K8S03-源碼包安裝(1.11.0版)

9.集群中測(cè)試啟用一個(gè)nginx實(shí)例
1.在1臺(tái)master上執(zhí)行以下命令
[root@master1 ~]# kubectl run nginx --replicas=2 --labels="run=nginx-service" --image=172.16.0.2:5000/docker.io/nginx --port=80
deployment.apps/nginx created
nginx 為實(shí)例名
--replicas=2 創(chuàng)建2個(gè)復(fù)本
--labels 標(biāo)簽
--image 鏡像地址,搭建的是本地私有倉(cāng)庫(kù)
--port 啟用80端口
查看應(yīng)用名
[root@master1 ~]# kubectl get deployment
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
nginx 2 2 2 2 9s
查看復(fù)本名
[root@master1 ~]# kubectl get rs
NAME DESIRED CURRENT READY AGE
nginx-6c9b9fc894 2 2 2 13s
查看node節(jié)點(diǎn)
[root@master1 ~]# kubectl get nodes
NAME STATUS ROLES AGE VERSION
172.16.0.8 Ready <none> 1d v1.11.0
172.16.0.9 Ready <none> 1d v1.11.0
查看啟動(dòng)的pod名稱
[root@master1 ~]# kubectl get pods
NAME READY STATUS RESTARTS AGE
nginx-6c9b9fc894-8ccwr 1/1 Running 0 22s
nginx-6c9b9fc894-wx449 1/1 Running 0 22s
刪除nginx應(yīng)用執(zhí)行以下命令即可
[root@master1 ~]# kubectl delete deployment nginx
deployment.extensions "nginx" deleted
或kubectl delete deploy/nginx
[root@master1 ~]# kubectl get svc
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
example-service NodePort 169.169.27.9 <none> 80:55313/TCP 23h
kubernetes ClusterIP 169.169.0.1 <none> 443/TCP 5d
或kubectl delete svc/example-service
縮減少或者擴(kuò)容pod
[root@master1 ~]# kubectl scale deployment nginx --replicas=3
deployment.extensions/nginx scaled
[root@master1 ~]# kubectl get deployment
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
nginx 3 3 3 3 6d
[root@master1 ~]# kubectl get deployment -o wide
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE CONTAINERS IMAGES SELECTOR
nginx 3 3 3 3 6d nginx 172.16.0.2:5000/docker.io/nginx run=wbb
分配一個(gè)虛擬集群ip(169.169.0.0段的ip)
[root@master2 ~]#kubectl expose deployment nginx --type=NodePort --name=nginx-service
查看svc集群ip分配情況及刪除
[root@master2 ~]# kubectl get svc
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes ClusterIP 169.169.0.1 <none> 443/TCP 5d
nginx-service NodePort 169.169.157.14 <none> 800:52773/TCP 2s
[root@master1 ~]#kubectl delete deployment nginx
[root@master1 ~]# kubectl delete svc example-service
service "example-service" deleted
查看創(chuàng)建的pod分配情況nginx-service
[root@master2 ~]# kubectl describe svc nginx-service
Name: nginx-service
Namespace: default
Labels: run=nginx-service
Annotations: <none>
Selector: run=nginx-service
Type: NodePort
IP: 169.169.157.14
Port: <unset> 800/TCP
TargetPort: 800/TCP
NodePort: <unset> 52773/TCP
Endpoints: 10.10.12.2:800,10.10.36.2:800
Session Affinity: None
External Traffic Policy: Cluster
Events: <none>
[root@node1 ~]# curl -L http://10.10.36.2
<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
body {
width: 35em;
margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif;
}
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>
<p>For online documentation and support please refer to
<a >nginx.org</a>.

Commercial support is available at
<a >nginx.com</a>.</p>
<p><em>Thank you for using nginx.</em></p>
</body>
</html>
[root@node2 ~]# curl -L http://10.10.12.2
<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
body {
width: 35em;
margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif;
}
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>
<p>For online documentation and support please refer to
<a >nginx.org</a>.

