Once the infrastructure is ready, you can continue with setting up an RKE cluster to install Rancher in.

Installing Docker

First, you have to install Docker and setup the HTTP proxy on all three Linux nodes. For this perform the following steps on all three nodes.

For convenience export the IP address and port of your proxy into an environment variable and set up the HTTP_PROXY variables for your current shell:

  1. export proxy_host="10.0.0.5:8888"
  2. export HTTP_PROXY=http://${proxy_host}
  3. export HTTPS_PROXY=http://${proxy_host}
  4. export NO_PROXY=127.0.0.0/8,10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,cattle-system.svc

Next configure apt to use this proxy when installing packages. If you are not using Ubuntu, you have to adapt this step accordingly:

  1. cat <<'EOF' | sudo tee /etc/apt/apt.conf.d/proxy.conf > /dev/null
  2. Acquire::http::Proxy "http://${proxy_host}/";
  3. Acquire::https::Proxy "http://${proxy_host}/";
  4. EOF

Now you can install Docker:

  1. curl -sL https://releases.rancher.com/install-docker/19.03.sh | sh

Then ensure that your current user is able to access the Docker daemon without sudo:

  1. sudo usermod -aG docker YOUR_USERNAME

And configure the Docker daemon to use the proxy to pull images:

  1. sudo mkdir -p /etc/systemd/system/docker.service.d
  2. cat <<'EOF' | sudo tee /etc/systemd/system/docker.service.d/http-proxy.conf > /dev/null
  3. [Service]
  4. Environment="HTTP_PROXY=http://${proxy_host}"
  5. Environment="HTTPS_PROXY=http://${proxy_host}"
  6. Environment="NO_PROXY=127.0.0.0/8,10.0.0.0/8,cattle-system.svc,172.16.0.0/12,192.168.0.0/16"
  7. EOF

To apply the configuration, restart the Docker daemon:

  1. sudo systemctl daemon-reload
  2. sudo systemctl restart docker

Creating the RKE Cluster

You need several command line tools on the host where you have SSH access to the Linux nodes to create and interact with the cluster:

  1. sudo curl -fsSL -o /usr/local/bin/rke https://github.com/rancher/rke/releases/download/v1.1.4/rke_linux-amd64
  2. sudo chmod +x /usr/local/bin/rke
  1. curl -LO "https://storage.googleapis.com/kubernetes-release/release/$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)/bin/linux/amd64/kubectl"
  2. chmod +x ./kubectl
  3. sudo mv ./kubectl /usr/local/bin/kubectl
  1. curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3
  2. chmod +x get_helm.sh
  3. sudo ./get_helm.sh

Next, create a YAML file that describes the RKE cluster. Ensure that the IP addresses of the nodes and the SSH username are correct. For more information on the cluster YAML, have a look at the RKE documentation.

  1. nodes:
  2. - address: 10.0.1.200
  3. user: ubuntu
  4. role: [controlplane,worker,etcd]
  5. - address: 10.0.1.201
  6. user: ubuntu
  7. role: [controlplane,worker,etcd]
  8. - address: 10.0.1.202
  9. user: ubuntu
  10. role: [controlplane,worker,etcd]
  11. services:
  12. etcd:
  13. backup_config:
  14. interval_hours: 12
  15. retention: 6

After that, you can create the Kubernetes cluster by running:

  1. rke up --config rancher-cluster.yaml

RKE creates a state file called rancher-cluster.rkestate, this is needed if you want to perform updates, modify your cluster configuration or restore it from a backup. It also creates a kube_config_rancher-cluster.yaml file, that you can use to connect to the remote Kubernetes cluster locally with tools like kubectl or Helm. Make sure to save all of these files in a secure location, for example by putting them into a version control system.

To have a look at your cluster run:

  1. export KUBECONFIG=kube_config_rancher-cluster.yaml
  2. kubectl cluster-info
  3. kubectl get pods --all-namespaces

You can also verify that your external load balancer works, and the DNS entry is set up correctly. If you send a request to either, you should receive HTTP 404 response from the ingress controller:

  1. $ curl 10.0.1.100
  2. default backend - 404
  3. $ curl rancher.example.com
  4. default backend - 404

Save Your Files

Important The files mentioned below are needed to maintain, troubleshoot and upgrade your cluster.

Save a copy of the following files in a secure location:

  • rancher-cluster.yml: The RKE cluster configuration file.
  • kube_config_rancher-cluster.yml: The Kubeconfig file for the cluster, this file contains credentials for full access to the cluster.
  • rancher-cluster.rkestate: The Kubernetes Cluster State file, this file contains the current state of the cluster including the RKE configuration and the certificates.

Note: The “rancher-cluster” parts of the two latter file names are dependent on how you name the RKE cluster configuration file.

Issues or errors?

See the Troubleshooting page.

Next: Install Rancher