ansible/playbooks/kube-vip.yaml

---
# Deploys kube-vip on all k3s server nodes and adds the VIP to their TLS SANs.
#
# Migration steps (run once):
#   1. ansible-playbook playbooks/kube-vip.yaml
#   2. Update DNS: k3s.seyshiro.de → 192.168.20.2
#   3. Verify: kubectl get nodes (should work via VIP)
#   4. Decommission k3s-loadbalancer VM when satisfied
#
# The playbook is idempotent — re-running it after migration is safe.
- name: Deploy kube-vip on k3s server nodes
  hosts: k3s_server
  gather_facts: true
  serial: 1
  roles:
    - role: kube_vip
      tags:
        - kube_vip