CentOS7系列--5.3CentOS7中配置和管理Kubernetes
CentOS7配置和管理Kubernetes
Kubernetes(k8s)是自动化容器操作的开源平台,这些操作包括部署,调度和节点集群间扩展。如果你曾经用过Docker容器技术部署容器,那么可以将Docker看成Kubernetes内部使用的低级别组件。Kubernetes不仅仅支持Docker,还支持Rocket,这是另一种容器技术。
使用Kubernetes可以:
Ø 自动化容器的部署和复制
Ø 随时扩展或收缩容器规模
Ø 将容器组织成组,并且提供容器间的负载均衡
Ø 很容易地升级应用程序容器的新版本
Ø 提供容器弹性,如果容器失效就替换它,等等
实际上,使用Kubernetes只需一个部署文件,使用一条命令就可以部署多层容器(前端,后台等)的完整集群:
$ kubectl create -f single-config-file.yaml
https://kubernetes.io/docs/getting-started-guides/centos/centos_manual_config/
https://www.cnblogs.com/zhenyuyaodidiao/p/6500830.html
1. 配置Admin Node与Container Node
1.1. 系统信息
centos-master = 192.168.1.101 = server1.smartmap.com
centos-minion-1 = 192.168.1.102 = server2.smartmap.com
centos-minion-2 = 192.168.1.103 = server3.smartmap.com
centos-minion-3 = 192.168.1.104 = server4.smartmap.com
1.2. 创建YUM更新源
[root@server1 ~]# vi /etc/yum.repos.d/virt7-docker-common-release.repo
[virt7-docker-common-release]
name=virt7-docker-common-release
baseurl=http://cbs.centos.org/repos/virt7-docker-common-release/x86_64/os/
gpgcheck=0
1.3. 安装 Kubernetes, etcd and flannel
[root@server1 ~]# yum -y install --enablerepo=virt7-docker-common-release kubernetes etcd flannel
Loaded plugins: fastestmirror
base | 3.6 kB 00:00:00
extras | 3.4 kB 00:00:00
updates | 3.4 kB 00:00:00
virt7-docker-common-release | 3.4 kB 00:00:00
(1/5): base/7/x86_64/group_gz | 156 kB 00:00:00
1.4. 加入IP与服务器名映射到hosts文件中
[root@server1 ~]# echo "192.168.1.101 server1.smartmap.com
> 192.168.1.102 server2.smartmap.com
> 192.168.1.103 server3.smartmap.com
> 192.168.1.104 server4.smartmap.com" >> /etc/hosts
[root@server1 ~]# cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.1.101 server1.smartmap.com
192.168.1.102 server2.smartmap.com
192.168.1.103 server3.smartmap.com
192.168.1.104 server4.smartmap.com
[root@server1 ~]#
1.5. 修改/etc/kubernetes/config文件
[root@server1 ~]# vi /etc/kubernetes/config
###
# kubernetes system config
#
# The following values are used to configure various aspects of all
# kubernetes services, including
#
# kube-apiserver.service
# kube-controller-manager.service
# kube-scheduler.service
# kubelet.service
# kube-proxy.service
# logging to stderr means we get it in the systemd journal
KUBE_LOGTOSTDERR="--logtostderr=true"
# journal message level, 0 is debug
KUBE_LOG_LEVEL="--v=0"
# Should this cluster be allowed to run privileged docker containers
KUBE_ALLOW_PRIV="--allow-privileged=false"
# How the controller-manager, scheduler, and proxy find the apiserver
KUBE_MASTER="--master=http://192.168.1.101:8080"
1.6. 修改/etc/kubernetes/config文件
[root@server1 ~]# vi /etc/sysconfig/docker
# /etc/sysconfig/docker
# Modify these options if you want to change the way the docker daemon runs
OPTIONS='--selinux-enabled --log-driver=journald --signature-verification=false'
