热门标签
热门文章
- 1C# winForm utf8 gbk 相互转码小工具
- 2AttributeError: 'SQLAlchemy' object has no attribute 'model'_sqlalchemy' object has no attribute 'module
- 3DPU-PYNQ使用笔记_vai_q_pytorch
- 4Dev Eco studio安装教程_deveco studio安装教程
- 5java.lang.IllegalStateException: Fragment not attached to Activity_java.lang.iiegalstateexception:cannot show fragmen
- 6Linux协议栈--NAPI机制分析_netif_napi_add
- 7Android Studio 模拟器无法访问互联网解决方法_android studio无法联网
- 8linux手机管理多版本gcc和g++_gcc-linaro-9.
- 9JetBrains公司旗下开发工具简介_pycharm,phpstorm,dotultimate,appcode,clion,datagri
- 10Flutter 最有用的 5 个优秀的依赖包
当前位置: article > 正文
kubesphere搭建k8s集群
作者:很楠不爱3 | 2024-03-16 06:11:16
赞
踩
kubesphere
目录
5 设置三台服务器之间免密 执行完后务必退出shell然后重连
6 安装kubesphere必要依赖,每个节点都要装,不然报错:socat not found in system path
8 只用在主节点k8s-node1文件夹中下载k8s安装脚本 没有配置镜像加速可能会很慢多试几次
9 集群配置,创建配置文件,config-sample.yaml
12 耐心等待安装完成,会把所有工作节点添加到k8s-node1(时间大概5-10分钟)
1准备3台虚拟机(centos7.9)
- cd /etc/sysconfig/network-scripts
- vim ifcfg-ens33
- BOOTPROTO=static
- ONBOOT=yes
- IPADDR=192.168.1.211
- GATEWAY=192.168.1.1
- NETMASK=255.255.255.0
- DNS1=114.114.114.114
2 每台虚拟机更新yum的软件包,时间设置等
yum -y update
yum makecache fast
- yum install -y ntpdate
- ntpdate time.windows.com
- ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime
- date
3 关闭防火墙
- systemctl stop firewalld
- systemctl disable firewalld
-
-
- /etc/selinux/config
-
- 将SELINUX的值设置为disabled
4 添加三台服务器的域名设置
vim /etc/hosts
- 192.168.1.211 node1
- 192.168.1.212 node2
- 192.168.1.213 node3
5 设置三台服务器之间免密 执行完后务必退出shell然后重连
- 1、先在所有服务器上执行命令:
- ssh-keygen -t dsa -P '' -f ~/.ssh/id_dsa
-
- 2、而后在所有服务器上执行命令:这样自身就能免密登陆
- cat ~/.ssh/id_dsa.pub >>~/.ssh/authorized_keys
-
- 3、之后将每台服务器上的id_dsa.pub公钥发送到其他机器的/tmp文件夹下,如在master上执行
- scp ~/.ssh/id_dsa.pub node2:/tmp/
- scp ~/.ssh/id_dsa.pub node3:/tmp/
-
- 4、之后在其他的机器上将公钥追加到各自的authorized_keys里,执行以下命令:
- cat /tmp/id_dsa.pub >>~/.ssh/authorized_keys
-
- 5、同样的,在其他的机器上将公钥发送到其他服务器上,然后在其他服务器上将公钥追加到各自的authorized_keys即可
-
- 6、最后是测试免密钥连接。
- ssh node1
6 安装kubesphere必要依赖,每个节点都要装,不然报错:socat not found in system path
yum install -y socat conntrack ebtables ipset
7 安装nfs-server
- #在每个机器。
- yum install -y nfs-utils
-
-
-
- #在master执行以下命令
- echo "/nfs/data/ *(insecure,rw,sync,no_root_squash)" > /etc/exports
-
- #执行以下命令, 启动nfs服务;创建共享目录
- mkdir -p /nfs/data
-
- #在master执行
- systemctl enable rpcbind
- systemctl enable nfs-server
- systemctl start rpcbind
- systemctl start nfs-server
-
- #使配置生效
- exportfs-r
-
- #检查配置是否生效
- exportfs
配置nfs-client(选做)
- #改成自己的master的ip,只在从节点执行
- showmount -e 192.168.1.211
-
- mkdir -p /nfs/data
-
- mount -t nfs 192.168.1.211:/nfs/data /nfs/data
配置默认存储 sc.yaml
- ## 创建了一个存储类
- apiVersion: storage.k8s.io/v1
- kind: StorageClass
- metadata:
- name: nfs-storage
- annotations:
- storageclass.kubernetes.io/is-default-class: "true"
- provisioner: k8s-sigs.io/nfs-subdir-external-provisioner
- parameters:
- archiveOnDelete: "true" ## 删除pv的时候,pv的内容是否要备份
-
- ---
- apiVersion: apps/v1
- kind: Deployment
- metadata:
- name: nfs-client-provisioner
- labels:
- app: nfs-client-provisioner
- # replace with namespace where provisioner is deployed
- namespace: default
- spec:
- replicas: 1
- strategy:
- type: Recreate
- selector:
- matchLabels:
- app: nfs-client-provisioner
- template:
- metadata:
- labels:
- app: nfs-client-provisioner
- spec:
- serviceAccountName: nfs-client-provisioner
- containers:
- - name: nfs-client-provisioner
- image: registry.cn-hangzhou.aliyuncs.com/lfy_k8s_images/nfs-subdir-external-provisioner:v4.0.2
- # resources:
- # limits:
- # cpu: 10m
- # requests:
- # cpu: 10m
- volumeMounts:
- - name: nfs-client-root
- mountPath: /persistentvolumes
- env:
- - name: PROVISIONER_NAME
- value: k8s-sigs.io/nfs-subdir-external-provisioner
- - name: NFS_SERVER
- value: 192.168.1.211 ## 指定自己nfs服务器地址
- - name: NFS_PATH
- value: /nfs/data ## nfs服务器共享的目录
- volumes:
- - name: nfs-client-root
