Mapping to Downstream Clusters
Fleet in Rancher allows users to manage clusters easily as if they were one cluster. Users can deploy bundles, which can be comprised of deployment manifests or any other Kubernetes resource, across clusters using grouping configuration.
info
Multi-cluster Only: This approach only applies if you are running Fleet in a multi-cluster style
When deploying GitRepos
to downstream clusters the clusters must be mapped to a target.
Defining Targets
The deployment targets of GitRepo
is done using the spec.targets
field to match clusters or cluster groups. The YAML specification is as below.
kind: GitRepo
apiVersion: fleet.cattle.io/v1alpha1
metadata:
name: myrepo
namespace: clusters
spec:
repo: https://github.com/rancher/fleet-examples
paths:
- simple
# Targets are evaluated in order and the first one to match is used. If
# no targets match then the evaluated cluster will not be deployed to.
targets:
# The name of target. This value is largely for display and logging.
# If not specified a default name of the format "target000" will be used
- name: prod
# A selector used to match clusters. The structure is the standard
# metav1.LabelSelector format. If clusterGroupSelector or clusterGroup is specified,
# clusterSelector will be used only to further refine the selection after
# clusterGroupSelector and clusterGroup is evaluated.
clusterSelector:
matchLabels:
env: prod
# A selector used to match cluster groups.
clusterGroupSelector:
matchLabels:
region: us-east
# A specific clusterGroup by name that will be selected
clusterGroup: group1
# A specific cluster by name that will be selected
clusterName: cluster1
Target Matching
All clusters and cluster groups in the same namespace as the GitRepo
will be evaluated against all targets. If any of the targets match the cluster then the GitRepo
will be deployed to the downstream cluster. If no match is made, then the GitRepo
will not be deployed to that cluster.
There are three approaches to matching clusters. One can use cluster selectors, cluster group selectors, or an explicit cluster group name. All criteria is additive so the final match is evaluated as “clusterSelector && clusterGroupSelector && clusterGroup”. If any of the three have the default value it is dropped from the criteria. The default value is either null or “”. It is important to realize that the value {}
for a selector means “match everything.”
# Match everything
clusterSelector: {}
# Selector ignored
clusterSelector: null
Default Target
If no target is set for the GitRepo
then the default targets value is applied. The default targets value is as below.
targets:
- name: default
clusterGroup: default
This means if you wish to setup a default location non-configured GitRepos will go to, then just create a cluster group called default and add clusters to it.
Customization per Cluster
To demonstrate how to deploy Kubernetes manifests across different clusters with customization using Fleet, we will use multi-cluster/helm/fleet.yaml.
Situation: User has three clusters with three different labels: env=dev
, env=test
, and env=prod
. User wants to deploy a frontend application with a backend database across these clusters.
Expected behavior:
- After deploying to the
dev
cluster, database replication is not enabled. - After deploying to the
test
cluster, database replication is enabled. - After deploying to the
prod
cluster, database replication is enabled and Load balancer services are exposed.
Advantage of Fleet:
Instead of deploying the app on each cluster, Fleet allows you to deploy across all clusters following these steps:
- Deploy gitRepo
https://github.com/rancher/fleet-examples.git
and specify the pathmulti-cluster/helm
. - Under
multi-cluster/helm
, a Helm chart will deploy the frontend app service and backend database service. - The following rule will be defined in
fleet.yaml
:
targetCustomizations:
- name: dev
helm:
values:
replication: false
clusterSelector:
matchLabels:
env: dev
- name: test
helm:
values:
replicas: 3
clusterSelector:
matchLabels:
env: test
- name: prod
helm:
values:
serviceType: LoadBalancer
replicas: 3
clusterSelector:
matchLabels:
env: prod
Result:
Fleet will deploy the Helm chart with your customized values.yaml
to the different clusters.
Note: Configuration management is not limited to deployments but can be expanded to general configuration management. Fleet is able to apply configuration management through customization among any set of clusters automatically.
important information
Overriding the version of a Helm chart via target customizations will lead to bundles containing all versions, ie the default one and the custom one(s), of the chart, to accommodate all clusters. This in turn means that Fleet will deploy larger bundles.
As Fleet stores bundles via etcd, this may cause issues on some clusters where resultant bundle sizes may exceed etcd’s configured maximum blob size. See this issue for more details.
Additional Examples
Examples using raw Kubernetes YAML, Helm charts, Kustomize, and combinations of the three are in the Fleet Examples repo.