+talos-cp-03       Ready    control-plane   85s   v1.32.0
+talos-worker-01   Ready    <none>          88s   v1.32.0
+talos-worker-02   Ready    <none>          86s   v1.32.0
+talos-worker-03   Ready    <none>          90s   v1.32.0
 ```
-Check the Health
 
-```
-talosctl -n talos-cp-01 health                                                                                                                        1 ↵
-discovered nodes: ["10.0.0.73" "10.0.0.74" "10.0.0.75" "10.0.0.70" "10.0.0.71" "10.0.0.72"]
-waiting for etcd to be healthy: ...
-waiting for etcd to be healthy: OK
-waiting for etcd members to be consistent across nodes: ...
-waiting for etcd members to be consistent across nodes: OK
-waiting for etcd members to be control plane nodes: ...
-waiting for etcd members to be control plane nodes: OK
-waiting for apid to be ready: ...
-waiting for apid to be ready: OK
-waiting for all nodes memory sizes: ...
-waiting for all nodes memory sizes: OK
-waiting for all nodes disk sizes: ...
-waiting for all nodes disk sizes: OK
-waiting for kubelet to be healthy: ...
-waiting for kubelet to be healthy: OK
-waiting for all nodes to finish boot sequence: ...
-waiting for all nodes to finish boot sequence: OK
-waiting for all k8s nodes to report: ...
-waiting for all k8s nodes to report: OK
-waiting for all k8s nodes to report ready: ...
-waiting for all k8s nodes to report ready: OK
-waiting for all control plane static pods to be running: ...
-waiting for all control plane static pods to be running: OK
-waiting for all control plane components to be ready: ...
-waiting for all control plane components to be ready: OK
-waiting for kube-proxy to report ready: ...
-waiting for kube-proxy to report ready: OK
-waiting for coredns to report ready: ...
-waiting for coredns to report ready: OK
-waiting for all k8s nodes to report schedulable: ...
-waiting for all k8s nodes to report schedulable: OK
+### Use `talosctl`
+
+- **View the Dashboard**:
+  ```bash
+  talosctl dashboard -n talos-cp-01
+  ```
+
+- **Check Cluster Health**:
+  ```bash
+  talosctl -n talos-cp-01 health
+  ```
+  Sample output:
+  ```
+  discovered nodes: ["10.0.0.73" "10.0.0.74" "10.0.0.75" "10.0.0.70" "10.0.0.71" "10.0.0.72"]
+  waiting for etcd to be healthy: OK
+  waiting for all k8s nodes to report ready: OK
+  waiting for all control plane components to be ready: OK
+  ...
+  ```
+
+- **Health Dashboard Example**:
+  ![Talosctl Dashboard](photos/talosctl_dashboard.png)
+
+### Reset the Cluster
+
+If you need to start over, you can taint resources and reapply the Terraform configuration:
+```bash
+terraform state list | xargs -n1 terraform taint
+terraform apply
 ```
 
-Check the health of the node/nodes
-![](photos/talosctl_dashboard.png)
+---
 
-If you need to start over you can always taint things and terraform apply again
-```
-terraform state list | xargs -n1 terraform taint
-```
+Adjust paths and configurations as needed for your environment.
@@ -1,131 +1,113 @@
-# This is how the whole setup is structured:
-# - **main.tf**: This file contains the main configuration for managing the Talos cluster on Proxmox, including provider definitions, resource configurations, and data blocks for retrieving machine configurations.
-# - **providers.tf**: This file defines the required providers for the Terraform configuration, specifying the source and version for each provider.
-# - **variables.tf**: This file defines the variables used in the Terraform configuration, allowing for customization of the cluster name, IP addresses, and other settings.
-# - **virtual_machines.tf**: This file defines the virtual machines to be created in the Proxmox virtual environment, specifying their configurations such as CPU, memory, disk, and network settings.
-# - **cluster.tf**: This file contains the configuration for the Talos cluster, including the creation of machine secrets, retrieval of machine configurations, application of configurations to control plane and worker nodes, bootstrapping the control plane, and retrieving the health status and kubeconfig for the cluster.
-# This resource creates a new Talos machine secrets resource. 
+# Talos Cluster Configuration on Proxmox
+
+# Talos Machine Secrets
 resource "talos_machine_secrets" "machine_secrets" {}
 
-# This data block retrieves the client configuration for the Talos cluster.
+# Talos Client Configuration
 data "talos_client_configuration" "talosconfig" {
   cluster_name         = var.cluster_name
   client_configuration = talos_machine_secrets.machine_secrets.client_configuration
   endpoints            = [var.talos_cp_01_ip_addr]
 }
 
-# This data block retrieves the machine configuration for the "cp_01" node from the Talos provider.
+# Control Plane Machine Configurations
 data "talos_machine_configuration" "machineconfig_cp" {
   cluster_name     = var.cluster_name
   cluster_endpoint = "https://${var.talos_cp_01_ip_addr}:6443"
   machine_type     = "controlplane"
   machine_secrets  = talos_machine_secrets.machine_secrets.machine_secrets
 }
 
