master 节点开启防火墙，并暴露端口

systemctl start firewalld

firewall-cmd —permanent —add-port=6443/tcp

firewall-cmd —permanent —add-port=2379-2380/tcp

firewall-cmd —permanent —add-port=10250/tcp

firewall-cmd —permanent —add-port=10251/tcp

firewall-cmd —permanent —add-port=10252/tcp

firewall-cmd —permanent —add-port=10255/tcp

firewall-cmd —permanent —add-port=8472/udp

firewall-cmd —permanent —add-port=443/udp

firewall-cmd —permanent —add-port=53/udp

firewall-cmd —permanent —add-port=53/tcp

firewall-cmd —permanent —add-port=9153/tcp

firewall-cmd —permanent —add-port=10254/tcp

firewall-cmd —permanent —add-port=9796/tcp

firewall-cmd —permanent —add-port=2376/udp

firewall-cmd —permanent —add-port=6783/tcp

firewall-cmd —permanent —add-port=6783-6784/udp

firewall-cmd —add-masquerade —permanent

only if you want NodePorts exposed on control plane IP as well

firewall-cmd —permanent —add-port=30000-32767/tcp

firewall-cmd —reload

systemctl restart firewalld

firewall-cmd —list-all

node节点需要打开端口—-基础端口

systemctl start firewalld

firewall-cmd —permanent —add-port=10250/tcp

firewall-cmd —permanent —add-port=10255/tcp

firewall-cmd —permanent —add-port=8472/udp

firewall-cmd —permanent —add-port=443/udp

firewall-cmd —permanent —add-port=30000-32767/tcp

firewall-cmd —permanent —add-port=53/udp

firewall-cmd —permanent —add-port=53/tcp

firewall-cmd —permanent —add-port=9153/tcp

firewall-cmd —permanent —add-port=6783/tcp

firewall-cmd —permanent —add-port=6783-6784/udp

firewall-cmd —add-masquerade —permanent

firewall-cmd —reload

systemctl restart firewalld

firewall-cmd —list-all

ndoe上的业务端口
firewall-cmd —zone=public —add-port=8080/tcp —permanent
firewall-cmd —zone=public —add-port=80/tcp —permanent

kubectl describe svc

参考链接

K8s 所有常用端口： https://blog.csdn.net/qq_48289488/article/details/122489466

Installing kubeadm：https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/

端口和协议: https://kubernetes.io/zh/docs/reference/ports-and-protocols/