本次实验主机说明

    controller-manager 涉及的服务器:k8s-5-138,k8s-5-139 controller-manager 设置为只调用当前机器的 apiserver,走127.0.0.1网卡,因此不配制SSL证书

    配置启动脚本

    1. #] vim /etc/systemd/system/kube-controller-manager.service
    3. [Unit]
    4. Description=kube controller manager
    5. Documentation=https://github.com/kubernetes
    6. Conflicts=kube-controller-manager
    8. [Service]
    9. Type=notify
    10. Restart=always
    11. RestartSec=5s
    12. LimitNOFILE=40000
    13. TimeoutStartSec=0
    15. ExecStart=/opt/kubernetes/server/bin/kube-controller-manager \
    16.     --cluster-cidr 192.168.0.0/16 \
    17.     --leader-elect true \
    18.     --log-dir /data/logs/kubernetes/kube-controller-manager \
    19.     --master http://127.0.0.1:8080 \
    20.     --service-account-private-key-file /opt/kubernetes/server/bin/certs/ca-key.pem \
    21.     --service-cluster-ip-range 192.168.0.0/16 \
    22.     --root-ca-file /opt/kubernetes/server/bin/certs/ca.pem \
    23.     --v 2
    25. [Install]
    26. WantedBy=multi-user.target
    28. #] systemctl daemon-reload
    29. #] systemctl cat kube-controller-manager.service
    30. #] systemctl enable kube-controller-manager
    31. #] systemctl start kube-controller-manager
    32. # 查看是否已经正常启动
    33. #] netstat -unltp |grep kube-controller
    35. #查看是否已经正常启动的另一种方法
    36. #] systemctl status kube-controller-manager