将设为首页浏览此站
收藏本站联系我们相册切换到窄版

易陆发现互联网技术论坛

 找回密码
 开始注册
易陆发现互联网技术论坛»首页 docker社区 docker社区 k8s集群
查看: 4699|回复: 1
收起左侧

k8s集群

[复制链接]
admin
发表于 2018-9-19 17:08:18 | 显示全部楼层 |阅读模式

马上注册,结交更多好友,享用更多功能,让你轻松玩转社区。

您需要 登录 才可以下载或查看,没有账号?开始注册

x

edis和docker这两个词语会自动被修改为首字母大写并链接到知识库,所以在这里先写一遍,后面就不会被改写了。

0、具体操作见 (vmware中搭建k8s),virtulbox也是相同的流程。' }( m6 c! ?1 r* p; B. f1 @' g

1、学习k8s,读的是这本书《KUBERNETES权威指南  从DOCKET到KURBERNETES实践全接触.pdf》

2、这边书刚开始讲的是在单机上搭建一个k8s的hello world,用的是centos7.

    于是我也在virtulbox中安装了centos7,并成功运行hello world。

3、然后,开始尝试集群了。在网上找了个教程,比较简单,很快就成功了,kubectl get nodes能看到各node了。

    但是,应用跑的不正常,有的节点可以访问,有的节点不可以。而且从不同节点访问,查到的数据不相同,似乎是多个独立的系统。怀疑是iptables中cluster ip的规则有问题。     r% _' l2 N1 e

     接着,集群坏了,k8s的基础服务都启动不了。怀疑是不是因为我创建这些虚机时,用的是链接式拷贝,是不是原始的虚机安装了其它软件,导致k8s集群启动不了。

4、删掉重来,用完全拷贝的方式建立虚机。

     一切正常,但是在启动redis-master-controller.yaml时,docker中无法建立容器,

     用kubectl describe pod redis-master命令排查,发现下拉不了镜像。其实这些镜像已经存在于docker中了(搭建单机k8s时,自动pull的)。只是镜像名字前面多加了docker.io/  我修改了redis-master-controller.yaml中镜像的名字,仍然pull失败。奇怪。

5、今天定位了网络问题(见virtualbox虚拟机无法上网),网络搞通后,hello world终于正常运行了。

之前的一些疑问,有答案了

1、随便访问哪个node的ip(比如http://192.168.56.251:30001/,http://192.168.56.252:30001/)(http://192.168.56.250:30001/是不行的),都可以访问到服务的(proxy自动转的)

2、在内部时,访问真实端口也是可以的。

[root@centm ~]# kubectl get svc
* E$ ?+ \( T# i+ u- W; xNAME           CLUSTER-IP       EXTERNAL-IP   PORT(S)    AGE
" n* r+ C- C) A' zfrontend       10.254.218.57    <nodes>       80/TCP     5m
) ~* s! _7 m, t0 Hkubernetes     10.254.0.1       <none>        443/TCP    15d* w# t9 ?) ?3 \4 A
redis-master   10.254.142.174   <none>        6379/TCP   8m
+ j* h" ]6 w$ \$ _" k3 s: wredis-slave    10.254.201.123   <none>        6379/TCP   6m3 U0 Q1 P8 v1 T- {0 |7 p8 ~

curl 10.254.218.57:80     可以通。

ping  10.254.218.57 不通

3、node中多了一个127.0.0.1 ,不知道为什么
7 a, b! ]. _1 o8 e7 G4 s+ X# ]