-# This data block retrieves the machine configuration for the "cp_02" node from the Talos provider.
 data "talos_machine_configuration" "machineconfig_cp_02" {
   cluster_name     = var.cluster_name
   cluster_endpoint = "https://${var.talos_cp_02_ip_addr}:6443"
   machine_type     = "controlplane"
   machine_secrets  = talos_machine_secrets.machine_secrets.machine_secrets
 }
 
-# This data block retrieves the machine configuration for the "cp_03" node from the Talos provider.
 data "talos_machine_configuration" "machineconfig_cp_03" {
   cluster_name     = var.cluster_name
   cluster_endpoint = "https://${var.talos_cp_03_ip_addr}:6443"
   machine_type     = "controlplane"
   machine_secrets  = talos_machine_secrets.machine_secrets.machine_secrets
 }
 
-# This resource applies the machine configuration for the "cp_01" node.
+# Apply Control Plane Configurations
 resource "talos_machine_configuration_apply" "cp_config_apply" {
-  depends_on                  = [ proxmox_virtual_environment_vm.talos_cp_01 ]
+  depends_on                  = [proxmox_virtual_environment_vm.talos_cp_01]
   client_configuration        = talos_machine_secrets.machine_secrets.client_configuration
   machine_configuration_input = data.talos_machine_configuration.machineconfig_cp.machine_configuration
-  count                       = 1
   node                        = var.talos_cp_01_ip_addr
 }
 
-# This resource applies the machine configuration for the "cp_02" node.
 resource "talos_machine_configuration_apply" "cp_config_apply_02" {
-  depends_on                  = [ proxmox_virtual_environment_vm.talos_cp_02 ]
+  depends_on                  = [proxmox_virtual_environment_vm.talos_cp_02]
   client_configuration        = talos_machine_secrets.machine_secrets.client_configuration
   machine_configuration_input = data.talos_machine_configuration.machineconfig_cp_02.machine_configuration
-  count                       = 1
   node                        = var.talos_cp_02_ip_addr
 }
 
-# This resource applies the machine configuration for the "cp_03" node.
 resource "talos_machine_configuration_apply" "cp_config_apply_03" {
-  depends_on                  = [ proxmox_virtual_environment_vm.talos_cp_03 ]
+  depends_on                  = [proxmox_virtual_environment_vm.talos_cp_03]
   client_configuration        = talos_machine_secrets.machine_secrets.client_configuration
   machine_configuration_input = data.talos_machine_configuration.machineconfig_cp_03.machine_configuration
-  count                       = 1
   node                        = var.talos_cp_03_ip_addr
 }
 
-# This data block retrieves the machine configuration for the "worker" nodes from the Talos provider.
+# Worker Machine Configurations
 data "talos_machine_configuration" "machineconfig_worker" {
   cluster_name     = var.cluster_name
   cluster_endpoint = "https://${var.talos_cp_01_ip_addr}:6443"
   machine_type     = "worker"
   machine_secrets  = talos_machine_secrets.machine_secrets.machine_secrets
 }
 
-# This data block retrieves the machine configuration for the "worker_02" node from the Talos provider.
 data "talos_machine_configuration" "machineconfig_worker_02" {
   cluster_name     = var.cluster_name
   cluster_endpoint = "https://${var.talos_cp_02_ip_addr}:6443"
   machine_type     = "worker"
   machine_secrets  = talos_machine_secrets.machine_secrets.machine_secrets
 }
 
-# This data block retrieves the machine configuration for the "worker_03" node from the Talos provider.
 data "talos_machine_configuration" "machineconfig_worker_03" {
   cluster_name     = var.cluster_name
   cluster_endpoint = "https://${var.talos_cp_03_ip_addr}:6443"
   machine_type     = "worker"
   machine_secrets  = talos_machine_secrets.machine_secrets.machine_secrets
 }
 
-# This resource applies the machine configuration for the "worker_01" node.
+# Apply Worker Configurations
 resource "talos_machine_configuration_apply" "worker_config_apply" {
-  depends_on                  = [ proxmox_virtual_environment_vm.talos_worker_01 ]
+  depends_on                  = [proxmox_virtual_environment_vm.talos_worker_01]
   client_configuration        = talos_machine_secrets.machine_secrets.client_configuration
   machine_configuration_input = data.talos_machine_configuration.machineconfig_worker.machine_configuration
-  count                       = 1
   node                        = var.talos_worker_01_ip_addr
 }
 
-# This resource applies the machine configuration for the "worker_02" node.
 resource "talos_machine_configuration_apply" "worker_config_apply_02" {
-  depends_on                  = [ proxmox_virtual_environment_vm.talos_worker_02 ]
+  depends_on                  = [proxmox_virtual_environment_vm.talos_worker_02]
   client_configuration        = talos_machine_secrets.machine_secrets.client_configuration
   machine_configuration_input = data.talos_machine_configuration.machineconfig_worker_02.machine_configuration
-  count                       = 1
   node                        = var.talos_worker_02_ip_addr
 }
 
