Enterprise Kubernetes, delivered

Tectonic ships with CoreOS's signature automated operations, runs multi-cloud, and is the fastest, most secure path to Kubernetes.

Terraform variables

This document gives an overview of variables used in the bare metal platform of the Tectonic SDK.

Inputs

Name Description Type Default
tectonic_metal_calico_mtu (optional) Sets the MTU size for workload interfaces and the IP-in-IP tunnel device.

Note: This setting is only effective, if tectonic_networking is set to calico.
string 1480
tectonic_metal_config_version (internal) This declares the version of the Matchbox configuration variables. It has no impact on generated assets but declares the version contract of the configuration. string 1.0
tectonic_metal_controller_domain The domain name which resolves to controller node(s)

Example: cluster.example.com
string -
tectonic_metal_controller_domains Ordered list of controller domain names.

Example: ["node2.example.com", "node3.example.com"]
list -
tectonic_metal_controller_macs Ordered list of controller MAC addresses for matching machines.

Example: ["52:54:00:a1:9c:ae"]
list -
tectonic_metal_controller_names Ordered list of controller names.

Example: ["node1"]
list -
tectonic_metal_ingress_domain The domain name which resolves to Tectonic Ingress (i.e. worker node(s))

Example: tectonic.example.com
string -
tectonic_metal_matchbox_ca The content of the Matchbox CA certificate to trust.

Example: <<EOD -----BEGIN CERTIFICATE----- MIIFDTCCAvWgAwIBAgIJAIuXq10k2OFlMA0GCSqGSIb3DQEBCwUAMBIxEDAOBgNV ... Od27a+1We/P5ey7WRlwCfuEcFV7nYS/qMykYdQ9fxHSPgTPlrGrSwKstaaIIqOkE kA== -----END CERTIFICATE----- EOD
string -
tectonic_metal_matchbox_client_cert The content of the Matchbox client TLS certificate.

Example: <<EOD -----BEGIN CERTIFICATE----- MIIEYDCCAkigAwIBAgICEAEwDQYJKoZIhvcNAQELBQAwEjEQMA4GA1UEAwwHZmFr ... jyXQv9IZPMTwOndF6AVLH7l1F0E= -----END CERTIFICATE----- EOD
string -
tectonic_metal_matchbox_client_key The content of the Matchbox client TLS key.

Example: <<EOD -----BEGIN RSA PRIVATE KEY----- MIIEpQIBAAKCAQEAr8S7x/tAS6W+aRW3X833OvNfxXjUJAiRkUV85Raln7tqVcTG ... Pikk0rvNVB/vrPeVjAdGY9TJC/vpz3om92DRDmUifu8rCFxIHE0GrQ0= -----END RSA PRIVATE KEY----- EOD
string -
tectonic_metal_matchbox_http_url Matchbox HTTP read-only URL.

Example: e.g. http://matchbox.example.com:8080
string -
tectonic_metal_matchbox_rpc_endpoint The Matchbox gRPC API endpoint.

Example: matchbox.example.com:8081
string -
tectonic_metal_worker_domains Ordered list of worker domain names.

Example: ["node2.example.com", "node3.example.com"]
list -
tectonic_metal_worker_macs Ordered list of worker MAC addresses for matching machines.

Example: ["52:54:00:b2:2f:86", "52:54:00:c3:61:77"]
list -
tectonic_metal_worker_names Ordered list of worker names.

Example: ["node2", "node3"]
list -
tectonic_ssh_authorized_key SSH public key to use as an authorized key.

Example: ssh-rsa AAAB3N...
string -