Cluster Bare Autoscaler (CBA) automatically adjusts the size of a bare-metal Kubernetes cluster by powering nodes off or on based on real-time resource usage, while safely cordoning and draining nodes before shutdown.
This project is similar to the official Kubernetes Cluster Autoscaler, but with key differences:
- CBA does not terminate or bootstrap instances.
- Instead, it powers down and wakes up bare-metal nodes using mechanisms like Wake-on-LAN, or other pluggable power controllers.
- Nodes are cordoned and drained safely before shutdown.
CBA uses a chainable strategy model for deciding when to scale down a node. Strategies can be enabled individually or used together:
- Resource-aware strategy — checks CPU and memory requests and usage.
- Load average strategy — evaluates
/proc/loadavgvia a per-node metrics DaemonSet.
It is especially suited for self-managed data centers, homelabs, or cloud-like bare-metal environments.
- ✅ Pluggable scale-down and scale-up strategies
- Multi-strategy chaining with short-circuit logic
- Dry-run mode for testing (
--dry-run)
- ✅ Resource-aware scale-down
- Considers CPU and memory requests
- Optionally uses live usage metrics
- ✅ Load average-aware scale-down and scale-up using
/proc/loadavg- Supports aggregation modes:
average,median,p75,p90 - Separate thresholds for scale-up and scale-down decisions
- CLI dry-run overrides:
--dry-run-cluster-load-down--dry-run-cluster-load-up
- Supports aggregation modes:
- ✅ MinNodeCount-based scale-up to maintain minimum node count
- ✅ Cooldown tracking
- Global cooldown period
- Per-node boot/shutdown cooldowns
- ✅ Node eligibility filtering
- Ignores nodes with label
cba.dev/was-powered-off: true - Respects
.Disabledflag inconfig.yaml
- Ignores nodes with label
- ✅ Safe cordon and drain using Kubernetes eviction API
- ✅ Wake-on-LAN support for powering on bare-metal machines
- ✅ Metrics DaemonSet for per-node load average via
/proc/loadavg - ✅ Power-off DaemonSet for secure node shutdown via systemd socket activation
- ✅ Wake-on-LAN agent (wol-agent) for powering nodes via HTTP-triggered magic packets
-
Label your managed nodes
Apply a label to every node you want the autoscaler to manage:kubectl label node <node-name> cba.dev/is-managed=true
-
(Optional) Manually annotate MAC addresses
This is needed if you use Wake-on-LAN (WOL) and cannot rely on auto-discovery:kubectl annotate node <node-name> cba.dev/mac-address-override=aa:bb:cc:dd:ee:ff
If not manually annotated, MACs will be discovered from the node's local poweroff daemon Pod (via
/mac) and stored incba.dev/mac-address. -
Install the autoscaler with Helm
helm install cba cluster-bare-autoscaler/cluster-bare-autoscaler -n <namespace> -f values.yaml
-
Observe behavior in dry-run mode (optional)
Run with--dry-runto observe decision logic without powering nodes.
CBA automatically discovers nodes based on labels and manages them based on annotations.
-
Required Label:
Nodes must be labeled to be considered managed:
cba.dev/is-managed: "true" -
Optional Exclusion Label:
Add this label to skip specific nodes from scaling:
cba.dev/disabled: "true" -
Annotations:
Key Purpose cba.dev/mac-addressAuto-discovered MAC address for WOL cba.dev/mac-address-overrideManually specified MAC (takes precedence) cba.dev/was-powered-offMarked by autoscaler after shutdown
The autoscaler exposes Prometheus metrics on port :9090 at the /metrics endpoint.
Metrics include evaluation counts, shutdown attempts/successes, eviction failures, and per-node powered-off status.
helm install cba cluster-bare-autoscaler/cluster-bare-autoscaler -n <namespace> -f values.yamlAll configuration is passed via a ConfigMap in YAML form.
The root config keys are defined in the values.yaml.
See the example config.yaml for details.
make build_binarymake testmake build_image
make publish_imagego run main.go --config=./config.yaml --dry-runSee TODO.md for the current feature backlog and development roadmap.
MIT