[root@centm ~]# kubectl get nodes; @, t9 X! F+ B/ r3 f: M" k+ j
NAME        STATUS     AGE
/ u& Q3 S5 n- U2 G. e! i; i& v127.0.0.1   NotReady   15d
" @# z& x- s; Q$ f0 N( x' ncents1      Ready      1d
- l% I6 {# U5 E* X6 S2 C( Z) wcents2      Ready      1d5 b) I) Z4 ]4 `9 K" B7 M
[root@centm ~]# ps -ef|grep kube" V6 ]7 J% i* C- o  u6 T3 a* h
kube       578     1  0 Jan20 ?        00:15:55 /usr/bin/kube-controller-manager --logtostderr=true --v=0 --master=http://127.0.0.1:80806 k7 d0 Y) X( A8 t2 K
kube       588     1  0 Jan20 ?        00:01:09 /usr/bin/kube-scheduler --logtostderr=true --v=0 --master=http://127.0.0.1:80803 e4 B/ w" K1 H- E# Q% A/ |
kube      2079     1  0 Jan20 ?        00:08:11 /usr/bin/kube-apiserver --logtostderr=true --v=0 --etcd-servers=http://127.0.0.1:2379 --insecure-bind-address=0.0.0.0 --allow-privileged=false --service-cluster-ip-range=10.254.0.0/16 --admission-control=NamespaceLifecycle,NamespaceExists,LimitRanger,SecurityContextDeny,ResourceQuota7 @$ h1 v- [& Z8 Z- b6 P. p9 ?! r
4、clusterip是一个虚ip,实际是iptables中的几个转发规则。

