The cluster autoscaler scales worker nodes within an AWS autoscaling group (ASG) or Spotinst Elastigroup.
$ helm install stable/cluster-autoscaler --name my-release --set "autoscalingGroups[0].name=your-asg-name,autoscalingGroups[0].maxSize=10,autoscalingGroups[0].minSize=1"This chart bootstraps a cluster-autoscaler deployment on a Kubernetes cluster using the Helm package manager.
- Kubernetes 1.8+
older versions may work by overriding the
image. Cluster-autoscaler internally simulates the scheduler and bugs between mismatched versions may be subtle.
- Azure AKS specific Prerequisites:
- Kubernetes 1.10+ with RBAC-enabled
By default, no deployment is created and nothing will autoscale.
You must provide some minimal configuration, either to specify instance groups or enable auto-discovery. It is not recommended to do both.
Either:
- set
autoDiscovery.clusterNameand tag your autoscaling groups appropriately (--cloud-provider=awsonly) or - set at least one ASG as an element in the
autoscalingGroupsarray with its three values:name,minSizeandmaxSize.
To install the chart with the release name my-release:
Auto-discovery finds ASGs tags as below and automatically manages them based on the min and max size specified in the ASG. cloudProvider=aws only.
- tag the ASGs with key
k8s.io/cluster-autoscaler/enabledand keykubernetes.io/cluster/<YOUR CLUSTER NAME> - verify the IAM Permissions
- set
autoDiscovery.clusterName=<YOUR CLUSTER NAME> - set
awsRegion=<YOUR AWS REGION>
$ helm install stable/cluster-autoscaler --name my-release --set autoDiscovery.clusterName=<CLUSTER NAME>The auto-discovery section provides more details and examples
autoDiscovery.clusterName=any-name--cloud-provider=gceautoscalingGroupsnamePrefix[0].name=your-ig-prefix,autoscalingGroupsnamePrefix[0].maxSize=10,autoscalingGroupsnamePrefix[0].minSize=1
To use Managed Instance Group (MIG) auto-discovery, provide a YAML file setting autoscalingGroupsnamePrefix (see values.yaml) or use --set when installing the Chart - e.g.
$ helm install stable/cluster-autoscaler \
--name my-release \
--set autoDiscovery.clusterName=<CLUSTER NAME> \
--set cloudProvider=gce \
--set "autoscalingGroupsnamePrefix[0].name=your-ig-prefix,autoscalingGroupsnamePrefix[0].maxSize=10,autoscalingGroupsnamePrefix[0].minSize=1"Note that your-ig-prefix should be a prefix matching one or more MIGs, and not the full name of the MIG. For example, to match multiple instance groups - k8s-node-group-a-standard, k8s-node-group-b-gpu, you would use a prefix of k8s-node-group-.
In the event you want to explicitly specify MIGs instead of using auto-discovery, set members of the autoscalingGroups array directly - e.g.
# where 'n' is the index, starting at 0
-- set autoscalingGroups[n].name=https://content.googleapis.com/compute/v1/projects/$PROJECTID/zones/$ZONENAME/instanceGroupManagers/$FULL-MIG-NAME,autoscalingGroups[n].maxSize=$MAXSIZE,autoscalingGroups[n].minSize=$MINSIZE
Without autodiscovery, specify an array of elements each containing ASG name, min size, max size. The sizes specified here will be applied to the ASG, assuming IAM permissions are correctly configured.
- verify the IAM Permissions
- Either provide a yaml file setting
autoscalingGroups(see values.yaml) or use--sete.g.:
$ helm install stable/cluster-autoscaler --name my-release --set "autoscalingGroups[0].name=your-asg-name,autoscalingGroups[0].maxSize=10,autoscalingGroups[0].minSize=1"To uninstall my-release:
$ helm delete my-releaseThe command removes all the Kubernetes components associated with the chart and deletes the release.
Tip: List all releases using
helm listor start clean withhelm delete --purge my-release
The following table lists the configurable parameters of the cluster-autoscaler chart and their default values.