Commercial support is available at
<a >nginx.com</a>.</p>
<p><em>Thank you for using nginx.</em></p>
</body>
</html>
以后安裝完后,發(fā)現(xiàn)二個(gè)node間不能互相訪問(wèn),即在node1上執(zhí)行curl http://10.10.12.2,發(fā)現(xiàn)獲取不到nginx數(shù)據(jù),執(zhí)行以下二個(gè)即可
modprobe ip_tables;
iptables -P FORWARD ACCEPT;
注意: 此時(shí)可能會(huì)出現(xiàn)不同node節(jié)點(diǎn)上面的pod之間網(wǎng)絡(luò)不通竞惋,解決方法如下

設(shè)置所有節(jié)點(diǎn)iptables

yum install iptables-services -y;
systemctl disable iptables;
systemctl stop iptables;
modprobe ip_tables;
iptables -P FORWARD ACCEPT;
10.coredns安裝
第一種方式:從官網(wǎng)下載
mkdir coredns && cd coredns
wget https://raw.githubusercontent.com/coredns/deployment/master/kubernetes/coredns.yaml.sed
wget https://raw.githubusercontent.com/coredns/deployment/master/kubernetes/deploy.sh
chmod +x deploy.sh
./deploy.sh -i 10.96.0.10 > coredns.yml
kubectl apply -f coredns.yml

查看

kubectl get pods --namespace kube-system
kubectl get svc --namespace kube-system
然后在所有node節(jié)點(diǎn)的
[root@node2 kubernetes]# cat kubelet.conf
KUBELET_ARGS="--cgroup-driver=systemd
--hostname-override=172.16.0.9
--cert-dir=/etc/kubernetes/pki
--bootstrap-kubeconfig=/etc/kubernetes/bootstrap.kubeconfig
--kubeconfig=/etc/kubernetes/kubelet.kubeconfig
--cluster-dns=169.169.0.2
--cluster-domain=cluster.local" 增加以上二行
然后重啟kubelet服務(wù)
測(cè)試是否生效
1.在master服務(wù)器上生成二個(gè)nginx服務(wù)
kubectl run nginx --replicas=2 --labels="run=wbb" --image=172.16.0.2:5000/docker.io/nginx --port=800
deployment.apps/nginx created
2.在node上查看,nginx的容器和coredns的容器已啟動(dòng)
[root@node2 kubernetes]# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
4462774c0860 172.16.0.2:5000/docker.io/nginx@sha256:0b5c73966ec996a05672c4aea0a0d1910c6d7495147805ef88205bff51e119f3 "nginx -g 'daemon ..." 32 minutes ago Up 32 minutes k8s_nginx_nginx-66b6fb98fd-gdz97_default_5c2de123-c2ed-11e8-af1a-5254d2b1bb60_0
bfe9625300e7 k8s.gcr.io/pause:3.1 "/pause" 32 minutes ago Up 32 minutes k8s_POD_nginx-66b6fb98fd-gdz97_default_5c2de123-c2ed-11e8-af1a-5254d2b1bb60_0
3ca7f4570d93 docker.io/coredns/coredns@sha256:3e2be1cec87aca0b74b7668bbe8c02964a95a402e45ceb51b2252629d608d03a "/coredns -conf /e..." 3 hours ago Up 3 hours k8s_coredns_coredns-55f86bf584-95xd7_kube-system_5f915bfb-c2d5-11e8-af1a-5254d2b1bb60_0
b204ac0c0a88 k8s.gcr.io/pause:3.1 "/pause" 3 hours ago Up 3 hours k8s_POD_coredns-55f86bf584-95xd7_kube-system_5f915bfb-c2d5-11e8-af1a-5254d2b1bb60_0
在集群的master,node服務(wù)器上執(zhí)行以下,說(shuō)明nginx啟動(dòng)正常
[root@node2 kubernetes]# curl -L http://10.10.36.2
<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
body {
width: 35em;
margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif;
}
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>
<p>For online documentation and support please refer to
<a >nginx.org</a>.

