参考：
https://www.bilibili.com/video/BV1L341147ki?spm_id_from=333.999.0.0
https://www.bilibili.com/video/BV1b34y1R7mg?spm_id_from=333.999.0.0
https://www.bilibili.com/video/BV1Fi4y1Z7Kw?spm_id_from=333.999.0.0
https://argo-cd.readthedocs.io/en/stable/getting_started/
https://openelb.github.io/docs/getting-started/installation/install-openelb-on-kubernetes/
https://openelb.github.io/docs/getting-started/usage/use-openelb-in-layer-2-mode/
https://openebs.io/docs/user-guides/quickstart
https://openebs.io/docs/user-guides/localpv-hostpath

1 前提

本篇文档里使用了自己本地原有的Harbor仓库，且仓库用已有k8s-v1.20.6 等相关镜像

2 机器配置

3 初始化

# 0 基础环境初始化
# 初始化脚本执行，过程略
# 1 hostname
hostnamectl set-hostname local-k8s-01

4 上传工具

# 在github 上找尽可能新的版本
# 2 kk
mkdir -p kubekey
## 上传kk
cd kubekey/
tar xf kubekey-v1.1.1-linux-amd64.tar.gz
rm kubekey-v1.1.1-linux-amd64.tar.gz  README* -f
./kk version
# 3 k9s
# 
cd
## 上传k9s
tar xf k9s_Linux_x86_64.tar.gz
\cp -rvf k9s /usr/bin/
rm LICENSE  README.md  k9s_Linux_x86_64.tar.gz -f

5 集群配置

# 4 k8s.yml
# 使用kk 生成即将要部署的k8s 集群配置
export KKZONE=cn
cd kubekey/
./kk create config --name k8s
vim config-k8s.yaml
## edit
# 修改k8s 节点ip、用户密码
# 修改k8s 版本
# 添加本地harbor仓库信息

apiVersion: kubekey.kubesphere.io/v1alpha1
kind: Cluster
metadata:
  name: k8s
spec:
  hosts:
  - {name: local-k8s-01, address: 10.1.6.210, internalAddress: 10.1.6.210, user: root, password: a}
  roleGroups:
    etcd:
    - local-k8s-01
    master:
    - local-k8s-01
    worker:
    - local-k8s-01
  controlPlaneEndpoint:
    domain: lb.kubesphere.local
    address: ""
    port: 6443
  kubernetes:
    version: v1.20.6
    imageRepo: kubesphere
    clusterName: cluster.local
  network:
    plugin: calico
    kubePodsCIDR: 10.233.64.0/18
    kubeServiceCIDR: 10.233.0.0/18
  registry:
    registryMirrors: ["https://pfei7wep.mirror.aliyuncs.com"]
    insecureRegistries: ["harbor.dockerregistry.com"]
    privateRegistry: "harbor.dockerregistry.com"
  addons: []

6 部署集群

# 5 cluster
cd kubekey
./kk create cluster -f ./config-k8s.yaml
# 确认输入yes
# 这里需要联网下载那个helm包，可能会卡住或失败，这里解决方法是直接将那个包上传到他所需的路径下
# 然后重新执行上面安装命令，多试几次就会好了
kubectl get nodes

7 命令补全

# 6 自动补全
yum install -y bash-completion
source /usr/share/bash-completion/bash_completion
source <(kubectl completion bash)
echo "source <(kubectl completion bash)" >> ~/.bashrc