[root@cents2 ~]# ip a% E- R- }+ B' b$ N
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 10 T& Z# R4 d- |4 ]
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:007 L0 C) f5 [! J! z( E# q
    inet 127.0.0.1/8 scope host lo
/ Y) k$ G) n5 u, Z- L       valid_lft forever preferred_lft forever3 s$ @9 n2 A) K  q6 n2 Q
    inet6 ::1/128 scope host
4 E8 \6 L& _  _0 C8 q       valid_lft forever preferred_lft forever8 W( `' o9 ^  C$ ?8 h
2: enp0s3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
0 t% I, d3 |- f& g) c' k) |9 K/ w    link/ether 08:00:27:58:5d:6e brd ff:ff:ff:ff:ff:ff
! P8 Z9 ]7 M$ R5 ]    inet 10.0.2.15/24 brd 10.0.2.255 scope global dynamic enp0s3# Y/ n, _3 j. U
       valid_lft 82058sec preferred_lft 82058sec
; d8 F- b7 O3 h% [    inet6 fe80::b171:84d0:5173:de63/64 scope link
" c; N9 J8 W4 Y% \% {2 r       valid_lft forever preferred_lft forever4 K6 p1 q7 i3 f0 v% Q
3: enp0s8: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000' |( V/ m/ z3 J" A7 }6 V6 d' V
    link/ether 08:00:27:7a:24:14 brd ff:ff:ff:ff:ff:ff9 _, t4 j' v6 z" U5 D
    inet 192.168.56.252/24 brd 192.168.56.255 scope global enp0s8
2 r2 c$ _# i( l0 H2 v' ~- C& v       valid_lft forever preferred_lft forever; D0 C! @8 u" h9 @1 s4 v. E
    inet6 fe80::a00:27ff:fe7a:2414/64 scope link
4 d! ^. @7 w, x7 H" ^       valid_lft forever preferred_lft forever2 ^2 s% N( x' E1 C0 `
4: flannel.1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UNKNOWN
: p4 U. k# t0 r+ t+ Q4 G0 b% g' d    link/ether fa:5a:c7:c5:aa:e5 brd ff:ff:ff:ff:ff:ff
+ n8 D$ B- [1 |' T! R2 e    inet 172.16.80.0/16 scope global flannel.12 F5 l% _" D& T
       valid_lft forever preferred_lft forever( A5 n/ V$ ^! c, L3 S$ v3 `& _+ c
5: docker0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UP
; S0 K$ U, a. {6 `% ]" d    link/ether 02:42:72:2f:1f:ae brd ff:ff:ff:ff:ff:ff8 N; G- _2 w( I) |+ b
    inet 172.16.80.1/24 scope global docker0
/ S  r. \8 V5 o. i       valid_lft forever preferred_lft forever3 C/ I# T3 ~+ S* J
    inet6 fe80::42:72ff:fe2f:1fae/64 scope link
9 V$ M5 W" s* k* {       valid_lft forever preferred_lft forever! g4 S: [1 b) o7 N2 o( |) w
7: vethc56c1d4@if6: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue master docker0 state UP
+ L* k8 r& g+ T' b! r) l7 `    link/ether 92:c8:3d:3f:b9:49 brd ff:ff:ff:ff:ff:ff link-netnsid 0
2 A( p- F8 ^, d  Z7 _% o% r    inet6 fe80::90c8:3dff:fe3f:b949/64 scope link( Y! l4 f/ P( p3 D
       valid_lft forever preferred_lft forever
- p  z  G- R+ B9: vethf961994@if8: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue master docker0 state UP: ]& l2 L7 O0 w2 Q
    link/ether d6:be:4b:6e:26:81 brd ff:ff:ff:ff:ff:ff link-netnsid 1) R* N% I) @$ z* X% r
    inet6 fe80::d4be:4bff:fe6e:2681/64 scope link
2 \' a, t; I; P2 N& v7 m- y' {       valid_lft forever preferred_lft forever  W  B1 o1 ?) _' \5 y' {! A
11: vethe4cd28e@if10: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue master docker0 state UP
9 W$ P9 e" U1 T& p  Z# Z    link/ether ee:55:55:df:4e:50 brd ff:ff:ff:ff:ff:ff link-netnsid 2$ M1 @6 M. r$ S$ K# g, g6 d: J7 y
    inet6 fe80::ec55:55ff:fedf:4e50/64 scope link. [. C8 Z/ m8 R" j/ ?* u& o
       valid_lft forever preferred_lft forever
0 _) R9 F" D$ N$ K' f