- nfs:
- server: 192.168.1.211
- path: /nfs/data
- ---
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- name: nfs-client-provisioner
- # replace with namespace where provisioner is deployed
- namespace: default
- ---
- kind: ClusterRole
- apiVersion: rbac.authorization.k8s.io/v1
- metadata:
- name: nfs-client-provisioner-runner
- rules:
- - apiGroups: [""]
- resources: ["nodes"]
- verbs: ["get", "list", "watch"]
- - apiGroups: [""]
- resources: ["persistentvolumes"]
- verbs: ["get", "list", "watch", "create", "delete"]
- - apiGroups: [""]
- resources: ["persistentvolumeclaims"]
- verbs: ["get", "list", "watch", "update"]
- - apiGroups: ["storage.k8s.io"]
- resources: ["storageclasses"]
- verbs: ["get", "list", "watch"]
- - apiGroups: [""]
- resources: ["events"]
- verbs: ["create", "update", "patch"]
- ---
- kind: ClusterRoleBinding
- apiVersion: rbac.authorization.k8s.io/v1
- metadata:
- name: run-nfs-client-provisioner
- subjects:
- - kind: ServiceAccount
- name: nfs-client-provisioner
- # replace with namespace where provisioner is deployed
- namespace: default
- roleRef:
- kind: ClusterRole
- name: nfs-client-provisioner-runner
- apiGroup: rbac.authorization.k8s.io
- ---
- kind: Role
- apiVersion: rbac.authorization.k8s.io/v1
- metadata:
- name: leader-locking-nfs-client-provisioner
- # replace with namespace where provisioner is deployed
- namespace: default
- rules:
- - apiGroups: [""]
- resources: ["endpoints"]
- verbs: ["get", "list", "watch", "create", "update", "patch"]
- ---
- kind: RoleBinding
- apiVersion: rbac.authorization.k8s.io/v1
- metadata:
- name: leader-locking-nfs-client-provisioner
- # replace with namespace where provisioner is deployed
- namespace: default
- subjects:
- - kind: ServiceAccount
- name: nfs-client-provisioner
- # replace with namespace where provisioner is deployed
- namespace: default
- roleRef:
- kind: Role
- name: leader-locking-nfs-client-provisioner
- apiGroup: rbac.authorization.k8s.io
- #应用
- kubectl apply -f sc.yaml
-
- #确认配置是否生效
- kubectl get sc
8 只用在主节点k8s-node1文件夹中下载k8s安装脚本 没有配置镜像加速可能会很慢多试几次
- export KKZONE=cn
- curl -sfL https://get-kk.kubesphere.io | VERSION=v1.1.1 sh -
- chmod +x kk
9 集群配置,创建配置文件,config-sample.yaml
./kk create config --with-kubernetes v1.20.4 --with-kubesphere v3.1.1
10 编辑config-sample.yaml
- apiVersion: kubekey.kubesphere.io/v1alpha1
- kind: Cluster
- metadata:
- name: sample
- spec:
- hosts:
- - {name: node1, address: 192.168.1.211, internalAddress: 192.168.1.211, user: root, password: "root"}
- - {name: node2, address: 192.168.1.212, internalAddress: 192.168.1.212, user: root, password: "root"}
- - {name: node3, address: 192.168.1.213, internalAddress: 192.168.1.213, user: root, password: "root"}
- roleGroups:
- etcd:
- - node1
- master:
- - node1
- worker:
- - node2
- - node3
- controlPlaneEndpoint:
- domain: lb.kubesphere.local
- address: ""
- port: 6443
- kubernetes:
- version: v1.20.4
- imageRepo: kubesphere
- clusterName: cluster.local
- network:
- plugin: calico
- kubePodsCIDR: 10.233.64.0/18
- kubeServiceCIDR: 10.233.0.0/18
- registry:
- registryMirrors: "https://o83laiga.mirror.aliyuncs.com"
- insecureRegistries: []
- addons: []
11 启动脚本和配置文件
./kk create cluster -f config-sample.yaml12 耐心等待安装完成,会把所有工作节点添加到k8s-node1(时间大概5-10分钟)
13 查看日志
kubectl logs -n kubesphere-system $(kubectl get pod -n kubesphere-system -l app=ks-installer -o jsonpath='{.items[0].metadata.name}') -f
14 查看节点状态
kubectl get nodes
15 如果忘记配置阿里镜像加速
更改daemon文件
- {
- "registry-mirrors": ["https://o83laiga.mirror.aliyuncs.com"],
- "exec-opts": ["native.cgroupdriver=systemd"],
- "log-driver": "json-file",
- "log-opts": {
- "max-size": "100m"
- }
- }
16 删除集群,重新安装
./kk delete cluster
高级模式删除
./kk delete cluster [-f config-sample.yaml]
17多租户实战
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/很楠不爱3/article/detail/247598
推荐阅读
相关标签
