Illumina Innovates with Rancher and Kubernetes
Since RKE uses ssh to connect to nodes, you can configure to use a bastion host. Keep in mind that the port requirements for the RKE node move to the configured bastion host.
ssh
bastion_host: address: x.x.x.x user: ubuntu port: 22 ssh_key_path: /home/user/.ssh/bastion_rsa # or # ssh_key: |- # -----BEGIN RSA PRIVATE KEY----- # # -----END RSA PRIVATE KEY----- # Optionally using SSH certificates # ssh_cert_path: /home/user/.ssh/id_rsa-cert.pub # or # ssh_cert: |- # ssh-rsa-cert-v01@openssh.com AAAAHHNza...
The address directive will be used to set the hostname or IP address of the bastion host. RKE must be able to connect to this address.
address
You specify which port to be used when connecting to the bastion host. The default port is 22.
port
22
You specify the user to be used when connecting to this node.
user
You specify the path, i.e. ssh_key_path, for the SSH private key to be used when connecting to the bastion host.
ssh_key_path
Instead of setting the path to the SSH key, you can specify the actual key, i.e. ssh_key, to be used to connect to the bastion host.
ssh_key
You specify the path, i.e. ssh_cert_path, for the signed SSH certificate to be used when connecting to the bastion host.
ssh_cert_path
Instead of setting the path to the signed SSH certificate, you can specify the actual certificate, i.e. ssh_cert, to be used to connect to the bastion host.
ssh_cert