8 openelb eip

# 7 openelb
# 通过openelb 来做LoadBalancer 替代NodePort 这种服务暴露模式
mkdir -p openelb && cd openelb
wget https://raw.githubusercontent.com/openelb/openelb/master/deploy/openelb.yaml
# images
# 拉镜像，换成本地的名字
docker pull kubesphere/openelb:v0.4.4
docker tag  kubesphere/openelb:v0.4.4 harbor.dockerregistry.com/kubesphere/openelb:v0.4.4
docker push harbor.dockerregistry.com/kubesphere/openelb:v0.4.4
vim openelb.yaml
# 将这里镜像名称改为本地仓库的
# replace repo 
image: harbor.dockerregistry.com/app/kube-webhook-certgen:v1.1.1 # 两处
image: harbor.dockerregistry.com/kubesphere/openelb:v0.4.4
kubectl apply -f openelb.yaml
kubectl get po -n openelb-system
# kube-proxy
$ kubectl describe configmap -n kube-system kube-proxy | grep ARP
$ kubectl get configmap kube-proxy -n kube-system -o yaml | \
 sed -e "s/strictARP: false/strictARP: true/" | \
 kubectl apply -f - -n kube-system
$ kubectl describe configmap -n kube-system kube-proxy | grep ARP
$ kubectl rollout restart daemonset kube-proxy -n kube-system
# eip
vim eip.yml
## edit ip
# 在同网段中选用，未被占用且未绑定任何物理网卡的IP地址池做LB地址，2个左右即可

apiVersion: network.kubesphere.io/v1alpha2
kind: Eip
metadata:
  name: eip-pool
spec:
  address: 10.1.6.233-10.1.6.234
  interface: ens32
  protocol: layer2

kubectl apply -f eip.yml
kubectl get eip

9 ingress-nginx

# 8 ingress-nginx
mkdir -p ingress-nginx && cd ingress-nginx
wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
vim deploy.yaml
## edit image
# 同样，给镜像名称换成本地仓库的
image: harbor.dockerregistry.com/app/ingress-nginx-controller:v1.1.1
image: harbor.dockerregistry.com/app/kube-webhook-certgen:v1.1.1
## add annotations
# 添加ingress-nginx-controller 服务的注释行，具体规范参考openelb官方的用法示范
# https://openelb.github.io/docs/getting-started/usage/use-openelb-in-layer-2-mode/
# Source: ingress-nginx/templates/controller-service.yaml
apiVersion: v1
kind: Service
metadata:
  annotations:
    lb.kubesphere.io/v1alpha1: openelb
    protocol.openelb.kubesphere.io/v1alpha1: layer2
    eip.openelb.kubesphere.io/v1alpha2: eip-pool  ## 将这里的lb资源池名称换成自己本地的
    # 我这里前面是创建的名称叫做'eip-pool'
kubectl apply -f deploy.yaml
kubectl get po -n ingress-nginx
kubectl get svc -n ingress-nginx
kubectl get IngressClass -n ingress-nginx
kubectl edit eips.network.kubesphere.io # 只查看不修改

