Skip to content

On-Premise Production Kubernetes Cluster Installers

Architectural Context

Detailed reference for On-Premise Production Kubernetes Cluster Installers in the context of The Container Stack.

Standard Reference

Cloud Infrastructure

Application Platforms

VMware Tanzu Ecosystem

Hardware Acceleration

VMware Tanzu Ecosystem (1)

  • dev.to/saintdle: Deploying Nvidia GPU enabled Tanzu Kubernetes Clusters [EN CONTENT] [ADVANCED LEVEL] [COMMUNITY-TOOL] [GUIDE] β€” An in-depth guide detailing how to provision Nvidia GPU acceleration inside Tanzu Kubernetes Grid (TKG) guest clusters. Covers configuration of GPU operators, vSphere passthrough, and driver deployment parameters for intensive workload computing.

Kubernetes Distributions

Bare-Metal and Edge

  • (2026) Charmed Kubernetes [EN CONTENT] 🌟🌟🌟🌟 [ENTERPRISE-STABLE] β€” Canonical's model-driven Kubernetes distribution designed for bare-metal, private, and multi-cloud environments. Leverages Ubuntu's automated Juju framework to manage complex cluster lifecycles, upgrades, security scanning, and seamless hypervisor scaling.
  • poseidon/typhoon ⭐ 2042 [EN CONTENT] [ADVANCED LEVEL] [ENTERPRISE-STABLE] β€” Typhoon is a bare-metal and multi-cloud Kubernetes distribution focused on simplicity. Built entirely with Terraform and running on Flatcar Container Linux, it provides a stable setup that operates efficiently without heavy proprietary layers.

Comparison

  • (2021) acloudguru.com: Which Kubernetes distribution is right for you? [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” A strategic comparison of various Kubernetes distributions across managed cloud services, enterprise-on-prem deployments, and lightweight edge environments. It outlines key trade-offs in administrative overhead, ecosystem compatibility, and operational costs to help organizations select the correct engine.

Custom Installers

  • kurl.sh [EN CONTENT] [ADVANCED LEVEL] [ENTERPRISE-STABLE] β€” An automated web-based tool from Replicated for creating custom Kubernetes installers. It generates a single shell script containing your chosen mix of Kubernetes core packages, CNI layers, and custom operators, designed for offline and air-gapped environments.

Edge and IoT

  • k0s [EN CONTENT] [DE FACTO STANDARD] β€” k0s is a zero-friction, highly secure Kubernetes distribution compiled into a single static binary. It separates the control plane from node processes, reducing operational overhead and memory usage, making it an excellent match for edge, bare metal, and embedded systems.
  • K0s - Zero Friction Kubernetes ⭐ 6161 [EN CONTENT] [DE FACTO STANDARD] [ENTERPRISE-STABLE] β€” The main GitHub repository for k0s, the lightweight zero-overhead Kubernetes distribution. It includes active developer paths, and provides built-in components like Calico CNI, Kube-router, and support for running multiple control planes.
  • xiaods/k8e ⭐ 444 [EN CONTENT] [COMMUNITY-TOOL] β€” A lightweight community-driven Kubernetes distribution modeled after K3s but using standard upstream components. It offers an easy install track for edge nodes and test networks looking for low operational footprints.

Enterprise Platforms

  • (2022) infoworld.com: 6 Kubernetes distributions leading the container revolution [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” Reviews the leading container platforms guiding the market shift towards hybrid and multi-cloud Kubernetes orchestration. Evaluates enterprise-grade capabilities of tools like Red Hat OpenShift, VMware Tanzu, Rancher, and Mirantis, analyzing their management interfaces and security controls.

Industry News

  • infoq.com: Mirantis Announces k0s, a New Kubernetes Distribution [EN CONTENT] [CASE STUDY] [COMMUNITY-TOOL] β€” An industry report covering Mirantis' launch of k0s. Details the project's architecture, showing how it solves common challenges like packaging components cleanly, maintaining small binary sizes, and removing reliance on complex OS libraries.

Training Platforms

Ecosystem Portals

  • kube.academy/pro 🌟 [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” An interactive curriculum platform for Kubernetes engineers. Includes tracks covering cluster diagnostics, policy configuration, service mesh integrations, and overall infrastructure hardening strategies.

Sandbox Environments

  • (2026) VMware hands-on Labs 🌟 [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” A premium sandbox platform allowing cloud engineers and enterprise architects to test VMware Tanzu and vSphere configurations without local hardware limitations. Includes pre-configured networks, clusters, and detailed training modules.

VMware Tanzu Ecosystem (2)

Hypervisor Kubernetes

  • (2020) VMware vSphere 7 with Kubernetes - Project Pacific [EN CONTENT] [ADVANCED LEVEL] [ENTERPRISE-STABLE] β€” Official product landing for VMware vSphere's container execution engine, which allows traditional virtual machine management tools to deploy and monitor container runtimes. Provides a centralized solution to govern both VM and container topologies.