Commercial support is available at
<a >nginx.com</a>.</p>
<p><em>Thank you for using nginx.</em></p>
</body>
</html>
登錄任意臺(tái)nginx容器里檢查/etc/resolv.conf里配置文件是否已修改為169.169.0.2dns的虛擬ip
[root@master1 coredns]# kubectl get pods
NAME READY STATUS RESTARTS AGE
nginx-66b6fb98fd-g54fk 1/1 Running 0 34m
nginx-66b6fb98fd-gdz97 1/1 Running 0 34m
說(shuō)明容器里面的dns已指向了coredns了
[root@master1 coredns]# kubectl exec -it nginx-66b6fb98fd-gdz97 /bin/bash
root@nginx-66b6fb98fd-gdz97:/# cat /etc/resolv.conf
nameserver 169.169.0.2
search default.svc.cluster.local svc.cluster.local cluster.local hk1.zfcloud.com
options ndots:5
-------------------------------------------------------------------------------------------------------------------------------------------------------以上coredns安裝完畢
第二種方式:
下載kubernetes源碼包時(shí),里面已包括了coredns的安裝腳本放在
按上面方式也是一樣可以安裝
11.dashboard-ui平臺(tái)安裝
1.下載鏡像文件
然后導(dǎo)入私有倉(cāng)庫(kù)k8s.gcr.io/kubernetes-dashboard-amd64
k8s.gcr.io/kube-apiserver-amd64 v1.11.3 3de571b6587b 2 weeks ago 187 MB
172.16.0.2:5000/k8s.gcr.io/kubernetes-dashboard-amd64 v1.10.0 0dab2435c100 5 weeks ago 122 MB
2.從kubernetes源碼包里直接安裝
ls /root/kubernetes/cluster/addons/dashboard
dashboard-controller.yaml dashboard-rbac.yaml dashboard-secret.yaml dashboard-service.yaml
vim dashboard-controller.yaml
[root@master1 dashboard]# cat dashboard-controller.yaml
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
name: kubernetes-dashboard
namespace: kube-system
labels:
k8s-app: kubernetes-dashboard
kubernetes.io/cluster-service: "true"
addonmanager.kubernetes.io/mode: Reconcile
spec:
selector:
matchLabels:
k8s-app: kubernetes-dashboard
template:
metadata:
labels:
k8s-app: kubernetes-dashboard
annotations:
scheduler.alpha.kubernetes.io/critical-pod: ''
spec:
serviceAccountName: dashboard
containers:
- name: kubernetes-dashboard
image: 172.16.0.2:5000/k8s.gcr.io/kubernetes-dashboard-amd64 修改鏡像文件為本地搭建的私有倉(cāng)庫(kù),然后下載鏡像
resources:
limits:
cpu: 100m
memory: 50Mi
requests:
cpu: 100m
memory: 50Mi
ports:
- containerPort: 9090
livenessProbe:
httpGet:
path: /
port: 9090
initialDelaySeconds: 30
timeoutSeconds: 30
tolerations:
- key: "CriticalAddonsOnly"
operator: "Exists"
[root@master1 dashboard]# cat dashboard-service.yaml
apiVersion: v1
kind: Service
metadata:
name: kubernetes-dashboard
namespace: kube-system
labels:
k8s-app: kubernetes-dashboard
kubernetes.io/cluster-service: "true"
addonmanager.kubernetes.io/mode: Reconcile
spec:
type: NodePort 增加此行
selector:
k8s-app: kubernetes-dashboard
ports:

