EOEPCA+ Infrastructure Deployment Guide⚓︎

This guide provides step-by-step instructions to set up the essential infrastructure required for deploying the EOEPCA+ ecosystem. We’ll walk you through setting up a Kubernetes cluster using Rancher Kubernetes Engine (RKE), configuring networking, and establishing a load balancer and bastion host. These steps offer an example of how we set up our cluster, which you can follow or adapt to fit your environment.

Components that often vary between deployments—such as ingress controllers, TLS certificate management, and storage provisioning—are addressed in separate guides. This allows you to choose the approach that best suits your needs.

Architecture Overview⚓︎

Compute Instances: Control plane node(s) and worker nodes for the Kubernetes cluster, a bastion host for secure access, and optional nodes for storage (e.g., NFS server).
Networking Components: Virtual networks, subnets, and security groups/firewall rules to enable communication between instances and the internet.
Load Balancer: Distributes traffic to the Kubernetes API server and the ingress controllers.
Kubernetes Cluster: Deployed using RKE, includes control plane and worker nodes.
Bastion Host: Provides secure access to instances within private networks.

Prerequisites⚓︎

Cloud Provider Access: Access to a cloud provider (e.g., AWS, Azure, OpenStack) to create virtual machines and networking resources.
Domain Name: A domain name you control (e.g., example.com) with the ability to manage DNS records.
Local Machine Setup:
Operating System: Linux or Windows Subsystem for Linux (WSL).
Tools:
- SSH client (ssh)
- kubectl (Installation Guide)
- helm (Installation Guide)
- rke (RKE Installation Guide)
Email Address: For certificate issuance if using Let’s Encrypt.

Setup⚓︎

Proceed to the following sections to set up the required infrastructure components:

EOEPCA+ Infrastructure Deployment Guide⚓︎

Architecture Overview⚓︎

Prerequisites⚓︎

Setup⚓︎

Further Reading⚓︎