Tutorials

  • cormachogan.com: A first look at vSphere with Kubernetes in action [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” A detailed technical review showing vSphere with Kubernetes in a live environment. Reviews how the Supervisor Cluster exposes Kubernetes native primitives natively within vCenter, allowing developers to consume storage and compute via standard YAML.
  • cormachogan.com: Building a TKG Cluster in vSphere with Kubernetes [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” A practical walk-through detailing how to construct and deploy a Tanzu Kubernetes Grid (TKG) guest cluster. Covers configuration details including Cluster API controllers, control-plane load balancers, and persistent virtual storage.

GitOps

Hybrid Cloud Platforms

Azure Arc Integration

  • (2021) Kubernetes GitOps with Azure Arc and Charmed Kubernetes [EN CONTENT] [COMMUNITY-TOOL] [GUIDE] β€” A technical guide illustrating the integration of Charmed Kubernetes with Azure Arc to orchestrate hybrid-cloud resources. Demonstrates how GitOps configurations are pushed dynamically across decentralized architectures using unified portal controls.

Infrastructure

Air-Gapped

Delivery and Curation

  • (2026) defenseunicorns/zarf ⭐ 1896 [ADVANCED LEVEL] 🌟🌟🌟🌟 [ENTERPRISE-STABLE] β€” A highly resilient open-source developer tool from Defense Unicorns built to package, deploy, and manage continuous delivery of cloud-native platforms in strictly air-gapped or secure zero-trust environments. Automates the bundling of containers, Helm charts, files, and static configs into single, self-sufficient, and cryptographically signed archive files.

Bare Metal

Architecture

  • (2022) containerjournal.com: Deploying Kubernetes on Bare Metal [COMMUNITY-TOOL] β€” An architectural guide exploring the benefits and challenges of deploying production-grade Kubernetes directly onto bare-metal servers. It details how bypassing hypervisor virtualization layers reduces operational overhead and enhances I/O performance. Crucial for low-latency, high-throughput edge nodes and data-intensive database deployments.

Case Studies

  • linecorp.com: Building Large Kubernetes Clusters with Caravan [COMMUNITY-TOOL] β€” A detailed engineering case study by Line Corporation explaining Caravan, their custom internal platform designed to build and maintain thousands of Kubernetes clusters on bare-metal infrastructure. Provides deep insights into enterprise lifecycle scale and custom provisioning control planes.

Strategic Decisions

  • (2021) containerjournal.com: When Kubernetes-as-a-Service Doesn’t Cut It [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” A strategic critique detailing scenarios where managed cloud Kubernetes services fall short of enterprise requirements, necessitating custom bare-metal or on-premises solutions. Key factors analyzed include strict regulatory compliance, low-latency requirements, and specialized hardware acceleration (GPUs, TPUs). Useful for infrastructure architects designing hybrid-cloud topologies.

Bare Metal vs VMs

Architectural Decisions

  • thenewstack.io: Kubernetes on Bare Metal vs. VMs: It’s Not Just Performance [COMMUNITY-TOOL] β€” A comparative technical analysis evaluating the operational trade-offs between deploying Kubernetes on bare metal versus traditional virtual machines. While bare metal minimizes CPU/memory virtualization tax, VMs offer stronger isolation, easier live migration, and mature lifecycle management APIs. The article guides decision-makers in balancing pure hardware efficiency against administrative convenience.

Cluster API

Architecture (1)

ArgoCD

Bare Metal (1)

  • thenewstack.io: Provision Bare-Metal Kubernetes with the Cluster API [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” Investigates the mechanics of using Cluster API providers (such as Metal3) to provision bare-metal hardware declaratively. Details the transformation of raw physical bare metal nodes into standard, managed Kubernetes control-planes and workers.

Declarative Management

  • ClusterAPI [ADVANCED LEVEL] [DOCUMENTATION] [DE FACTO STANDARD] β€” The official Kubernetes Special Interest Group (SIG) project extending Kubernetes with declarative, Kubernetes-style APIs to manage the lifecycle of Kubernetes clusters. It implements custom resources (e.g., Clusters, Machines) and controllers across numerous cloud providers, introducing standard Infrastructure-as-Code paradigms to cluster fleet administration.

Helm

  • github.com: Cluster API Helm Chart ⭐ 58 [COMMUNITY-TOOL] β€” A community Helm chart designed to packages and deploy Cluster API resources and operators easily inside a management cluster. Simplifies the installation of CAPI components via standard Helm deployment pipelines. Note: Inactive, as official tooling increasingly uses clusterctl.

