1. [Kubernetes部署3种方式]
  3.     Minikube # 本地快速运行一个单点的Kubernetes,尝试Kubernetes或日常开发的用户使用。
  5.   # https://kubernetes.io/docs/setup/minikube/
  7.   kubeadm  # 快速部署一套kubernetes集群
  9.   # https://kubernetes.io/docs/reference/setup-tools/kubeadm/kubeadm/
  10.   # https://kubernetes.io/docs/setup/independent/install-kubeadm/
  12.   :二进制包,手动部署每个组件,组成Kubernetes集群
  14.   # https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.11.md#v1113
  16. 添加主机名与IP对应关系:
  17. # cat /etc/hosts
  18. 192.168.0.11 k8s-master
  19. 192.168.0.12 k8s-node1
  20. 192.168.0.13 k8s-node2

环境

  1. [关闭防火墙]
  3.     systemctl stop firewalld && systemctl disable firewalld
  5. [关闭selinux]
  7.     sed -i 's/enforcing/disabled/' /etc/selinux/config && setenforce 0
  9. [关闭swap]
  11.     swapoff -a # 临时
  13.   vim /etc/fstab # 永久
  15. [同步时间]
  17.     yum install ntpdate -y
  19.   ntpdate  ntp.api.bz

安装Docker

k8s - 安装 - 图1

  1. [安装]
  3.     yum install -y yum-utils device-mapper-persistent-data lvm2
  5.   yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
  7.    yum install docker-ce-17.03.3.ce -y   #目前kubeadm最大支持docker-ce-17.03,所以要指定该版本安装
  9.   systemctl enable docker && systemctl start docker
  11. [依赖]
  13.     # container-selinux依赖问题,先安装ce-17.03匹配版本
  15.   yum localinstall https://download.docker.com/linux/centos/7/x86_64/stable/Packages/docker-ce-selinux-17.03.3.ce-1.el7.noarch.rpm

安装kubeadm,kubelet和kubectl

  1. [解析]
  3.     => kubeadm  # 引导集群的命令
  4.     => kubelet  # 集群中运行任务的代理程序
  5.     => kubectl  # 命令行管理工具
  7. [添加阿里云YUM软件源]
  9. cat << EOF > /etc/yum.repos.d/kubernetes.repo
  10. [kubernetes]
  11. name=Kubernetes
  12. baseurl=https://mirrors.aliyun.com/kubernetes/yum/repos/kubernetes-el7-x86_64
  13. enabled=1
  14. gpgcheck=1
  15. repo_gpgcheck=1
  16. gpgkey=https://mirrors.aliyun.com/kubernetes/yum/doc/yum-key.gpg https://mirrors.aliyun.com/kubernetes/yum/doc/rpm-package-key.gpg
  17. EOF
  19. [安装]
  21.     yum install -y kubelet kubeadm kubectl --disableexcludes=kubernetes
  23.   systemctl enable kubelet && systemctl start kubelet
  1. # cat /var/lib/kubelet/kubeadm-flags.env
  2. KUBELET_KUBEADM_ARGS=--cgroup-driver=cgroupfs --cni-bin-dir=/opt/cni/bin --cni-conf-dir=/etc/cni/net.d --network-plugin=cni
  3. # systemctl daemon-reload
  4. # systemctl restart kubelet
  7. 使用Docker时,kubeadm会自动检查kubeletcgroup驱动程序,并/var/lib/kubelet/kubeadm-flags.env在运行时将其设置在文件中。
  9. 如果使用的其他CRI,则必须在/etc/default/kubeletcgroup-driver值修改为cgroupfs

kubeadm创建单个Master集群

  1. [默认下载镜像地址在国外无法访问,先从准备好所需镜像]
  3. # install_image.sh # 脚本运行
  5. K8S_VERSION=v1.11.2
  6. ETCD_VERSION=3.2.18
  7. DASHBOARD_VERSION=v1.8.3
  8. FLANNEL_VERSION=v0.10.0-amd64
  9. DNS_VERSION=1.1.3
  10. PAUSE_VERSION=3.1
  11. # 基本组件
  12. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/kube-apiserver-amd64:$K8S_VERSION
  13. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/kube-controller-manager-amd64:$K8S_VERSION
  14. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/kube-scheduler-amd64:$K8S_VERSION
  15. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/kube-proxy-amd64:$K8S_VERSION
  16. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/etcd-amd64:$ETCD_VERSION
  17. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/pause:$PAUSE_VERSION
  18. docker pull registry.cn-hangzhou.aliyuncs.com/google_containers/coredns:$DNS_VERSION
  19. # 网络组件
  20. docker pull quay.io/coreos/flannel:$FLANNEL_VERSION
  21. # 修改tag
  22. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/kube-apiserver-amd64:$K8S_VERSION k8s.gcr.io/kube-apiserver-amd64:$K8S_VERSION
  23. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/kube-controller-manager-amd64:$K8S_VERSION k8s.gcr.io/kube-controller-manager-amd64:$K8S_VERSION
  24. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/kube-scheduler-amd64:$K8S_VERSION k8s.gcr.io/kube-scheduler-amd64:$K8S_VERSION
  25. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/kube-proxy-amd64:$K8S_VERSION k8s.gcr.io/kube-proxy-amd64:$K8S_VERSION
  26. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/etcd-amd64:$ETCD_VERSION k8s.gcr.io/etcd-amd64:$ETCD_VERSION
  27. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/pause:$PAUSE_VERSION k8s.gcr.io/pause:$PAUSE_VERSION
  28. docker tag registry.cn-hangzhou.aliyuncs.com/google_containers/coredns:$DNS_VERSION k8s.gcr.io/coredns:$DNS_VERSION
  30. [初始化Master]
  32.     kubeadm init --kubernetes-version=1.11.2 --pod-network-cidr=10.244.0.0/16 --apiserver-advertise-address=192.168.0.11
  34. []
  36.     mkdir -p $HOME/.kube
  37.     sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
  38.     sudo chown $(id -u):$(id -g) $HOME/.kube/config
  40. [安装Pod网络 - 插件]
  42.     kubectl apply -f https://raw.githubusercontent.com/coreos/flannel/v0.10.0/Documentation/kube-flannel.yml
  44. [加入工作节点 - Node节点切换到root账号执行]
  46.     kubeadm join 192.168.0.11:6443 --token 6hk68y.0rdz1wdjyh85ntkr --discovery-token-ca-cert-hash sha256:d1d3f59ae37fbd632707cbeb9b095d0d0b19af535078091993c4bc4d9d2a7782