if [ -z "${DOCKER_CERT_PATH}" ]; then
DOCKER_CERT_PATH=/etc/docker
fi
# Do not add registries in this file anymore. Use /etc/containers/registries.conf
# from the atomic-registries package.
#
# docker-latest daemon can be used by starting the docker-latest unitfile.
# To use docker-latest client, uncomment below lines
#DOCKERBINARY=/usr/bin/docker-latest
#DOCKERDBINARY=/usr/bin/dockerd-latest
#DOCKER_CONTAINERD_BINARY=/usr/bin/docker-containerd-latest
#DOCKER_CONTAINERD_SHIM_BINARY=/usr/bin/docker-containerd-shim-latest
OPTIONS='--insecure-registry registry:5000'
2. 配置Admin Node
2.1. 修改/etc/etcd/etcd.conf文件
[root@server1 ~]# vi /etc/etcd/etcd.conf
# [member]
ETCD_NAME=default
ETCD_DATA_DIR="/var/lib/etcd/default.etcd"
#ETCD_WAL_DIR=""
#ETCD_SNAPSHOT_COUNT="10000"
#ETCD_HEARTBEAT_INTERVAL="100"
#ETCD_ELECTION_TIMEOUT="1000"
#ETCD_LISTEN_PEER_URLS="http://localhost:2380"
ETCD_LISTEN_CLIENT_URLS="http://0.0.0.0:2379"
#ETCD_MAX_SNAPSHOTS="5"
#ETCD_MAX_WALS="5"
#ETCD_CORS=""
#
#[cluster]
#ETCD_INITIAL_ADVERTISE_PEER_URLS="http://localhost:2380"
# if you use different ETCD_NAME (e.g. test), set ETCD_INITIAL_CLUSTER value for this name, i.e. "test=http://..."
#ETCD_INITIAL_CLUSTER="default=http://localhost:2380"
#ETCD_INITIAL_CLUSTER_STATE="new"
#ETCD_INITIAL_CLUSTER_TOKEN="etcd-cluster"
ETCD_ADVERTISE_CLIENT_URLS="http://0.0.0.0:2379"
#ETCD_DISCOVERY=""
#ETCD_DISCOVERY_SRV=""
#ETCD_DISCOVERY_FALLBACK="proxy"
#ETCD_DISCOVERY_PROXY=""
#ETCD_STRICT_RECONFIG_CHECK="false"
#ETCD_AUTO_COMPACTION_RETENTION="0"
#ETCD_ENABLE_V2="true"
#
#[proxy]
#ETCD_PROXY="off"
#ETCD_PROXY_FAILURE_WAIT="5000"
#ETCD_PROXY_REFRESH_INTERVAL="30000"
#ETCD_PROXY_DIAL_TIMEOUT="1000"
#ETCD_PROXY_WRITE_TIMEOUT="5000"
#ETCD_PROXY_READ_TIMEOUT="0"
#
#[security]
#ETCD_CERT_FILE=""
#ETCD_KEY_FILE=""
#ETCD_CLIENT_CERT_AUTH="false"
#ETCD_TRUSTED_CA_FILE=""
#ETCD_AUTO_TLS="false"
#ETCD_PEER_CERT_FILE=""
#ETCD_PEER_KEY_FILE=""
#ETCD_PEER_CLIENT_CERT_AUTH="false"
#ETCD_PEER_TRUSTED_CA_FILE=""
#ETCD_PEER_AUTO_TLS="false"
#
#[logging]
#ETCD_DEBUG="false"
# examples for -log-package-levels etcdserver=WARNING,security=DEBUG
#ETCD_LOG_PACKAGE_LEVELS=""
#
#[profiling]
#ETCD_ENABLE_PPROF="false"
#ETCD_METRICS="basic"
#
#[auth]
#ETCD_AUTH_TOKEN="simple"
2.2. 修改 /etc/kubernetes/apiserver文件
[root@server1 ~]# vi /etc/kubernetes/apiserver
###
# kubernetes system config
#
# The following values are used to configure the kube-apiserver
#
# The address on the local server to listen to.
KUBE_API_ADDRESS="--insecure-bind-address=0.0.0.0"
# The port on the local server to listen on.
# KUBE_API_PORT="--port=8080"
# Port minions listen on
# KUBELET_PORT="--kubelet-port=10250"
# Comma separated list of nodes in the etcd cluster
KUBE_ETCD_SERVERS="--etcd-servers=http://192.168.1.101:2379"
# Address range to use for services
KUBE_SERVICE_ADDRESSES="--service-cluster-ip-range=10.254.0.0/16"
# default admission control policies
KUBE_ADMISSION_CONTROL="--admission-control=NamespaceLifecycle,NamespaceExists,LimitRanger,SecurityContextDeny,ServiceAccount,ResourceQuota"