Legacy Provider

  • weaveworks/cluster-api-provider-existinginfra ⭐ 45 [ADVANCED LEVEL] [LEGACY] β€” A Cluster API provider designed to enable cluster deployment over pre-existing infra (such as bare-metal or legacy VMs) via SSH. Archived following Weaveworks' wrap-up, serving now as a reference for custom SSH-based control loops.

Multi-Cloud

Cluster Provisioning

AWS

  • Kubernetes The Hard Way: AWS Edition ⭐ 668 [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” A highly specific community adaptation of Kelsey Hightower's educational guide, focusing entirely on AWS infrastructure including VPCs, IAM roles, security groups, and EC2 provisioning. Valuable reference for understanding low-level networking and control plane setup on AWS.

Automation

  • krd ⭐ 40 [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” Kubernetes Reference Deployment (KRD) utilizes Ansible playbooks and shell scripts to automate the installation of multi-node Kubernetes clusters with extensive integration of Cloud Native network elements, virtualization engines, and storage provisioners. Designed for prototyping comprehensive environments rapidly.

Automation Tools

  • k8s-tew ⭐ 311 [COMMUNITY-TOOL] β€” Kubernetes The Easy Way (k8s-tew) provides a collection of wrapper scripts and declarative configuration structures designed to ease the bootstrap complexities of kubeadm. Inactive, replaced by more mature standard declarative APIs.

Azure

  • Kubernetes the Hard Way: Azure Edition [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” An adapted tutorial of Kelsey Hightower's 'Kubernetes the Hard Way' mapped directly onto Azure cloud infrastructure. Details setting up VNets, Azure NSGs, load balancers, and virtual machine scale sets manually to better understand control plane placement.

Community Videos

Containerd

  • thenewstack.io: How to Deploy Kubernetes with Kubeadm and containerd [COMMUNITY-TOOL] β€” Examines the modern approach to cluster provisioning by leveraging the containerd CRI runtime directly with kubeadm. Explains how to drop docker-shim and configure systemic dependencies, systemd cgroup drivers, and network configurations for maximum efficiency.

Developer Environments

  • github.com/bluxmit: Kubespray Workspace ⭐ 1362 [COMMUNITY-TOOL] β€” A specialized development workspace designed to streamline the execution of Kubespray and Ansible operations. It bundles critical tools, CLI utilities, and playbooks in a containerized sandbox to prevent local dependency conflicts during large-scale cluster provisioning.

Education

  • Kelsey Hightower: kubernetes the hard way ⭐ 48360 [DE FACTO STANDARD] β€” The legendary, standard-setting educational guide for bootstrap-configuring high-availability Kubernetes clusters without installers. Details direct certificate generation, control plane components installation, systemd configuration, and CNI initialization. Crucial for establishing a deeply technical foundation of internal cluster mechanics.

Kops

  • GitHub: Kubernetes Cluster with Kops ⭐ 16614 [ADVANCED LEVEL] [DE FACTO STANDARD] [EMERGING] β€” The official Kubernetes Operations tool for deploying, scaling, and managing highly available, production-grade Kubernetes clusters on public cloud environments (specifically AWS, with alpha/beta support for GCE, DigitalOcean, and OpenStack). Built on a declarative configuration model, Kops manages the underlying VM resources, networking, and DNS required for the control plane.

Kops Security

  • blog.ivnilv.com: Rotating Kops Etcd Certificates [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” Deep-dive operational guide detailing how to safely rotate etcd certificates within an AWS-based cluster provisioned by Kops. It walks through the sequence of configuration modifications, rolling updates, and verification checks. Critical reading for system administrators managing long-lived Kops deployments without downtime.

Kubeadm

  • Kubernetes Cluster with Kubeadm ⭐ 3977 [ADVANCED LEVEL] [DE FACTO STANDARD] [ENTERPRISE-STABLE] β€” The standard bootstrapping engine for establishing conformant Kubernetes clusters. Kubeadm abstracts the complex mechanics of configuring etcd, control plane API components, and node registration into clean init and join workflows. Designed to serve as the building block for higher-level platform orchestration engines.

Kubeadm Guides

Kubespray

  • Kubespray ⭐ 18493 [ADVANCED LEVEL] [DE FACTO STANDARD] β€” An industry-standard provisioning tool combining Ansible playbooks and kubeadm to deliver highly configurable, multi-cloud, production-grade Kubernetes deployments. Supports declarative definition of CNI plugins, container runtimes (containerd/CRI-O), ingress controllers, and storage drivers, making it the preferred choice for on-premise and bare-metal enterprise automation.