  • port: 80
    targetPort: 9090
    2.創(chuàng)建文件
    [root@master1 dashboard]# kubectl create -f kubernetes-dashboard.yaml dashboard-rbac.yaml dashboard-secret.yaml dashboard-service.yaml 最好一個(gè)個(gè)文件執(zhí)行
    secret/kubernetes-dashboard-certs created
    serviceaccount/kubernetes-dashboard created
    role.rbac.authorization.k8s.io/kubernetes-dashboard-minimal created
    rolebinding.rbac.authorization.k8s.io/kubernetes-dashboard-minimal created
    deployment.apps/kubernetes-dashboard created
    service/kubernetes-dashboard created
    3.刪除yaml文件產(chǎn)生的容器,用以下方式
    kubectl delete -f rc-nginx.yaml
    [root@master1 dashboard]# kubectl get pods -n kube-system -o wide
    NAME READY STATUS RESTARTS AGE IP NODE
    coredns-55f86bf584-6lg79 1/1 Running 0 2d 10.10.36.3 172.16.0.8
    coredns-55f86bf584-95xd7 1/1 Running 0 2d 10.10.12.3 172.16.0.9
    kubernetes-dashboard-58c47d9476-gv6x4 1/1 Running 0 1d 10.10.36.4 172.16.0.8 出現(xiàn)此行說(shuō)明dashboard已安裝完成,并啟動(dòng)成功,安裝在172.16.0.8的node節(jié)點(diǎn)服務(wù)器上,容器的ip為10.10.36.4
    [root@master1 dashboard]# kubectl get svc -n kube-system -o wide
    NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE SELECTOR
    kube-dns ClusterIP 169.169.0.2 <none> 53/UDP,53/TCP 2d k8s-app=kube-dns
    kubernetes-dashboard NodePort 169.169.110.197 <none> 80:17189/TCP 1d k8s-app=kubernetes-dashboard 由于啟用了Nodeport,所 容器有對(duì)外映射一個(gè)17189的端口,到此dashboard平臺(tái)已搭建完畢,但還是不能訪問(wèn)
    如何在外網(wǎng)訪問(wèn),并打開頁(yè)面
    之前在etcd有安裝haproxy+keepalived
    vim /etc/haproxy/haproxy.conf文件中最下面一行增如下內(nèi)容
    listen dashborad
    bind *:8086 外網(wǎng)訪問(wèn)端口為:8086
    mode tcp
    maxconn 65535
    balance roundrobin
    server node1 10.10.36.4:9090 check inter 10000 fall 2 rise 2 weight 1 etcd服務(wù)器可以直接訪問(wèn)dashboard 容器的ip地址,10.10.36.4的9090端口
    或者用下面也可以
    server node1 172.16.0.8:17189 check inter 10000 fall 2 rise 2 weight 1 node網(wǎng)卡節(jié)點(diǎn)ip:映射的外網(wǎng)端口.通過(guò)harpoxy反射代理來(lái)訪問(wèn)
    然后重啟haproxy
    瀏覽器輸入以下鏈接訪問(wèn)頁(yè)面
    http://172.16.0.100:8086的負(fù)載均衡ip地址
    -----------------------------------------------------------------------------------------------------------------------------------------------到此dashboard安裝完畢
?著作權(quán)歸作者所有,轉(zhuǎn)載或內(nèi)容合作請(qǐng)聯(lián)系作者
  • 人面猴
    序言:七十年代末,一起剝皮案震驚了整個(gè)濱河市,隨后出現(xiàn)的幾起案子洪鸭,更是在濱河造成了極大的恐慌,老刑警劉巖出刷,帶你破解...
