installing-restricted-networks-bare-metal.adoc

Installing a user-provisioned bare metal cluster on a disconnected environment

In {product-title} {product-version}, you can install a cluster on bare metal infrastructure that you provision in a restricted network.

Important

While you might be able to follow this procedure to deploy a cluster on virtualized or cloud environments, you must be aware of additional considerations for non-bare metal platforms. Review the information in the guidelines for deploying {product-title} on non-tested platforms before you attempt to install an {product-title} cluster in such an environment.

Prerequisites

• You reviewed details about the {product-title} installation and update processes.

• You read the documentation on selecting a cluster installation method and preparing it for users.

• You created a registry on your mirror host and obtained the imageContentSources data for your version of {product-title}.

  Important

  Because the installation media is on the mirror host, you can use that computer to complete all installation steps.

• You provisioned persistent storage for your cluster. To deploy a private image registry, your storage must provide ReadWriteMany access modes.

• If you use a firewall and plan to use the Telemetry service, you configured the firewall to allow the sites that your cluster requires access to.

  Note	Be sure to also review this site list if you are configuring a proxy.

modules/installation-about-restricted-network.adoc

modules/cluster-entitlements.adoc

Requirements for a cluster with user-provisioned infrastructure

For a cluster that contains user-provisioned infrastructure, you must deploy all of the required machines.

This section describes the requirements for deploying {product-title} on user-provisioned infrastructure.

modules/installation-machine-requirements.adoc modules/installation-minimum-resource-requirements.adoc

Additional resources

• Optimizing storage

modules/csr-management.adoc

Additional resources

• See Configuring a three-node cluster for details about deploying three-node clusters in bare metal environments.

• See Approving the certificate signing requests for your machines for more information about approving cluster certificate signing requests after installation.

modules/installation-network-user-infra.adoc

Additional resources

• Configuring chrony time service

modules/installation-dns-user-infra.adoc

Additional resources

• Validating DNS resolution for user-provisioned infrastructure

modules/installation-load-balancing-user-infra.adoc

modules/creating-manifest-file-customized-br-ex-bridge.adoc

modules/creating-scaling-machine-sets-compute-nodes-networking.adoc

modules/installation-infrastructure-user-infra.adoc

Additional resources

• Requirements for a cluster with user-provisioned infrastructure

• Installing {op-system} and starting the {product-title} bootstrap process

• Setting the cluster node hostnames through DHCP

• Advanced RHCOS installation configuration

• Networking requirements for user-provisioned infrastructure

• User-provisioned DNS requirements

• Validating DNS resolution for user-provisioned infrastructure

• Load balancing requirements for user-provisioned infrastructure

modules/installation-user-provisioned-validating-dns.adoc

Additional resources

• User-provisioned DNS requirements

• Load balancing requirements for user-provisioned infrastructure

modules/ssh-agent-using.adoc

Additional resources

• Verifying node health

modules/installation-initializing-manual.adoc

Additional resources

• Installation configuration parameters for bare metal

modules/installation-bare-metal-config-yaml.adoc

Additional resources

• See Load balancing requirements for user-provisioned infrastructure for more information on the API and application ingress load balancing requirements.

modules/installation-configure-proxy.adoc

modules/installation-three-node-cluster.adoc

modules/installation-user-infra-generate-k8s-manifest-ignition.adoc

Additional resources

• See Recovering from expired control plane certificates for more information about recovering kubelet certificates.

modules/installation-special-config-chrony.adoc

modules/creating-machines-bare-metal.adoc

modules/installation-user-infra-machines-iso.adoc

modules/installation-user-infra-machines-pxe.adoc

modules/installation-user-infra-machines-advanced.adoc

modules/installation-user-infra-machines-advanced-console-configuration.adoc

modules/installation-user-infra-machines-advanced-enabling-serial-console.adoc

modules/installation-user-infra-machines-advanced-customizing-iso-or-pxe.adoc

modules/installation-user-infra-machines-advanced-customizing-live.adoc

modules/installation-user-infra-machines-advanced-customizing-live-serial-console.adoc

modules/installation-user-infra-machines-advanced-customizing-live-ca-certs.adoc

modules/installation-user-infra-machines-advanced-customizing-live-network-config.adoc

modules/installation-user-infra-machines-advanced-customizing-live-iscsi-manual.adoc

modules/installation-user-infra-machines-advanced-customizing-live-iscsi-ibft.adoc :boot-media!: :boot!:

modules/installation-user-infra-machines-advanced-customizing-live.adoc

modules/installation-user-infra-machines-advanced-customizing-live-serial-console.adoc

modules/installation-user-infra-machines-advanced-customizing-live-ca-certs.adoc

modules/installation-user-infra-machines-advanced-customizing-live-network-config.adoc

modules/installation-user-infra-machines-advanced-customizing-live-iscsi-manual.adoc

modules/installation-user-infra-machines-advanced-customizing-live-iscsi-ibft.adoc :boot-media!: :boot!:

modules/installation-user-infra-machines-static-network.adoc

modules/rhcos-enabling-multipath.adoc

modules/rhcos-multipath-secondary-disk.adoc

modules/rhcos-install-iscsi-manual.adoc

modules/rhcos-install-iscsi-ibft.adoc

modules/installation-installing-bare-metal.adoc

Additional resources

• See Monitoring installation progress for more information about monitoring the installation logs and retrieving diagnostic data if installation issues arise.

modules/cli-logging-in-kubeadmin.adoc

modules/installation-approve-csrs.adoc

modules/installation-operators-config.adoc

Additional resources

• See Gathering logs from a failed installation for details about gathering data in the event of a failed {product-title} installation.

• See Troubleshooting Operator issues for steps to check Operator pod health across the cluster and gather Operator logs for diagnosis.

modules/olm-restricted-networks-configuring-operatorhub.adoc

modules/installation-registry-storage-config.adoc

modules/registry-change-management-state.adoc

modules/registry-configuring-storage-baremetal.adoc

modules/installation-registry-storage-non-production.adoc

modules/installation-registry-storage-block-recreate-rollout-bare-metal.adoc

modules/installation-complete-user-infra.adoc

modules/cluster-telemetry.adoc

Additional resources

• See About remote health monitoring for more information about the Telemetry service

Next steps

• Validating an installation.

• Customize your cluster.

• Configure image streams for the Cluster Samples Operator and the must-gather tool.

• Learn how to use Operator Lifecycle Manager in disconnected environments.

• If the mirror registry that you used to install your cluster has a trusted CA, add it to the cluster by configuring additional trust stores.

• If necessary, you can opt out of remote health reporting.

• If necessary, see Registering your disconnected cluster