Kubespray Guides

  • (2020) redhat.com: An introduction to Kubespray [COMMUNITY-TOOL] β€” An introductory conceptual article published on Red Hat's blog explaining how Kubespray leverages Ansible to deploy and manage cluster lifecycles. Discusses deployment target flexibility and explains why it serves as a powerful alternative for enterprise on-premises platforms.
  • adamtheautomator.com/kubespray: Conquer Kubernetes Clusters with Ansible' Kubespray [COMMUNITY-TOOL] β€” A hands-on, practical guide demonstrating step-by-step how to deploy a fully functioning Kubernetes cluster using Kubespray on custom virtual environments. Details preparing host inventories, updating variables, and executing core Ansible playbooks.

Legacy Tooling

Edge and IoT (1)

MicroK8s

  • (2026) *Microk8s* [DOCUMENTATION] 🌟🌟🌟🌟 [ENTERPRISE-STABLE] β€” A lightweight, production-grade, single-package Kubernetes distribution by Canonical. It features automatic updates, high-availability cluster builds, and instant addon enablement (e.g., GPU support, Linkerd, Istio). Highly optimized for developer environments, Edge workloads, and IoT gateways.

MicroK8s Guides

Sandbox Runtimes

  • Kata Containers on MicroK8s ⭐ 34 [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” A community project showcasing how to configure and run Kata Containers inside a Canonical MicroK8s environment for hardware-assisted, hypervisor-isolated container sandboxing. Inactive but serves as a solid blueprint for secure multi-tenant lightweight virtualization.

Security Benchmarking

  • MicroK8s & Kubernetes security benchmark from CIS ⭐ 17 [COMMUNITY-TOOL] β€” A validation utility adapting aquasecurity's kube-bench to run structured CIS security benchmarks directly against canonical MicroK8s clusters. Confirms cluster configuration conformance to standard security profiles.

GitOps (1)

Cluster Provisioning (1)

  • Weave Kubernetes System Control - wksctl ⭐ 389 [ADVANCED LEVEL] [LEGACY] β€” An early GitOps-driven Kubernetes cluster manager from Weaveworks that provisioned clusters from a declared state stored in git. Following Weaveworks' operational shutdown, this project is considered legacy but remains highly influential in GitOps control-loop architecture history.
  • WKSctl: a Tool for Kubernetes Cluster Management Using GitOps [COMMUNITY-TOOL] β€” An InfoQ editorial piece analyzing the operational design of WKSctl. Explores how declarative machine and cluster definitions allowed users to bootstrap and reconcile nodes over SSH using Git as the source of truth.

Infrastructure as Code

Ansible

  • Ansible Role - Kubernetes (Jeff Geerling) ⭐ 625 [COMMUNITY-TOOL] β€” A highly popular and actively maintained Ansible role written by Jeff Geerling that automates the installation and configuration of Kubernetes on Debian/Ubuntu and RedHat/CentOS servers. It simplifies installing kubeadm, kubelet, and kubectl, managing system configurations, and bootstrapping clusters cleanly via playbooks.

Terraform

  • Autoscalable Kubernetes cluster at Exoscale, using Packer and Terraform [ADVANCED LEVEL] [COMMUNITY-TOOL] β€” A prototype repository demonstrating how to deploy an auto-scalable Kubernetes cluster on Exoscale utilizing Packer to build customized CRI-O images and Terraform for resource provisioning. Inactive, representing historical cloud-specific infrastructure designs.

Local Clusters

Single Node

VirtualBox

Networking

Container Network Interface

CNI Plugins

  • github: Weave Net - Weaving Containers into Applications ⭐ 6613 [EN CONTENT] [ADVANCED LEVEL] [ENTERPRISE-STABLE] [LEGACY] β€” Weave Net is a resilient container CNI designed to create peer-to-peer overlay networks without external databases or configurations. The project was officially archived by Weaveworks in 2024, prompting teams to migrate to more modern CNI plugins like Cilium and Calico.

Service Mesh

VMware Tanzu Ecosystem (3)

Observability

Dashboards and UIs

Legacy Tools

  • (2023) vmware-tanzu/octant ⭐ 6249 [EN CONTENT] 🌟 [ENTERPRISE-STABLE] [LEGACY] β€” Octant was a widely used extensible, developer-focused dashboard for exploring Kubernetes structures. It was archived in 2023 and has been succeeded by more modern and active alternatives like Lens and K9s.

Storage

Stateful Workloads

Legacy Tools (1)

  • Stateful Kubernetes-In-a-Box with Kontena Pharos [EN CONTENT] [ADVANCED LEVEL] [LEGACY] β€” A historical look at combining the Kontena Pharos Kubernetes distribution with Pure Storage orchestrators to run heavy database workloads. Useful for documenting the evolution of early volume mount drivers before CSI stabilization.

πŸ’‘ Explore Related: Kubernetes Bigdata | Kubernetes Operators Controllers | Openshift