可见光项目节点加入k8s集群
一、安装jdk:
64 rpm -qa | grep java
65 rpm -e java-1.8.0-openjdk-1.8.0.181-7.b13.el7.x86_64 --nodeps
66 rpm -e java-1.8.0-openjdk-headless-1.8.0.181-7.b13.el7.x86_64 --nodeps
67 rpm -qa | grep java
tar -xvf jdk-11.0.13_linux-x64_bin.tar.gz
43 mv jdk-11.0.13 /usr/local/.
44 ll
45 vim /etc/profile
46 source /etc/profile
47 jps
48 java -version
二、系统优化(忽略nfs):
cd htop
51 ll
52 rpm -Uvh *.rpm --nodeps --force
53 htop
54 ll
55 cd
56 ll
57 vim /etc/security/limits.conf
58 vim /etc/security/limits.d/20-nproc.conf
59 vim /etc/security/limits.d/def.conf
60 reboot
61 ulimit
62 ulimit -n
63 java -version
68 ll
69 cd /opt
70 ll
71 mkdir src
72 ll
73 cd src
74 ll
75 systemctl stop firewalld
76 systemctl disable firewalld
77 setenforce 0
78 vim /etc/selinux/config
79 vim /etc/hosts
80 cat /etc/hosts
81 history
82 ll
83 htop
84 ll
三、
三、安装工具:
从本地c盘把k8s-script、jdk、htop 传到服务器上src目录下面,然后执行nodes.sh脚本进行安装
四、加入集群:
主节点:kubeadm token create(生成令牌)
Public-key: openssl x509 -pubkey -in /etc/kubernetes/pki/ca.crt | openssl rsa -pubin -outform der 2>/dev/null | openssl dgst -sha256 -hex |awk -F '= ' '{print $2}'
从节点加入集群:
kubeadm join 192.168.31.100:6443 --token sjkzl9.qtcar3ejm7codrmm \
--discovery-token-ca-cert-hash sha256:1eaa78815d9b21b4f3f5d8579c0dfe7a23b3d8e87ef1e1d43a1fd42b06f817ee
五、
五、加入harbor:
切换到从节点:
cd /etc/docker/
vim /etc/docker/daemon.json
{
"log-driver": "json-file",
"log-opts": {"max-size": "100m","max-file": "1"},
"insecure-registries": ["192.168.31.100:1180"],
"exec-opts": ["native.cgroupdriver=systemd"],
"graph": "/var/lib/docker",
"registry-mirrors": ["http://192.168.31.100:1180"]
}
验证是否可以访问harboor
docker login 192.168.31.100:1180
六、优化(K8s命令和命令不全等优化):
kubectl 命令补全
echo "source <(kubectl completion bash)" >> ~/.bash_profile
source ~/.bash_profile
systemctl enable kubelet && systemctl start kubelet
systemctl daemon-reload
systemctl restart kubelet
Node节点使用kubectl命令
主节点:
cd /etc/docker/
scp daemon.json node05:/etc/docker/.
daemon.json
从节点:
cd /root
mkdir Downloads
主节点:
scp /etc/kubernetes/admin.conf node05:/root/Downloads/.
mkdir -p $HOME/.kube
cp -i /root/Downloads/admin.conf $HOME/.kube/config
chown $(id -u):$(id -g) $HOME/.kube/config
systemctl daemon-reload
systemctl restart docker
kubectl get pods
node节点删除(在master01操作):
kubectl cordon node05
kubectl drain node05 --delete-local-data --force --ignore-daemonsets
kubectl delete node node05
Node节点:
重新加入集群:
kubeadm join 192.168.31.100:6443 --token sjkzl9.qtcar3ejm7codrmm \
--discovery-token-ca-cert-hash sha256:1eaa78815d9b21b4f3f5d8579c0dfe7a23b3d8e87ef1e1d43a1fd42b06f817ee
打标签
kubectl label node node05 node-role.kubernetes.io/worker=worker
查看
kubectl get nodes
七、验证是否成功加入集群:
kubectl get nodes
kubectl get pods -n kube-system -o wide