10 openebs

# openebs 
# 先添加官方的chart仓库
helm repo add openebs https://openebs.github.io/charts
helm repo update
mkdir -p openebs && cd openebs
# 再下载官方的版本包到本地
helm pull openebs/openebs
tar xf openebs-*.tgz 
cd openebs 
# 下载所需的镜像，并存到本地仓库，然后将原来部署脚本中的镜像名换成本地的
docker pull openebs/m-apiserver:2.12.2
docker pull openebs/openebs-k8s-provisioner:2.12.2
docker pull openebs/provisioner-localpv:3.2.0
docker pull openebs/snapshot-controller:2.12.2
docker pull openebs/snapshot-provisioner:2.12.2
docker pull openebs/node-disk-manager:1.9.0
docker pull openebs/node-disk-operator:1.9.0
docker pull openebs/admission-server:2.12.2
docker pull openebs/linux-utils:3.2.0
docker pull openebs/m-exporter:2.12.2
docker pull openebs/jiva:2.12.2
docker pull openebs/cstor-pool:2.12.2
docker pull openebs/cstor-pool-mgmt:2.12.2
docker pull openebs/cstor-istgt:2.12.2
docker pull openebs/cstor-volume-mgmt:2.12.2
docker tag openebs/m-apiserver:2.12.2              harbor.dockerregistry.com/openebs/m-apiserver:2.12.2
docker tag openebs/openebs-k8s-provisioner:2.12    harbor.dockerregistry.com/openebs/openebs-k8s-provisioner:2.12.2
docker tag openebs/provisioner-localpv:3.2.0       harbor.dockerregistry.com/openebs/provisioner-localpv:3.2.0
docker tag openebs/snapshot-controller:2.12.2      harbor.dockerregistry.com/openebs/snapshot-controller:2.12.2
docker tag openebs/snapshot-provisioner:2.12.2     harbor.dockerregistry.com/openebs/snapshot-provisioner:2.12.2
docker tag openebs/node-disk-manager:1.9.0         harbor.dockerregistry.com/openebs/node-disk-manager:1.9.0
docker tag openebs/node-disk-operator:1.9.0        harbor.dockerregistry.com/openebs/node-disk-operator:1.9.0
docker tag openebs/admission-server:2.12.2         harbor.dockerregistry.com/openebs/admission-server:2.12.2
docker tag openebs/linux-utils:3.2.0               harbor.dockerregistry.com/openebs/linux-utils:3.2.0
docker tag openebs/m-exporter:2.12.2               harbor.dockerregistry.com/openebs/m-exporter:2.12.2
docker tag openebs/jiva:2.12.2                     harbor.dockerregistry.com/openebs/jiva:2.12.2
docker tag openebs/cstor-pool:2.12.2               harbor.dockerregistry.com/openebs/cstor-pool:2.12.2
docker tag openebs/cstor-pool-mgmt:2.12.2          harbor.dockerregistry.com/openebs/cstor-pool-mgmt:2.12.2
docker tag openebs/cstor-istgt:2.12.2              harbor.dockerregistry.com/openebs/cstor-istgt:2.12.2
docker tag openebs/cstor-volume-mgmt:2.12.2        harbor.dockerregistry.com/openebs/cstor-volume-mgmt:2.12.2
docker login  harbor.dockerregistry.com -u admin -p Harbor12345
docker push harbor.dockerregistry.com/openebs/m-apiserver:2.12.2
docker push harbor.dockerregistry.com/openebs/openebs-k8s-provisioner:2.12.2
docker push harbor.dockerregistry.com/openebs/provisioner-localpv:3.2.0
docker push harbor.dockerregistry.com/openebs/snapshot-controller:2.12.2
docker push harbor.dockerregistry.com/openebs/snapshot-provisioner:2.12.2
docker push harbor.dockerregistry.com/openebs/node-disk-manager:1.9.0
docker push harbor.dockerregistry.com/openebs/node-disk-operator:1.9.0
docker push harbor.dockerregistry.com/openebs/admission-server:2.12.2
docker push harbor.dockerregistry.com/openebs/linux-utils:3.2.0
docker push harbor.dockerregistry.com/openebs/m-exporter:2.12.2
docker push harbor.dockerregistry.com/openebs/jiva:2.12.2
docker push harbor.dockerregistry.com/openebs/cstor-pool:2.12.2
docker push harbor.dockerregistry.com/openebs/cstor-pool-mgmt:2.12.2
docker push harbor.dockerregistry.com/openebs/cstor-istgt:2.12.2
docker push harbor.dockerregistry.com/openebs/cstor-volume-mgmt:2.12.2
\cp values.yaml{,.bak}
vim values.yaml
## edit images
## 要换的太多了，直接将文件下载下来批量替换
# openebs/ --> harbor.dockerregistry.com/openebs/
cd /root/openebs
helm install openebs openebs --namespace openebs  --create-namespace
helm list -n openebs
# test openebs
# 使用官方的脚本来做个简单测试
wget https://openebs.github.io/charts/examples/local-hostpath/local-hostpath-pvc.yaml
wget https://openebs.github.io/charts/examples/local-hostpath/local-hostpath-pod.yaml
kubectl apply -f https://openebs.github.io/charts/examples/local-hostpath/local-hostpath-pvc.yaml
kubectl apply -f https://openebs.github.io/charts/examples/local-hostpath/local-hostpath-pod.yaml
vim local-hostpath-pod.yaml
## edit image
# 同样，将镜像名称换成本地的
    image: harbor.dockerregistry.com/app/busybox:1.35.0
kubectl apply -f local-hostpath-pvc.yaml
kubectl apply -f local-hostpath-pod.yaml
kubectl get pod hello-local-hostpath-pod
kubectl get pvc local-hostpath-pvc