Fuzzball Documentation
Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Back to homepage
  2. /
  3. Appendices
  4. /
  5. Installing a basic RKE2 Kubernetes Cluster
  6. /
  7. Initial Configuration

Initial Configuration

Several steps must be carried out to prepare the server for K8s deployment.

Configure NetworkManager

At the time of this writing there is a known issue with RKE2 requiring a custom configuration for NetworkManager. The following procedure will overcome this limitation.

# cat >> /etc/NetworkManager/conf.d/rke2-canal.conf <<EOF
[keyfile]
unmanaged-devices=interface-name:flannel*;interface-name:cali*;interface-name:tunl*;interface-name:vxlan.calico;interface-name:vxlan-v6.calico;interface-name:wireguard.cali;interface-name:wg-v6.cali
EOF

# systemctl reload NetworkManager

Disable the Firewall

Because of another known issue/limitation, it is also necessary to disable the firewall at this time.

Firewalld conflicts with RKE2’s default Canal (Calico + Flannel) networking stack. To avoid unexpected behavior, firewalld should be disabled on systems running RKE2.

# systemctl disable --now firewalld

Tuning for inotify

You may need to increase the max_user_instances for inotify. This is easy to do.

# echo "fs.inotify.max_user_instances=8192" >>/etc/sysctl.d/99-inotify.conf

# sysctl -p /etc/sysctl.d/99-inotify.conf

Once this initial configuration has been completed you are ready to install RKE2 on your server!

Disable Swap

It is recommended to disable swapping on rke2 nodes. This can be done as shown below. Note that the systemctl command may fail harmlessly if ‘swap.target’ does not exist on your system.

# swapoff -a

# systemctl disable --now swap.target

# sed -i.bak '/swap/d' /etc/fstab
gdoc_arrow_left_alt Environment Variables Used in Deployment Installing RKE2 on the Server Node gdoc_arrow_right_alt