|NO.Z.00035|——————————|^^ 部署 ^^|——|KuberNetes&二进制部署.V13|5台Server|---------------------------------
2022/3/29 14:26:26
本文主要是介绍|NO.Z.00035|——————————|^^ 部署 ^^|——|KuberNetes&二进制部署.V13|5台Server|---------------------------------,对大家解决编程问题具有一定的参考价值,需要的程序猿们随着小编来一起学习吧!
[CloudNative:KuberNetes&二进制部署.V13] [Applications.KuberNetes][|DevOps|k8s|**5节点**|二进制1.20|kubernetes-node组件配置|——|kubelet|kube-proxy|]
一、kube-proxy配置
### --- kube-proxy注意事项 ~~~ # 注意,如果不是高可用集群,192.168.1.20:8443改为master01的地址, ~~~ # 8443改为apiserver的端口,默认是6443
二、创建kube-proxy服务
### --- 创建kube-proxy服务 ~~~ # 创建kube-proxy服务;以下操作在Master01执行 [root@k8s-master01 ~]# cd /root/k8s-ha-install
~~~ # 创建ServiceAccount [root@k8s-master01 k8s-ha-install]# kubectl -n kube-system create serviceaccount kube-proxy ~~~ 输出结果: serviceaccount/kube-proxy created
~~~ # 创建ClusterRoleBinding [root@k8s-master01 k8s-ha-install]# kubectl create clusterrolebinding system:kube-proxy --clusterrole system:node-proxier --serviceaccount kube-system:kube-proxy ~~~ 输出结果: clusterrolebinding.rbac.authorization.k8s.io/system:kube-proxy created
~~~ # 创建cluster [root@k8s-master01 k8s-ha-install]# SECRET=$(kubectl -n kube-system get sa/kube-proxy \ --output=jsonpath='{.secrets[0].name}') [root@k8s-master01 k8s-ha-install]# JWT_TOKEN=$(kubectl -n kube-system get secret/$SECRET \ --output=jsonpath='{.data.token}' | base64 -d) [root@k8s-master01 k8s-ha-install]# PKI_DIR=/etc/kubernetes/pki [root@k8s-master01 k8s-ha-install]# K8S_DIR=/etc/kubernetes [root@k8s-master01 k8s-ha-install]# kubectl config set-cluster kubernetes --certificate-authority=/etc/kubernetes/pki/ca.pem --embed-certs=true --server=https://192.168.1.20:8443 --kubeconfig=${K8S_DIR}/kube-proxy.kubeconfig ~~~ 输出结果: Cluster "kubernetes" set.
~~~ # 创建user [root@k8s-master01 k8s-ha-install]# kubectl config set-credentials kubernetes --token=${JWT_TOKEN} --kubeconfig=/etc/kubernetes/kube-proxy.kubeconfig ~~~ 输出结果: User "kubernetes" set.
~~~ # 创建context [root@k8s-master01 k8s-ha-install]# kubectl config set-context kubernetes --cluster=kubernetes --user=kubernetes --kubeconfig=/etc/kubernetes/kube-proxy.kubeconfig ~~~ 输出结果: Context "kubernetes" created.
~~~ # 创建context [root@k8s-master01 k8s-ha-install]# kubectl config use-context kubernetes --kubeconfig=/etc/kubernetes/kube-proxy.kubeconfig ~~~ 输出结果: Switched to context "kubernetes".
