RKE2 Overview

RKE2 is a fully conformant Kubernetes distribution that focuses on security and compliance within the U.S. Federal Government sector. To meet the Kubernetes security and compliance goals required by the U.S. Federal Government, RKE2 establishes the following:


  1. Provides defaults and configuration options that allow clusters to pass the CIS Kubernetes Benchmark v1.6 with minimal operator intervention.


  2. Enables Federal Information Processing Standard 140-2 (FIPS 140-2) compliance.


  3. Scans components regularly for Common Vulnerabilities and Exposures (CVEs) using Trivy in the build pipeline.


This next generation of Kubernetes Combined with the best of K3s and RKE1 features, RKE2 launches control plane components as static pods, managed by the kubelet instead of relying on Docker. Moreover, the embedded container runtime is containerd.

Palette has made using RKE2 simple by incorporating it as a Pack. With a few clicks, RKE2 can be set while creating a Palette-specific cluster profile. Once a cluster profile is created, users can deploy the RKE2-based, Kubernetes clusters through the Palette console.

Versions Supported

The following RKE2 versions are supported to work with Palette.


  • k8s_rke2_1.23.9

Prerequisites

  • Linux


    • RAM - 4 GB Minimum (we recommend at least 8 GB)


    • CPU - 2 Minimum (we recommend at least 4CPU)


  • You will need access to a Palette Account. Refer to the Getting Started with Palette.


Deploying an RKE2 Cluster on Palette

  1. Create a New Cluster Profile from the slide menu and select the layers for provisioning the first cluster profile. Complete the entries for each layer as follows:

    Operating System Layer

    1. From the Registry dropdown, select Public Repo.
    2. Select the Ubuntu image listed under the Public Registry.
    3. Pick the Pack Version and then, continue to the Next Layer.


    Kubernetes Layer

    1. From the Registry dropdown, select Public Repo.
    2. Select the RKE2 pack listed under Pack Name.
    3. Pick the Pack Version and then, continue to the Next Layer.


    Network Layer

    1. From the Registry dropdown, select Public Repo.
    2. Select the Calico or Cilium Enterprise Pack Name.
    3. Pick the Pack Version and then, continue to the Next Layer.


    Storage Layer

    1. From the Registry dropdown, select Public Repo.
    2. Select your storage provisioner under Pack name. The most common is CSI.
    3. Pick the Pack Version and then, click Confirm.


See the Cluster Profile page for more information.


  1. Click Finish Configuration to complete the Cluster Profile creation wizard.


  2. Create a new cluster as specified in the New Cluster page.
    Note: Palette is supporting the following two Infrastructure providers for RKE2--MAAS and VMware.


  3. You will be able to confirm and view the Cluster Details Status from the Overview page.

RKE2 Kubernetes



References

RKE2

RKE2 on GitHub