    沈念sama閱讀 216,651評(píng)論 6 501
  • 死咒
    序言:濱河連續(xù)發(fā)生了三起死亡事件替蔬,死亡現(xiàn)場(chǎng)離奇詭異蹄溉,居然都是意外死亡,警方通過(guò)查閱死者的電腦和手機(jī)帮孔,發(fā)現(xiàn)死者居然都...
    沈念sama閱讀 92,468評(píng)論 3 392
  • 救了他兩次的神仙讓他今天三更去死
    文/潘曉璐 我一進(jìn)店門雷滋,熙熙樓的掌柜王于貴愁眉苦臉地迎上來(lái),“玉大人文兢,你說(shuō)我怎么就攤上這事晤斩。” “怎么了姆坚?”我有些...
    開封第一講書人閱讀 162,931評(píng)論 0 353
  • 道士緝兇錄:失蹤的賣姜人
    文/不壞的土叔 我叫張陵澳泵,是天一觀的道長(zhǎng)。 經(jīng)常有香客問(wèn)我兼呵,道長(zhǎng)兔辅,這世上最難降的妖魔是什么? 我笑而不...
    開封第一講書人閱讀 58,218評(píng)論 1 292
  • ?港島之戀(遺憾婚禮)
    正文 為了忘掉前任击喂,我火速辦了婚禮维苔,結(jié)果婚禮上,老公的妹妹穿的比我還像新娘懂昂。我一直安慰自己介时,他們只是感情好,可當(dāng)我...
    茶點(diǎn)故事閱讀 67,234評(píng)論 6 388
  • 惡毒庶女頂嫁案:這布局不是一般人想出來(lái)的
    文/花漫 我一把揭開白布凌彬。 她就那樣靜靜地躺著沸柔,像睡著了一般。 火紅的嫁衣襯著肌膚如雪铲敛。 梳的紋絲不亂的頭發(fā)上褐澎,一...
    開封第一講書人閱讀 51,198評(píng)論 1 299
  • 城市分裂傳說(shuō)
    那天,我揣著相機(jī)與錄音伐蒋,去河邊找鬼工三。 笑死,一個(gè)胖子當(dāng)著我的面吹牛先鱼,可吹牛的內(nèi)容都是我干的徒蟆。 我是一名探鬼主播,決...
    沈念sama閱讀 40,084評(píng)論 3 418
  • 雙鴛鴦連環(huán)套:你想象不到人心有多黑
    文/蒼蘭香墨 我猛地睜開眼型型,長(zhǎng)吁一口氣:“原來(lái)是場(chǎng)噩夢(mèng)啊……” “哼段审!你這毒婦竟也來(lái)了?” 一聲冷哼從身側(cè)響起闹蒜,我...
    開封第一講書人閱讀 38,926評(píng)論 0 274
  • 萬(wàn)榮殺人案實(shí)錄
    序言:老撾萬(wàn)榮一對(duì)情侶失蹤寺枉,失蹤者是張志新(化名)和其女友劉穎,沒(méi)想到半個(gè)月后绷落,有當(dāng)?shù)厝嗽跇淞掷锇l(fā)現(xiàn)了一具尸體姥闪,經(jīng)...
    沈念sama閱讀 45,341評(píng)論 1 311
  • ?護(hù)林員之死
    正文 獨(dú)居荒郊野嶺守林人離奇死亡,尸身上長(zhǎng)有42處帶血的膿包…… 初始之章·張勛 以下內(nèi)容為張勛視角 年9月15日...
    茶點(diǎn)故事閱讀 37,563評(píng)論 2 333
  • ?白月光啟示錄
    正文 我和宋清朗相戀三年砌烁,在試婚紗的時(shí)候發(fā)現(xiàn)自己被綠了筐喳。 大學(xué)時(shí)的朋友給我發(fā)了我未婚夫和他白月光在一起吃飯的照片催式。...
    茶點(diǎn)故事閱讀 39,731評(píng)論 1 348
  • 活死人
    序言:一個(gè)原本活蹦亂跳的男人離奇死亡,死狀恐怖避归,靈堂內(nèi)的尸體忽然破棺而出荣月,到底是詐尸還是另有隱情,我是刑警寧澤梳毙,帶...
    沈念sama閱讀 35,430評(píng)論 5 343
  • ?日本核電站爆炸內(nèi)幕
    正文 年R本政府宣布哺窄,位于F島的核電站,受9級(jí)特大地震影響账锹,放射性物質(zhì)發(fā)生泄漏萌业。R本人自食惡果不足惜,卻給世界環(huán)境...
    茶點(diǎn)故事閱讀 41,036評(píng)論 3 326
  • 男人毒藥:我在死后第九天來(lái)索命
    文/蒙蒙 一奸柬、第九天 我趴在偏房一處隱蔽的房頂上張望生年。 院中可真熱鬧,春花似錦廓奕、人聲如沸晶框。這莊子的主人今日做“春日...
    開封第一講書人閱讀 31,676評(píng)論 0 22
  • 一樁弒父案懂从,背后竟有這般陰謀
    文/蒼蘭香墨 我抬頭看了看天上的太陽(yáng)授段。三九已至,卻和暖如春番甩,著一層夾襖步出監(jiān)牢的瞬間侵贵,已是汗流浹背。 一陣腳步聲響...
    開封第一講書人閱讀 32,829評(píng)論 1 269
  • 情欲美人皮
    我被黑心中介騙來(lái)泰國(guó)打工缘薛, 沒(méi)想到剛下飛機(jī)就差點(diǎn)兒被人妖公主榨干…… 1. 我叫王不留窍育,地道東北人。 一個(gè)月前我還...
    沈念sama閱讀 47,743評(píng)論 2 368
  • 代替公主和親
    正文 我出身青樓宴胧,卻偏偏與公主長(zhǎng)得像漱抓,于是被迫代替她去往敵國(guó)和親。 傳聞我的和親對(duì)象是個(gè)殘疾皇子恕齐,可洞房花燭夜當(dāng)晚...
    茶點(diǎn)故事閱讀 44,629評(píng)論 2 354

推薦閱讀更多精彩內(nèi)容