Leo Zhang
菩提本无树,明镜亦非台!
posts - 134,comments - 118,views - 76万
kubernetes不重置集群更新节点ip

kubernetes节点ip变更后通信就会出现问题,我们只需要通过kubeadm init phase命令,重新生成config文件和签名文件就可以了。

 

1、备份当前k8s集群配置文件

cp -r /etc/kubernetes /etc/kubernetes_bak$(date +"%Y%m%d%H%M%S")

 

2、批量替换k8s配置文件中ip地址(如果配置了hosts、kubelet,同样需要一起替换)

复制代码
sed -i "s/${OLD_IP}/${NEW_IP}/g" `grep -rl "${OLD_IP}" /etc/kubernetes`

sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/hosts

if [ -f "/etc/default/kubelet" ]; then
  sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/default/kubelet
elif [ -f "/etc/sysconfig/kubelet" ]; then
  sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/sysconfig/kubelet
fi
复制代码

 

3、重新生成apiserver证书

rm -rf /etc/kubernetes/pki/apiserver.*
kubeadm init phase certs apiserver --apiserver-advertise-address ${NEW_IP}

 

4、重新生成admin配置(并更新k8sconfig)

rm -rf /etc/kubernetes/admin.conf
kubeadm init phase kubeconfig admin --apiserver-advertise-address ${NEW_IP}
\cp /etc/kubernetes/admin.conf ~/.kube/config

 

5、重启docker和kubelet

systemctl restart docker && systemctl restart kubelet
systemctl status docker && systemctl status kubelet

 

6、更新kube-proxy配置,并重启kube-proxy服务

kubectl -n kube-system get cm kube-proxy -oyaml > /etc/kubernetes/kube-proxy.conf
sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/kubernetes/kube-proxy.conf
kubectl -n kube-system apply -f /etc/kubernetes/kube-proxy.conf
kubectl -n kube-system delete pod -l k8s-app=kube-proxy

注意:

1、如果不更新kube-proxy配置,连接将会失败(因为default.svc.kubernetes对应地址依然是旧的ip)

2、如果是多节点,删除kube-proxy服务时会卡主,这是由于工作节点kubelet配置没有更新,导致节点NotReady,删除节点上pod自然会卡主(强制终止即可,或者参考步骤8提前更新工作节点

 

 

 

7、检查节点和系统状态

kubectl get node | grep -vE 'STATUS|Ready'
Ready kubectl get pod -n kube-system |grep -vE 'STATUS|Running'

 

8、如果是多节点,需要修改工作节点kubelet.conf配置,并重启kubelet

sed -i "s/${OLD_IP}/${NEW_IP}/g" `grep -rl "${OLD_IP}" /etc/kubernetes`
systemctl restart kubelet

 

 

>>>如果你还是觉得很麻烦,我这边已经提供现成的自动化脚本:

复制代码
      
#!/bin/bash

if [ "$UID" -ne 0 ]; then
   echo "[ERROR]: require root user"
   exit 1
fi
echo "If there is a worker node, first execute the following command to update:
sed -i 's/<OLD_IP>/<NEW_IP>/g' `grep -rl '<OLD_IP>' /etc/kubernetes`
systemctl restart kubelet
"

NEW_IP=$(ip route get 8.8.4.4 | head -1 | awk '{print $7}')
IP_CONF=$(cat /etc/kubernetes/manifests/kube-apiserver.yaml | grep "advertise-address")
OLD_IP=${IP_CONF#*=}
while [ "$1" != "" ]; do
   case $1 in
       --new-ip)
       NEW_IP=$2
       shift 2
       ;;
       --old-ip)
       OLD_IP=$2
       shift 2
       ;;
       *)
       echo "[ERROR] invalid argument '$1'"
       usage
       exit 1
    esac
done

echo "Update node ip: $OLD_IP > $NEW_IP"
echo "Backup k8s config: /etc/kubernetes_bak$(date +"%Y%m%d%H%M%S")"
cp -r /etc/kubernetes /etc/kubernetes_bak$(date +"%Y%m%d%H%M%S")

echo "======================= Update k8s config ==============================="
grep -rl "${OLD_IP}" /etc/kubernetes
sed -i "s/${OLD_IP}/${NEW_IP}/g" `grep -rl "${OLD_IP}" /etc/kubernetes`
sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/hosts

if [ -f "/etc/default/kubelet" ]; then
  sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/default/kubelet
elif [ -f "/etc/sysconfig/kubelet" ]; then
  sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/sysconfig/kubelet
fi
echo

echo "======================== Generate new certificate =========================="
rm -rf /etc/kubernetes/pki/apiserver.*
kubeadm init phase certs apiserver --apiserver-advertise-address ${NEW_IP}
echo

echo "======================= Generate new config ================================"
rm -rf /etc/kubernetes/admin.conf
kubeadm init phase kubeconfig admin --apiserver-advertise-address ${NEW_IP}
\cp /etc/kubernetes/admin.conf ~/.kube/config
echo

echo "======================= Restart docker and kubelet ========================="
systemctl restart docker && systemctl status docker | head -n10
systemctl restart kubelet && systemctl status kubelet | head -n10
echo

echo "=========================== Check node status =============================="
while kubectl get nodes| grep master | grep NotReady; do sleep 5 && echo "waiting node ready..."; done
echo

echo "======================== Update kube-proxy config ==========================="
kubectl -n kube-system get cm kube-proxy -oyaml > /etc/kubernetes/kube-proxy.conf
sed -i "s/${OLD_IP}/${NEW_IP}/g" /etc/kubernetes/kube-proxy.conf
kubectl -n kube-system apply -f /etc/kubernetes/kube-proxy.conf
kubectl -n kube-system delete pod -l k8s-app=kube-proxy
echo

echo "=========================== Check pod status ==============================="
while kubectl get pod -n kube-system| grep -vE "STATUS|Running"; do sleep 5 && echo "waiting pod ready..."; done
echo "IP updated successfully."
update_k8s_ip
复制代码

 

posted on   LeoZhanggg  阅读(446)  评论(0编辑  收藏  举报
相关博文:
· 外网通过kubeconfig访问内网下k8s集群
· Kubernetes - 常用命令
· 如何修改 K8S Master节点 IP?可没想象中那么简单~
· k8s修改集群IP--重置集群
· k8s修改集群IP--不重置集群
阅读排行:
· 物流快递公司核心技术能力-地址解析分单基础技术分享
· .NET 10首个预览版发布:重大改进与新特性概览!
· AI与.NET技术实操系列(二):开始使用ML.NET
· 单线程的Redis速度为什么快?
· Pantheons:用 TypeScript 打造主流大模型对话的一站式集成库
< 2025年3月 >
23 24 25 26 27 28 1
2 3 4 5 6 7 8
9 10 11 12 13 14 15
16 17 18 19 20 21 22
23 24 25 26 27 28 29
30 31 1 2 3 4 5

Copyright © 2025 LeoZhanggg
Powered by .NET 9.0 on Kubernetes Powered By博客园
点击右上角即可分享
微信分享提示