| Parameter | Description | Default |
|---|---|---|
affinity |
node/pod affinities | None |
autoDiscovery.clusterName |
enable autodiscovery for name in ASG tag (only cloudProvider=aws). Must be set for cloudProvider=gce, but no MIG tagging required. |
"" required unless autoscalingGroups[] provided |
autoscalingGroups[].name |
autoscaling group name | None. Required unless autoDiscovery.enabled=true |
autoscalingGroups[].maxSize |
maximum autoscaling group size | None. Required unless autoDiscovery.enabled=true |
autoscalingGroups[].minSize |
minimum autoscaling group size | None. Required unless autoDiscovery.enabled=true |
awsRegion |
AWS region (required if cloudProvider=aws) |
us-east-1 |
autoscalingGroupsnamePrefix[].name |
GCE MIG name prefix (the full name is invalid) | None. Required for cloudProvider=gce |
autoscalingGroupsnamePrefix[].maxSize |
maximum MIG size | None. Required for cloudProvider=gce |
autoscalingGroupsnamePrefix[].minSize |
minimum MIG size | None. Required for cloudProvider=gce |
sslCertPath |
Path on the pod where ssl ca cert exists | /etc/ssl/certs/ca-certificates.crt |
sslCertHostPath |
Path on the host where ssl ca cert exists | /etc/ssl/certs/ca-certificates.crt |
cloudProvider |
aws or spotinst are currently supported for AWS. gce for GCE. azure for Azure AKS |
aws |
image.repository |
Image | k8s.gcr.io/cluster-autoscaler |
image.tag |
Image tag | v1.13.1 |
image.pullPolicy |
Image pull policy | IfNotPresent |
extraArgs |
additional container arguments | {} |
podDisruptionBudget |
Pod disruption budget | maxUnavailable: 1 |
extraEnv |
additional container environment variables | {} |
nodeSelector |
node labels for pod assignment | {} |
podAnnotations |
annotations to add to each pod | {} |
rbac.create |
If true, create & use RBAC resources | false |
rbac.serviceAccountName |
existing ServiceAccount to use (ignored if rbac.create=true) | default |
rbac.pspEnabled |
Must be used with rbac.create true. If true, creates & uses RBAC resources required in the cluster with Pod Security Policies enabled. |
false |
replicaCount |
desired number of pods | 1 |
priorityClassName |
priorityClassName | nil |
resources |
pod resource requests & limits | {} |
service.annotations |
annotations to add to service | none |
service.clusterIP |
IP address to assign to service | "" |
service.externalIPs |
service external IP addresses | [] |
service.loadBalancerIP |
IP address to assign to load balancer (if supported) | "" |
service.loadBalancerSourceRanges |
list of IP CIDRs allowed access to load balancer (if supported) | [] |
service.servicePort |
service port to expose | 8085 |
service.portName |
name for service port | http |
service.type |
type of service to create | ClusterIP |
spotinst.account |
Spotinst Account ID (required if cloudprovider=spotinst) |
"" |
spotinst.token |
Spotinst API token (required if cloudprovider=spotinst) |
"" |
spotinst.image.repository |
Image (used if cloudProvider=spotinst) |
spotinst/kubernetes-cluster-autoscaler |
spotinst.image.tag |
Image tag (used if cloudProvider=spotinst) |
v0.6.0 |
spotinst.image.pullPolicy |
Image pull policy (used if cloudProvider=spotinst) |
IfNotPresent |
tolerations |
List of node taints to tolerate (requires Kubernetes >= 1.6) | [] |
Specify each parameter you'd like to override using a YAML file as described above in the installation section or by using the --set key=value[,key=value] argument to helm install. For example, to change the region and expander:
$ helm install stable/cluster-autoscaler --name my-release \
--set extraArgs.expander=most-pods \
--set awsRegion=us-west-1The worker running the cluster autoscaler will need access to certain resources and actions:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:DescribeAutoScalingGroups",
"autoscaling:DescribeAutoScalingInstances",
"autoscaling:DescribeLaunchConfigurations",
"autoscaling:DescribeTags",
"autoscaling:SetDesiredCapacity",
"autoscaling:TerminateInstanceInAutoScalingGroup"
],
"Resource": "*"
}
]
}
DescribeTagsis required for autodiscovery.DescribeLaunchconfigurationsis required to scale up an ASG from 0
Unfortunately AWS does not support ARNs for autoscaling groups yet so you must use "*" as the resource. More information here.
For auto-discovery of instances to work, they must be tagged with
k8s.io/cluster-autoscaler/enabled and kubernetes.io/cluster/<ClusterName>
The value of the tag does not matter, only the key.
An example kops spec excerpt:
apiVersion: kops/v1alpha2
kind: Cluster
metadata:
name: my.cluster.internal
spec:
additionalPolicies:
node: |
[
{"Effect":"Allow","Action":["autoscaling:DescribeAutoScalingGroups","autoscaling:DescribeAutoScalingInstances","autoscaling:DescribeLaunchConfigurations","autoscaling:DescribeTags","autoscaling:SetDesiredCapacity","autoscaling:TerminateInstanceInAutoScalingGroup"],"Resource":"*"}
]
...
---
apiVersion: kops/v1alpha2
kind: InstanceGroup
metadata:
labels:
kops.k8s.io/cluster: my.cluster.internal
name: my-instances
spec:
cloudLabels:
k8s.io/cluster-autoscaler/enabled: ""
kubernetes.io/cluster/my.cluster.internal: owned
image: kope.io/k8s-1.8-debian-jessie-amd64-hvm-ebs-2018-01-14
machineType: r4.large
maxSize: 4
minSize: 0
In this example you would need to --set autoDiscovery.clusterName=my.cluster.internal when installing.
It is not recommended to try to mix this with setting autoscalingGroups
See autoscaler AWS documentation for a more discussion of the setup
The chart will succeed even if the container arguments are incorrect. A few minutes after starting
kubectl logs -l "app=aws-cluster-autoscaler" --tail=50 should loop through something like
polling_autoscaler.go:111] Poll finished
static_autoscaler.go:97] Starting main loop
utils.go:435] No pod using affinity / antiaffinity found in cluster, disabling affinity predicate for this loop
static_autoscaler.go:230] Filtering out schedulables
If not, find a pod that the deployment created and describe it, paying close attention to the arguments under Command. e.g.:
Containers:
cluster-autoscaler:
Command:
./cluster-autoscaler
--cloud-provider=aws
# if specifying ASGs manually
--nodes=1:10:your-scaling-group-name
# if using autodiscovery
--node-group-auto-discovery=asg:tag=k8s.io/cluster-autoscaler/enabled,kubernetes.io/cluster/<ClusterName>
--v=4