# Add your own!
KUBE_API_ARGS=""
2.3. 启动etcd服务
[root@server1 ~]# systemctl start etcd
[root@server1 ~]# etcdctl mkdir /kube-centos/network
[root@server1 ~]# etcdctl mk /kube-centos/network/config "{ \"Network\": \"172.30.0.0/16\", \"SubnetLen\": 24, \"Backend\": { \"Type\": \"vxlan\" } }"
{ "Network": "172.30.0.0/16", "SubnetLen": 24, "Backend": { "Type": "vxlan" } }
[root@server1 ~]#
2.4. 修改/etc/sysconfig/flanneld文件
[root@server1 ~]# vi /etc/sysconfig/flanneld
# Flanneld configuration options
# etcd url location. Point this to the server where etcd runs
FLANNEL_ETCD_ENDPOINTS="http://192.168.1.101:2379"
# etcd config key. This is the configuration key that flannel queries
# For address range assignment
FLANNEL_ETCD_PREFIX="/kube-centos/network"
# Any additional options that you want to pass
#FLANNEL_OPTIONS=""
2.5. 重启各项服务
[root@server1 ~]# for SERVICES in etcd kube-apiserver kube-controller-manager kube-scheduler flanneld; do
> systemctl restart $SERVICES
> systemctl enable $SERVICES
> systemctl status $SERVICES
> done
Created symlink from /etc/systemd/system/multi-user.target.wants/etcd.service to /usr/lib/systemd/system/etcd.service.
● etcd.service - Etcd Server
Loaded: loaded (/usr/lib/systemd/system/etcd.service; enabled; vendor preset: disabled)
Active: active (running) since Sun 2017-11-26 14:02:06 CST; 85ms ago
Main PID: 8273 (etcd)
CGroup: /system.slice/etcd.service
└─8273 /usr/bin/etcd --name=default --data-dir=/var/lib/etcd/default.etcd --listen-client-urls=http://0.0.0.0:2379
Nov 26 14:02:05 server1.smartmap.com etcd[8273]: enabled capabilities for version 3.2
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: 8e9e05c52164694d is starting a new election at term 2
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: 8e9e05c52164694d became candidate at term 3
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: 8e9e05c52164694d received MsgVoteResp from 8e9e05c52164694d at term 3
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: 8e9e05c52164694d became leader at term 3
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: raft.node: 8e9e05c52164694d elected leader 8e9e05c52164694d at term 3
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: published {Name:default ClientURLs:[http://0.0.0.0:2379]} to cluster cdf818194e3a8c32
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: ready to serve client requests
Nov 26 14:02:06 server1.smartmap.com etcd[8273]: serving insecure client requests on [::]:2379, this is strongly discouraged!
Nov 26 14:02:06 server1.smartmap.com systemd[1]: Started Etcd Server.
Created symlink from /etc/systemd/system/multi-user.target.wants/kube-apiserver.service to /usr/lib/systemd/system/kube-apiserver.service.
● kube-apiserver.service - Kubernetes API Server
Loaded: loaded (/usr/lib/systemd/system/kube-apiserver.service; enabled; vendor preset: disabled)
Active: active (running) since Sun 2017-11-26 14:02:07 CST; 48ms ago
Docs: https://github.com/GoogleCloudPlatform/kubernetes
Main PID: 8307 (kube-apiserver)
CGroup: /system.slice/kube-apiserver.service
└─8307 /usr/bin/kube-apiserver --logtostderr=true --v=0 --etcd-servers=http://192.168.1.101:2379 --address=0.0.0.0 --allow-privileged=...
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.184106 8307 storage_rbac.go:131] Created clusterrole.rbac.auth.../admin
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.189141 8307 storage_rbac.go:131] Created clusterrole.rbac.auth...o/edit
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.191558 8307 storage_rbac.go:131] Created clusterrole.rbac.auth...o/view
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.194588 8307 storage_rbac.go:131] Created clusterrole.rbac.auth...m:node
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.197275 8307 storage_rbac.go:131] Created clusterrole.rbac.auth...roxier
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.202016 8307 storage_rbac.go:131] Created clusterrole.rbac.auth...roller
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.206863 8307 storage_rbac.go:151] Created clusterrolebinding.rb...-admin
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.208544 8307 storage_rbac.go:151] Created clusterrolebinding.rb...covery
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.212371 8307 storage_rbac.go:151] Created clusterrolebinding.rb...c-user
Nov 26 14:02:07 server1.smartmap.com kube-apiserver[8307]: I1126 14:02:07.214597 8307 storage_rbac.go:151] Created clusterrolebinding.rb...m:node
Hint: Some lines were ellipsized, use -l to show in full.
Created symlink from /etc/systemd/system/multi-user.target.wants/kube-controller-manager.service to /usr/lib/systemd/system/kube-controller-manager.service.