; [2 g+ Q/ J% Y+ n6 x) X( E1 y! m+ @[root@cents2 ~]# iptables-save
0 D6 I0 w/ u  d  c- C# Generated by iptables-save v1.4.21 on Sun Jan 22 00:41:01 2017  }3 H" q/ F& Q; e; w
*filter
0 @% [1 f, l  q4 A:INPUT ACCEPT [27:4324]5 G) x2 Z% w0 N& o3 ]* J6 e
:FORWARD ACCEPT [0:0]: w* a5 C* f  Y
:OUTPUT ACCEPT [25:2821]
. q! \- d$ [  _' Z4 E:DOCKER - [0:0]
& \7 F  ^+ M; W& l:DOCKER-ISOLATION - [0:0]
4 D/ B9 {4 ~: U  l:KUBE-SERVICES - [0:0]- i) F8 b$ H% Q  K" u
-A FORWARD -j DOCKER-ISOLATION
9 M. L- m% R: k( l1 n. N" C8 b-A FORWARD -o docker0 -j DOCKER5 R$ ]+ N8 x/ i7 G7 U
-A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT, C) |. R' a1 o0 y7 V# L6 X
-A FORWARD -i docker0 ! -o docker0 -j ACCEPT& W/ |4 F* s4 O) N9 Q/ K
-A FORWARD -i docker0 -o docker0 -j ACCEPT
, b/ C9 [: L1 `3 F& D% `-A OUTPUT -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
. j6 {0 z) G" j/ G/ @  A' e* n-A DOCKER-ISOLATION -j RETURN! [) Z* Z+ D# x' \. |; R
COMMIT
$ ~! F3 j  Z; e8 m9 W  d# Completed on Sun Jan 22 00:41:01 2017" V& S, o8 W4 D! I: \, m, i- r1 P2 ~9 M
# Generated by iptables-save v1.4.21 on Sun Jan 22 00:41:01 2017
6 L+ O4 N) w8 h6 T) c/ K( M*nat
! u' x0 S! h# B; w3 ~8 n7 T- k:PREROUTING ACCEPT [0:0]' s8 j% Q( K7 N
:INPUT ACCEPT [0:0]9 {: v6 M+ z$ j$ ~
:OUTPUT ACCEPT [2:119]' V( }' `% c7 [5 [# v. i
:POSTROUTING ACCEPT [2:119]$ R: R2 s$ ?8 c: K. ]9 s% W
:DOCKER - [0:0]4 u: _3 [+ H# @( P/ d# U* i
:KUBE-MARK-MASQ - [0:0]
# o4 q4 A  Z+ z8 q, U. Y  T:KUBE-NODEPORTS - [0:0]
6 o( I$ l: h* Z:KUBE-POSTROUTING - [0:0]
# r6 x5 f: F5 e- x:KUBE-SEP-63GTHXGNEQIFF6GY - [0:0]4 m: B% W" t8 E
:KUBE-SEP-77PLGVXVTAKNHL2K - [0:0]/ S7 ^4 W8 B) o3 r
:KUBE-SEP-7R2ESD4YYXMXFEFZ - [0:0]
5 j1 I& _5 h5 Y9 g5 o:KUBE-SEP-GIMIRAR4ZAKGMA2Q - [0:0]! e  m8 ], u5 V8 M
:KUBE-SEP-LYGBYJFMWSAWPLXU - [0:0]# J; f  }+ M  |2 H. L1 u4 y: v7 F6 A3 v  N
:KUBE-SEP-Y7WMR7EBCL4N3QJX - [0:0]
- B7 [, I5 W3 S& O+ T+ Z" x$ a:KUBE-SEP-ZDWRYP3AMCRYOGNR - [0:0]
# J( w/ s, b8 ~, H:KUBE-SERVICES - [0:0]5 E4 u! [. d0 ^4 `: F0 e0 B
:KUBE-SVC-7GF4BJM3Z6CMNVML - [0:0]& F/ x4 L9 `- G
:KUBE-SVC-AGR3D4D4FQNH4O33 - [0:0]# S5 n$ f' l. v* ]! k
:KUBE-SVC-GYQQTB6TY565JPRW - [0:0]
2 i* `3 _0 X! [" E- `:KUBE-SVC-NPX46M4PTMTKRN6Y - [0:0]4 o; i1 f* _' @1 t: b2 t6 k+ g
-A PREROUTING -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
7 \( `2 D) n* x7 ?. E9 G-A PREROUTING -m addrtype --dst-type LOCAL -j DOCKER
$ g$ B* d; i  I) H8 r6 ~-A OUTPUT -m comment --comment "kubernetes service portals" -j KUBE-SERVICES" a& B' |* h0 ^, k" `) s+ o
-A OUTPUT ! -d 127.0.0.0/8 -m addrtype --dst-type LOCAL -j DOCKER- y/ v6 y# T" q, ~: r
-A POSTROUTING -s 172.16.80.0/24 ! -o docker0 -j MASQUERADE
- y) t! ?. i$ A/ W) M5 v-A POSTROUTING -m comment --comment "kubernetes postrouting rules" -j KUBE-POSTROUTING
8 e+ m) A- j7 P-A DOCKER -i docker0 -j RETURN
3 y: F; _' Y  ^; c-A KUBE-MARK-MASQ -j MARK --set-xmark 0x4000/0x40004 v! x* u* E$ @' {9 |+ [+ T* G
-A KUBE-NODEPORTS -p tcp -m comment --comment "default/frontend:" -m tcp --dport 30001 -j KUBE-MARK-MASQ
% a" |' w) }) p% N( d! d+ Z-A KUBE-NODEPORTS -p tcp -m comment --comment "default/frontend:" -m tcp --dport 30001 -j KUBE-SVC-GYQQTB6TY565JPRW) g: ]& K9 x+ j) l