-# This resource applies the machine configuration for the "worker_03" node.
 resource "talos_machine_configuration_apply" "worker_config_apply_03" {
-  depends_on                  = [ proxmox_virtual_environment_vm.talos_worker_03 ]
+  depends_on                  = [proxmox_virtual_environment_vm.talos_worker_03]
   client_configuration        = talos_machine_secrets.machine_secrets.client_configuration
   machine_configuration_input = data.talos_machine_configuration.machineconfig_worker_03.machine_configuration
-  count                       = 1
   node                        = var.talos_worker_03_ip_addr
 }
 
-# This resource bootstraps the Talos control plane node.
+# Bootstrap Control Plane
 resource "talos_machine_bootstrap" "bootstrap" {
-  depends_on           = [ talos_machine_configuration_apply.cp_config_apply ]
+  depends_on           = [talos_machine_configuration_apply.cp_config_apply]
   client_configuration = talos_machine_secrets.machine_secrets.client_configuration
   node                 = var.talos_cp_01_ip_addr
 }
 
-# This data block retrieves the health status of the Talos cluster.
+# Cluster Health Check
 data "talos_cluster_health" "health" {
-  depends_on           = [
+  depends_on = [
     talos_machine_configuration_apply.cp_config_apply,
     talos_machine_configuration_apply.cp_config_apply_02,
     talos_machine_configuration_apply.cp_config_apply_03,
@@ -147,61 +129,44 @@ data "talos_cluster_health" "health" {
   endpoints            = data.talos_client_configuration.talosconfig.endpoints
 }
 
-# This data block retrieves the kubeconfig for the Talos cluster.
+# Retrieve Kubeconfig
 resource "talos_cluster_kubeconfig" "kubeconfig" {
-  depends_on           = [ talos_machine_bootstrap.bootstrap, data.talos_cluster_health.health ]
+  depends_on           = [talos_machine_bootstrap.bootstrap, data.talos_cluster_health.health]
   client_configuration = talos_machine_secrets.machine_secrets.client_configuration
   node                 = var.talos_cp_01_ip_addr
 }
 
-# Output the Talos configuration and kubeconfig.
+# Outputs
 output "talosconfig" {
   value     = data.talos_client_configuration.talosconfig.talos_config
   sensitive = true
 }
 
-# Output the kubeconfig for the Talos cluster.
 output "kubeconfig" {
   value     = talos_cluster_kubeconfig.kubeconfig.kubeconfig_raw
   sensitive = true
 }
 
-# Run custom script for further configuration.
+# Custom Script for Configuration
 resource "null_resource" "run_custom_script" {
   provisioner "local-exec" {
-    command = "mkdir -p ~/.kube && mkdir -p ~/.talos && terraform output -raw kubeconfig > ~/.kube/config && terraform output -raw talosconfig > ~/.talos/config && chmod 600 ~/.kube/config ~/.talos/config"
+    command = <<EOT
+      mkdir -p ~/.kube ~/.talos
+      terraform output -raw kubeconfig > ~/.kube/config
+      terraform output -raw talosconfig > ~/.talos/config
+      chmod 600 ~/.kube/config ~/.talos/config
+    EOT
   }
+
   triggers = {
-    kubeconfig = talos_cluster_kubeconfig.kubeconfig.kubeconfig_raw
+    kubeconfig  = talos_cluster_kubeconfig.kubeconfig.kubeconfig_raw
     talosconfig = data.talos_client_configuration.talosconfig.talos_config
-    timestamp = timestamp() # Ensure the resource always detects changes
+    timestamp   = timestamp() # Ensure the resource always detects changes
   }
+
   depends_on = [
     talos_cluster_kubeconfig.kubeconfig,
     data.talos_client_configuration.talosconfig,
     data.talos_cluster_health.health
   ]
 }
-
-# # Run custom script for further configuration.
-# resource "null_resource" "run_custom_script" {
-#   provisioner "local-exec" {
-#     command = <<EOT
-#       mkdir -p ~/.kube && mkdir -p ~/.talos
-#       terraform output -raw kubeconfig > ~/.kube/config
-#       terraform output -raw talosconfig > ~/.talos/config
-#       chmod 600 ~/.kube/config ~/.talos/config
-#     EOT
-#   }
-#   triggers = {
-#     kubeconfig = try(talos_cluster_kubeconfig.kubeconfig.kubeconfig_raw, "")
-#     talosconfig = try(data.talos_client_configuration.talosconfig.talos_config, "")
-#   }
-#   depends_on = [
-#     talos_cluster_kubeconfig.kubeconfig,
-#     data.talos_client_configuration.talosconfig,
-#     data.talos_cluster_health.health
-#   ]
-# }
-
-