● kube-controller-manager.service - Kubernetes Controller Manager
Loaded: loaded (/usr/lib/systemd/system/kube-controller-manager.service; enabled; vendor preset: disabled)
Active: active (running) since Sun 2017-11-26 14:02:07 CST; 73ms ago
Docs: https://github.com/GoogleCloudPlatform/kubernetes
Main PID: 8339 (kube-controller)
CGroup: /system.slice/kube-controller-manager.service
└─8339 /usr/bin/kube-controller-manager --logtostderr=true --v=0 --master=http://192.168.1.101:8080
Nov 26 14:02:07 server1.smartmap.com systemd[1]: Started Kubernetes Controller Manager.
Nov 26 14:02:07 server1.smartmap.com systemd[1]: Starting Kubernetes Controller Manager...
Created symlink from /etc/systemd/system/multi-user.target.wants/kube-scheduler.service to /usr/lib/systemd/system/kube-scheduler.service.
● kube-scheduler.service - Kubernetes Scheduler Plugin
Loaded: loaded (/usr/lib/systemd/system/kube-scheduler.service; enabled; vendor preset: disabled)
Active: active (running) since Sun 2017-11-26 14:02:07 CST; 79ms ago
Docs: https://github.com/GoogleCloudPlatform/kubernetes
Main PID: 8371 (kube-scheduler)
CGroup: /system.slice/kube-scheduler.service
└─8371 /usr/bin/kube-scheduler --logtostderr=true --v=0 --master=http://192.168.1.101:8080
Nov 26 14:02:07 server1.smartmap.com systemd[1]: Started Kubernetes Scheduler Plugin.
Nov 26 14:02:07 server1.smartmap.com systemd[1]: Starting Kubernetes Scheduler Plugin...
Created symlink from /etc/systemd/system/multi-user.target.wants/flanneld.service to /usr/lib/systemd/system/flanneld.service.
Created symlink from /etc/systemd/system/docker.service.requires/flanneld.service to /usr/lib/systemd/system/flanneld.service.
● flanneld.service - Flanneld overlay address etcd agent
Loaded: loaded (/usr/lib/systemd/system/flanneld.service; enabled; vendor preset: disabled)
Active: active (running) since Sun 2017-11-26 14:02:07 CST; 44ms ago
Main PID: 8402 (flanneld)
CGroup: /system.slice/flanneld.service
└─8402 /usr/bin/flanneld -etcd-endpoints=http://192.168.1.101:2379 -etcd-prefix=/kube-centos/network
Nov 26 14:02:07 server1.smartmap.com systemd[1]: Starting Flanneld overlay address etcd agent...
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.432091 8402 main.go:132] Installing signal handlers
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.433596 8402 manager.go:136] Determining IP address of default interface
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.433830 8402 manager.go:149] Using interface with name ens33 an....1.101
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.433841 8402 manager.go:166] Defaulting external address to int...1.101)
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.505878 8402 local_manager.go:179] Picking subnet in range 172.....255.0
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.506878 8402 manager.go:250] Lease acquired: 172.30.47.0/24
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.507064 8402 network.go:58] Watching for L3 misses
Nov 26 14:02:07 server1.smartmap.com flanneld-start[8402]: I1126 14:02:07.507071 8402 network.go:66] Watching for new subnet leases
Nov 26 14:02:07 server1.smartmap.com systemd[1]: Started Flanneld overlay address etcd agent.
Hint: Some lines were ellipsized, use -l to show in full.
[root@server1 ~]#
3. 配置Container Node
3.1. 修改 /etc/kubernetes/kubelet文件
[root@server2 sysconfig]# vi /etc/kubernetes/kubelet
###
# kubernetes kubelet (minion) config
# The address for the info server to serve on (set to 0.0.0.0 or "" for all interfaces)
KUBELET_ADDRESS="--address=0.0.0.0"
# The port for the info server to serve on
# KUBELET_PORT="--port=10250"
# You may leave this blank to use the actual hostname
KUBELET_HOSTNAME="--hostname-override=server2.smartmap.com"
# location of the api-server
KUBELET_API_SERVER="--api-servers=http://server1.smartmap.com:8080"
# pod infrastructure container
KUBELET_POD_INFRA_CONTAINER="--pod-infra-container-image=registry.access.redhat.com/rhel7/pod-infrastructure:latest"
