To add one or more nodes to a node pool, simply update the instance count in the configuration file for that node pool and run the create command again.
To reduce the size of a node pool:
- Lower the instance count in the configuration file to ensure the extra nodes are not recreated in the future.
- Drain and delete the additional nodes from Kubernetes. These are typically the last nodes when sorted alphabetically by name (
kubectl drain Nodefollowed bykubectl delete node <name>). - Remove the corresponding instances from the cloud console if the Cloud Controller Manager doesn’t handle this automatically. Make sure you delete the correct ones!
- Drain and delete the node from Kubernetes (
kubectl drain <name>followed bykubectl delete node <name>). - Delete the correct instance from the cloud console.
- Run the
createcommand again. This will recreate the missing node and add it to the cluster.
Converting a single-master, non-HA cluster to a multi-master HA cluster is straightforward. Increase the masters instance count and rerun the create command. This will set up a load balancer for the API server (if enabled) and update the kubeconfig to direct API requests through the load balancer or one of the master contexts. For production clusters, it’s also a good idea to place the masters in different locations (refer to this page for more details).
In a new HA cluster, the seed master (or first master) is master1. If you delete master1 due to issues and it gets recreated, the seed master will change. When this happens, restart k3s on the existing masters.
For the first upgrade of your cluster, simply run the following command to update to a newer version of k3s:
hetzner-k3s upgrade --config cluster_config.yaml --new-k3s-version v1.27.1-rc2+k3s1Specify the new k3s version as an additional parameter, and the configuration file will be updated automatically during the upgrade. To view available k3s releases, run the command hetzner-k3s releases.
Note: For single-master clusters, the API server will be briefly unavailable during the control plane upgrade.
To monitor the upgrade progress, use watch kubectl get nodes -owide. You will see the masters upgrading one at a time, followed by the worker nodes.
If the upgrade stalls or doesn’t complete for all nodes:
- Clean up existing upgrade plans and jobs, then restart the upgrade controller:
kubectl -n system-upgrade delete job --all
kubectl -n system-upgrade delete plan --all
kubectl label node --all plan.upgrade.cattle.io/k3s-server- plan.upgrade.cattle.io/k3s-agent-
kubectl -n system-upgrade rollout restart deployment system-upgrade-controller
kubectl -n system-upgrade rollout status deployment system-upgrade-controllerYou can also check the logs of the system upgrade controller’s pod:
kubectl -n system-upgrade \
logs -f $(kubectl -n system-upgrade get pod -l pod-template-hash -o jsonpath="{.items[0].metadata.name}")If the upgrade stalls after upgrading the masters but before upgrading the worker nodes, simply cleaning up resources might not be enough. In this case, run the following to mark the masters as upgraded and allow the upgrade to continue for the workers:
kubectl label node <master1> <master2> <master2> plan.upgrade.cattle.io/k3s-server=upgraded- Consider adding a temporary node during the process if your cluster doesn’t have enough spare capacity.
- Drain one node.
- Update the OS and reboot the node.
- Uncordon the node.
- Repeat for the next node.
To automate this process, you can install the Kubernetes Reboot Daemon ("Kured"). For Kured to work effectively, ensure the OS on your nodes has unattended upgrades enabled, at least for security updates. For example, if the image is Ubuntu, add this to the configuration file before running the create command:
additional_packages:
- unattended-upgrades
- update-notifier-common
post_create_commands:
- sudo systemctl enable unattended-upgrades
- sudo systemctl start unattended-upgradesRefer to the Kured documentation for additional configuration options, such as maintenance windows.