feat(bootstrap): upgrade AWS EKS to K8s 1.24 + NAT improvements (#811)

* feat(aws): update k8s to 1.24 + nat in each az

Signed-off-by: David van der Spek <[email protected]>

* ensure s3 endpoint is in each az

Signed-off-by: David van der Spek <[email protected]>

* bump version

Signed-off-by: David van der Spek <[email protected]>

---------

Signed-off-by: David van der Spek <[email protected]>

Author: davidspek

bootstrap/terraform/aws-bootstrap/deps.yaml

@@ -1,8 +1,8 @@
 apiVersion: plural.sh/v1alpha1
 kind: Dependencies
 metadata:
-  description: Creates an EKS cluster and prepares it for bootstrapping 
-  version: 0.1.51
+  description: Creates an EKS cluster and prepares it for bootstrapping
+  version: 0.1.52
 spec:
   breaking: true
   dependencies: []

bootstrap/terraform/aws-bootstrap/main.tf

@@ -17,7 +17,7 @@ module "vpc" {
   database_subnets = var.database_subnets
 
   enable_nat_gateway = true
-  single_nat_gateway = true
+  single_nat_gateway = false
 
   public_subnet_tags = {
     "kubernetes.io/cluster/${var.cluster_name}" = "shared"

bootstrap/terraform/aws-bootstrap/s3-vpc-endpoint.tf

@@ -1,12 +1,12 @@
 data "aws_route_table" "worker_private_subnets_route_table" {
-  count     = var.enable_vpc_s3_endpoint && length(local.worker_private_subnet_ids) > 0 ? 1 : 0
-  subnet_id = local.worker_private_subnet_ids[0]
+  count     = var.enable_vpc_s3_endpoint && length(local.worker_private_subnet_ids) > 0 ? length(local.worker_private_subnet_ids) : 0
+  subnet_id = local.worker_private_subnet_ids[count.index]
 }
 
 resource "aws_vpc_endpoint" "s3" {
   count           = var.enable_vpc_s3_endpoint && length(local.worker_private_subnet_ids) > 0 ? 1 : 0
   vpc_id          = local.vpc_id
   service_name    = "com.amazonaws.${var.aws_region}.s3"
   auto_accept     = true
-  route_table_ids = [data.aws_route_table.worker_private_subnets_route_table[0].id]
-}
+  route_table_ids = data.aws_route_table.worker_private_subnets_route_table[*].id
+}

bootstrap/terraform/aws-bootstrap/variables.tf

@@ -28,7 +28,7 @@ variable "cluster_log_retention_in_days" {
 variable "kubernetes_version" {
   type = string
   description = "Kubernetes version to use for the cluster"
-  default = "1.23"
+  default = "1.24"
 }
 
 variable "vpc_cni_addon_version" {
@@ -225,7 +225,7 @@ variable "node_groups_defaults" {
 
     instance_types = ["t3.large", "t3a.large"]
     disk_size = 50
-    ami_release_version = "1.23.16-20230217"
+    ami_release_version = "1.24.15-20230816"
     force_update_version = true
     ami_type = "AL2_x86_64"
     k8s_labels = {}