# Add your own!
KUBELET_ARGS=""
3.2. 修改 /etc/sysconfig/flanneld文件
[root@server2 sysconfig]# vi /etc/sysconfig/flanneld
# Flanneld configuration options
# etcd url location. Point this to the server where etcd runs
FLANNEL_ETCD_ENDPOINTS="http://server1.smartmap.com:2379"
# etcd config key. This is the configuration key that flannel queries
# For address range assignment
FLANNEL_ETCD_PREFIX="/kube-centos/network"
# Any additional options that you want to pass
#FLANNEL_OPTIONS=""
3.3. 重启各项服务
[root@server2 sysconfig]# for SERVICES in kube-proxy kubelet flanneld docker; do
> systemctl restart $SERVICES
> systemctl enable $SERVICES
> systemctl status $SERVICES
> done
3.4. 配置kubectl
[root@server2 sysconfig]# kubectl config set-cluster default-cluster --server=http://server1.smartmap.com:8080
Cluster "default-cluster" set.
[root@server2 sysconfig]# kubectl config set-context default-context --cluster=default-cluster --user=default-admin
Context "default-context" set.
[root@server2 sysconfig]# kubectl config use-context default-context
Switched to context "default-context".
[root@server2 sysconfig]#
4. 检查集群
[root@server1 ~]# kubectl get nodes
NAME STATUS AGE
server2.smartmap.com Ready 10m
server3.smartmap.com Ready 1m
server4.smartmap.com Ready 1m
[root@server1 ~]#
5. 创建Pod
5.1. 创建镜像
5.1.1. 编辑Dockerfile文件
[root@server2 ~]# vi Dockerfile
# create new
FROM centos
MAINTAINER smartmap <admin@smartmap.com>
RUN yum -y install httpd
RUN echo "Hello DockerFile" > /var/www/html/index.html
EXPOSE 80
CMD ["-D", "FOREGROUND"]
ENTRYPOINT ["/usr/sbin/httpd"]
5.1.2. 生成镜像
[root@server2 ~]# docker build -t web_server:latest .
Sending build context to Docker daemon 44.54 kB
Step 1 : FROM centos
Trying to pull repository docker.io/library/centos ...
latest: Pulling from docker.io/library/centos
85432449fd0f: Pull complete
Digest: sha256:3b1a65e9a05f0a77b5e8a698d3359459904c2a354dc3b25ae2e2f5c95f0b3 667
---> 3fa822599e10
Step 2 : MAINTAINER smartmap <admin@smartmap.com>
---> Running in 2d8746184cda
---> 0e1a78adcae3
5.1.3. 查看所有镜像
[root@server2 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
web_server latest 79a12844f0fc 4 minutes ago 316 MB
docker.io/centos latest 3fa822599e10 3 days ago 203.5 MB
5.2. 导出镜像
[root@server2 ~]# docker save web_server > web_server.tar
5.3. 将生成的镜像复制到其它所有节点
[root@server2 ~]# scp web_server.tar server3.smartmap.com:/root/web_server.tar
The authenticity of host 'server3.smartmap.com (192.168.1.103)' can't be established.
ECDSA key fingerprint is SHA256:lgN0eOtdLR2eqHh+fabe54DGpV08ZiWo9oWVS60aGzw.
ECDSA key fingerprint is MD5:28:c0:cf:21:35:29:3d:23:d3:62:ca:0e:82:7a:4b:af.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'server3.smartmap.com,192.168.1.103' (ECDSA) to the list o f known hosts.
root@server3.smartmap.com's password:
web_server.tar 100% 310MB 25.8MB/s 00:12
[root@server2 ~]# scp web_server.tar server4.smartmap.com:/root/web_server.tar
The authenticity of host 'server4.smartmap.com (192.168.1.104)' can't be established.
ECDSA key fingerprint is SHA256:lgN0eOtdLR2eqHh+fabe54DGpV08ZiWo9oWVS60aGzw.
