Docker Enterprise Edition (EE) 2.0 is the only platform that manages and secures applications on Kubernetes in multi-Linux, multi-OS and multi-cloud customer environments. With Docker EE 2.0, you get simplified workflows for the day-to-day management of a Kubernetes environment while still having access to native Kubernetes APIs, CLIs, and interfaces.
For more information on Docker EE 2.0, see https://blog.docker.com/2018/04/announcing-docker-enterprise-edition-2-0/ and https://www.docker.com/products/docker-enterprise.
A sample Kubernetes application has been documented in the section Kubernetes guestbook example with Redis to facilitate verification of the deployed playbooks and configuration. This example is also useful for exploring the new Kubernetes-specific features in the latest Splunk and Sysidg offerings.
kubectl used to access the Kubernetes cluster needs to be 1.10 or below. The current release
of kubectl is not compatible with the version of Kubernetes (1.8) shipped with Docker EE 2.0.
See the section Installing kubectl.
This minor update to Splunk Enterprise supports monitoring of Kubernetes logs and metrics. Kubernetes metadata is collected by
a universal forwarder implemented as a Deployment (with just one replica), while logs are collected by a
universal forwarder running on each Kubernetes node using a DaemonSet. The integration
leverages the open-source Splunk IT Monitoring and Troubleshooting project at
https://github.com/splunk/docker-itmonitoring.
This update also includes new versions of Splunk software components - see the section on installing the Splunk App for Windows Infrastructure and its dependencies here.
Sysdig now supports the monitoring of Kubernetes clusters and the playbooks have been updated to make use of this new functionality. See the section Deploying Sysdig monitoring on Kubernetes for more information.
- Docker EE changed to version 2.0 (UCP version 3.0.4, DTR version 2.5.3). The recommended RAM requirement for UCP has been increased to 16GB for production systems.
- Splunk Enterprise version changed from 7.0.2 to 7.1.2. You must download and install version 7.1.2 of the relevant Splunk Universal Forwarder(s) as described in Splunk prerequisites.
- RHEL 7.5
- Prometheus v2.3.2
- Grafana 5.2.3
An overview of all the playbooks is available here. This section outlines the changes from the previous release of the playbooks.
New playbooks:
playbooks/k8s-nfs-provisioner.yml- see Kubernetes Persistent Volume configuration and Deploying the NFS provisioner for Kubernetesplaybooks/resize_syspart.ymlresizes the logical volume that holds the/partition of the Linux VMs to use all the space available on the drive.
Modified playbooks:
playbooks/create_vms.ymlplaybooks/install_nfs_server.yml
Renamed/Removed playbooks:
playbooks/monitoring.ymlreplaced byplaybooks/splunk_uf.ymlplaybooks/monitoring_win.ymlreplaced byplaybooks/splunk_uf_win.ymltemplates/monitoringfolder renamed totemplates/splunk
New variables and configuration files have been introduced in this release.
splunk_uf_passwordvariable ingroup_vars/vault- see Splunk prerequisitesorchestratorvariable invm_hosts- see Orchestrator configurationk8s_pod_cidrvariable ingroup_vars/vars- see Kubernetes configuration- Additional configuration files for each group in the inventory including
group_vars/vms.yml,group_vars/ucp.yml,group_vars/dtr.yml,group_vars/worker.ymlandgroup_vars/nfs.yml- see Inventory group variables.
In the previous release, when a disk size of 100GB was requested for the boot drive, the drive was configured accordingly in the VM but the size of the / partition was determined by the template.
The / partition is now resized to occupy all the free space of the boot drive. This fix has only been implemented for Linux VMs.
An issue has been seen during the execution of the playbook playboooks/config_networking.yml when using RHEL 7.4.
TASK [Change hostname with FQDN]
fatal: [<hostname>]: UNREACHABLE! => {"changed": false, "msg": "Failed to connect to the host via ssh: ssh: connect to host <hostname> port 22: No route to host\r\n", "unreachable": true}
This error indicates that the configuration of the network interface of the virtual machine was not successful.
This error was seen with the VM running version 10.1.5.59732 (build-5055683) of the VMware tools and Red Hat 7.4.
It was not reproduced with version 10.1.10.63510 (build-6082533) of the VMware tools plus Red Hat 7.5.
As a result, we recommend that you update your Linux template to Red Hat 7.5 which will also upgrade the VMware tools if they were installed.