### --- 修改pod的网段 ~~~ # 查看pod的网段 ~~~ 注:修改pod的网段 ~~~ 注:如果更改了集群Pod的网段,需要更改kube-proxy/kube-proxy.conf的clusterCIDR: 172.16.0.0/12参数为pod的网段。 [root@k8s-master01 ~]# vim kube-proxy/kube-proxy.conf clusterCIDR: 172.16.0.0/12
### --- 在master01将kube-proxy的systemd Service文件发送到其他节点;将配置文件发送到其它节点 ~~~ # 将kube-proxy配置文件发送到k8s-master节点 [root@k8s-master01 k8s-ha-install]# for NODE in k8s-master01 k8s-master02 k8s-master03; do scp ${K8S_DIR}/kube-proxy.kubeconfig $NODE:/etc/kubernetes/kube-proxy.kubeconfig scp kube-proxy/kube-proxy.conf $NODE:/etc/kubernetes/kube-proxy.conf scp kube-proxy/kube-proxy.service $NODE:/usr/lib/systemd/system/kube-proxy.service done ~~~ 注:输出结果: kube-proxy.kubeconfig 100% 3120 1.6MB/s 00:00 kube-proxy.conf 100% 813 143.0KB/s 00:00 kube-proxy.service 100% 288 16.4KB/s 00:00 kube-proxy.kubeconfig 100% 3120 473.7KB/s 00:00 kube-proxy.conf 100% 813 210.8KB/s 00:00 kube-proxy.service 100% 288 106.8KB/s 00:00 kube-proxy.kubeconfig 100% 3120 506.0KB/s 00:00 kube-proxy.conf 100% 813 185.6KB/s 00:00 kube-proxy.service
~~~ # 将kube-proxy配置文件发送到k8s-node节点 [root@k8s-master01 k8s-ha-install]# for NODE in k8s-node01 k8s-node02; do scp /etc/kubernetes/kube-proxy.kubeconfig $NODE:/etc/kubernetes/kube-proxy.kubeconfig scp kube-proxy/kube-proxy.conf $NODE:/etc/kubernetes/kube-proxy.conf scp kube-proxy/kube-proxy.service $NODE:/usr/lib/systemd/system/kube-proxy.service done ~~~ 注:输出结果: kube-proxy.kubeconfig 100% 3120 322.1KB/s 00:00 kube-proxy.conf 100% 813 118.2KB/s 00:00 kube-proxy.service 100% 288 54.6KB/s 00:00 kube-proxy.kubeconfig 100% 3120 515.4KB/s 00:00 kube-proxy.conf 100% 813 185.4KB/s 00:00 kube-proxy.service三、启动kube-proxy并设置开机自启动
### --- 所有节点启动kube-proxy并设置开机自启动 ### --- 所有节点启动kube-proxy [root@k8s-master01 k8s-ha-install]# systemctl daemon-reload [root@k8s-master01 k8s-ha-install]# systemctl enable --now kube-proxy Created symlink from /etc/systemd/system/multi-user.target.wants/kube-proxy.service to /usr/lib/systemd/system/kube-proxy.service.
### --- 查看kube-proxy状态 [root@k8s-master01 k8s-ha-install]# systemctl status kube-proxy Active: active (running) since Wed 2021-05-12 21:10:55 CST; 14s ago
===============================END===============================
Walter Savage Landor:strove with none,for none was worth my strife.Nature I loved and, next to Nature, Art:I warm'd both hands before the fire of life.It sinks, and I am ready to depart ——W.S.Landor
来自为知笔记(Wiz)
这篇关于|NO.Z.00035|——————————|^^ 部署 ^^|——|KuberNetes&二进制部署.V13|5台Server|---------------------------------的文章就介绍到这儿,希望我们推荐的文章对大家有所帮助,也希望大家多多支持为之网!
- 2024-11-15在Kubernetes (k8s) 中搭建三台 Nginx 服务器怎么实现?-icode9专业技术文章分享
- 2024-11-05基于Kubernetes的自定义AWS云平台搭建指南
- 2024-11-05基于Kubernetes Gateway API的现代流量管理方案
- 2024-11-05在Kubernetes上部署你的第一个应用:Nginx服务器
- 2024-11-05利用拓扑感知路由控制Kubernetes中的流量
- 2024-11-05Kubernetes中的层次命名空间:更灵活的资源管理方案
- 2024-11-055分钟上手 Kubernetes:精简实用的 Kubectl 命令速查宝典!
- 2024-10-30K8s 容器的定向调度与亲和性
- 2024-10-28云原生周刊:K8s未来三大发展方向 丨2024.10.28
- 2024-10-25亚马逊弹性Kubernetes服务(EKS)实战:轻松搭建Kubernetes平台