ECDSA key fingerprint is MD5:28:c0:cf:21:35:29:3d:23:d3:62:ca:0e:82:7a:4b:af.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'server4.smartmap.com,192.168.1.104' (ECDSA) to the list o f known hosts.
root@server4.smartmap.com's password:
web_server.tar 100% 310MB 28.2MB/s 00:11
[root@server2 ~]#
5.4. 其它Container Node节点导入镜像
[root@server3 ~]# ll
total 317660
-rw-------. 1 root root 1496 Oct 28 11:32 anaconda-ks.cfg
-rw-r--r-- 1 root root 325278208 Dec 3 16:59 web_server.tar
[root@server3 ~]# docker load < web_server.tar
d1be66a59bc5: Loading layer 212.1 MB/212.1 MB
73c74fffa4a1: Loading layer 113.2 MB/113.2 MB
8c78557d73da: Loading layer 3.584 kB/3.584 kB
Loaded image: web_server:latest
[root@server3 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
web_server latest 79a12844f0fc 16 minutes ago 316 MB
[root@server3 ~]#
5.5. 在Admin Node上创建Pod
5.5.1. 创建pod-webserver.yaml文件
[root@server1 ~]# vi pod-webserver.yaml
apiVersion: v1
kind: Pod
metadata:
name: httpd
labels:
app: web_server
spec:
containers:
- name: httpd
image: web_server
imagePullPolicy: IfNotPresent
ports:
- containerPort: 80
5.5.2. 创建Pod
[root@server1 ~]# kubectl create -f pod-webserver.yaml
pod "httpd" created
[root@server1 ~]# kubectl get pods -o wide
NAME READY STATUS RESTARTS AGE IP NODE
httpd 0/1 ContainerCreating 0 12s <none> server4.smartmap.com
[root@server1 ~]# kubectl get pods -o wide
NAME READY STATUS RESTARTS AGE IP NODE
httpd 1/1 Running 0 7s 172.30.20.2 server4.smartmap.com
[root@server1 ~]# kubectl get pod httpd -o yaml | grep "podIP"
podIP: 172.30.20.2
[root@server1 ~]# curl http://172.30.20.2
Hello DockerFile
5.5.3. 删除Pod
[root@server1 ~]# kubectl delete pod httpd
pod "httpd" deleted
[root@server1 ~]#
5.5.4. 处理相关问题
1. open /etc/docker/certs.d/registry.access.redhat.com/redhat-ca.crt: no such file or directory
[root@server2 ~]# yum install *rhsm*
Loaded plugins: fastestmirror
base | 3.6 kB 00:00:00
extras | 3.4 kB 00:00:00
updates | 3.4 kB 00:00:00
virt7-docker-common-release | 3.4 kB 00:00:00
(1/2): extras/7/x86_64/primary_db | 130 kB 00:00:00
(2/2): updates/7/x86_64/primary_db | 3.6 MB 00:00:00
Loading mirror speeds from cached hostfile
* base: mirrors.tuna.tsinghua.edu.cn
2.returned error: No such image: registry.access.redhat.com/rhel7/pod-infrastructure:latest
[root@server2 ~]# docker pull registry.access.redhat.com/rhel7/pod-infrastructure:latest
Trying to pull repository registry.access.redhat.com/rhel7/pod-infrastructure ...
latest: Pulling from registry.access.redhat.com/rhel7/pod-infrastructure
26e5ed6899db: Downloading 16.35 MB/74.87 MB
26e5ed6899db: Pull complete
66dbe984a319: Pull complete
9138e7863e08: Pull complete
Digest: sha256:92d43c37297da3ab187fc2b9e9ebfb243c1110d446c783ae1b989088495db931
[root@server2 ~]#
6. 持久化存贮
6.1. 创建pod-webserver.yaml文件
[root@server1 ~]# vi pod-webserver-storage.yaml
apiVersion: v1
kind: Pod
metadata:
name: httpd
spec:
containers:
- name: httpd
imagePullPolicy: IfNotPresent
image: web_server
ports:
- containerPort: 80
volumeMounts:
# the volume to use (it's the one defined in "volumes" section)
- name: httpd-storage
# mount point inside Container
mountPath: /var/www/html
volumes:
# any name you like
- name: httpd-storage
hostPath:
# the directory on Host Node for saving data
path: /var/docker/disk01
6.2. 在所有Node上创建目录
[root@server2 ~]# mkdir -p /var/www/html
[root@server2 ~]# mkdir -p /var/docker/disk01
6.3. 创建Pod
[root@server1 ~]# kubectl create -f pod-webserver-storage.yaml
pod "httpd" created
[root@server1 ~]# kubectl get pods -o wide
NAME READY STATUS RESTARTS AGE IP NODE
httpd 1/1 Running 0 14s 172.30.49.2 server3.smartmap.com
[root@server1 ~]# kubectl get pod httpd -o yaml | grep "podIP"
podIP: 172.30.49.2
6.4. 修改内容
[root@server3 ~]# echo "Persistent Storage" > /var/docker/disk01/index.html
[root@server3 ~]# curl http://172.30.49.2
Persistent Storage