-A KUBE-POSTROUTING -m comment --comment "kubernetes service traffic requiring SNAT" -m mark --mark 0x4000/0x4000 -j MASQUERADE4 O  p" O+ Q& O, N. }# i
-A KUBE-SEP-63GTHXGNEQIFF6GY -s 172.16.62.4/32 -m comment --comment "default/frontend:" -j KUBE-MARK-MASQ' t3 x7 x3 B9 D
-A KUBE-SEP-63GTHXGNEQIFF6GY -p tcp -m comment --comment "default/frontend:" -m tcp -j DNAT --to-destination 172.16.62.4:80
& W% }% M1 V8 w-A KUBE-SEP-77PLGVXVTAKNHL2K -s 172.16.80.3/32 -m comment --comment "default/frontend:" -j KUBE-MARK-MASQ
8 P4 y/ [/ u% ]5 J4 {6 [-A KUBE-SEP-77PLGVXVTAKNHL2K -p tcp -m comment --comment "default/frontend:" -m tcp -j DNAT --to-destination 172.16.80.3:80
% T7 x7 x" T% f6 W-A KUBE-SEP-7R2ESD4YYXMXFEFZ -s 172.16.80.2/32 -m comment --comment "default/redis-slave:" -j KUBE-MARK-MASQ4 }9 O' l( n) [* V4 }3 i9 C
-A KUBE-SEP-7R2ESD4YYXMXFEFZ -p tcp -m comment --comment "default/redis-slave:" -m tcp -j DNAT --to-destination 172.16.80.2:6379( u. x) ]9 K, D" @8 c4 ^
-A KUBE-SEP-GIMIRAR4ZAKGMA2Q -s 192.168.56.250/32 -m comment --comment "default/kubernetes:https" -j KUBE-MARK-MASQ
" J8 z# `& {. r* g9 M9 s-A KUBE-SEP-GIMIRAR4ZAKGMA2Q -p tcp -m comment --comment "default/kubernetes:https" -m recent --set --name KUBE-SEP-GIMIRAR4ZAKGMA2Q --mask 255.255.255.255 --rsource -m tcp -j DNAT --to-destination 192.168.56.250:6443* l/ W6 I$ O9 t" {
-A KUBE-SEP-LYGBYJFMWSAWPLXU -s 172.16.62.3/32 -m comment --comment "default/redis-slave:" -j KUBE-MARK-MASQ
% |! F* G1 O9 u% \2 \-A KUBE-SEP-LYGBYJFMWSAWPLXU -p tcp -m comment --comment "default/redis-slave:" -m tcp -j DNAT --to-destination 172.16.62.3:6379
, E) K! ^0 _' t. [6 \( V-A KUBE-SEP-Y7WMR7EBCL4N3QJX -s 172.16.62.2/32 -m comment --comment "default/redis-master:" -j KUBE-MARK-MASQ) j0 E" `+ T) l# h1 H
-A KUBE-SEP-Y7WMR7EBCL4N3QJX -p tcp -m comment --comment "default/redis-master:" -m tcp -j DNAT --to-destination 172.16.62.2:6379! K, d- A) T. w: V. a: O5 c7 Y
-A KUBE-SEP-ZDWRYP3AMCRYOGNR -s 172.16.80.4/32 -m comment --comment "default/frontend:" -j KUBE-MARK-MASQ$ P9 w; x0 f2 E  \
-A KUBE-SEP-ZDWRYP3AMCRYOGNR -p tcp -m comment --comment "default/frontend:" -m tcp -j DNAT --to-destination 172.16.80.4:80
, Q# `8 h4 l8 ]2 L-A KUBE-SERVICES -d 10.254.218.57/32 -p tcp -m comment --comment "default/frontend: cluster IP" -m tcp --dport 80 -j KUBE-SVC-GYQQTB6TY565JPRW5 d0 {; s$ k) G
-A KUBE-SERVICES -d 10.254.0.1/32 -p tcp -m comment --comment "default/kubernetes:https cluster IP" -m tcp --dport 443 -j KUBE-SVC-NPX46M4PTMTKRN6Y
: x* h3 L4 f9 k+ C' K-A KUBE-SERVICES -d 10.254.142.174/32 -p tcp -m comment --comment "default/redis-master: cluster IP" -m tcp --dport 6379 -j KUBE-SVC-7GF4BJM3Z6CMNVML' a/ Q$ \/ x8 P, I
-A KUBE-SERVICES -d 10.254.201.123/32 -p tcp -m comment --comment "default/redis-slave: cluster IP" -m tcp --dport 6379 -j KUBE-SVC-AGR3D4D4FQNH4O33
; P' L& m; f* [-A KUBE-SERVICES -m comment --comment "kubernetes service nodeports; NOTE: this must be the last rule in this chain" -m addrtype --dst-type LOCAL -j KUBE-NODEPORTS9 j% l( p; b9 c: w1 I! q/ A  D
-A KUBE-SVC-7GF4BJM3Z6CMNVML -m comment --comment "default/redis-master:" -j KUBE-SEP-Y7WMR7EBCL4N3QJX
. x$ r9 J" g. }' X+ w-A KUBE-SVC-AGR3D4D4FQNH4O33 -m comment --comment "default/redis-slave:" -m statistic --mode random --probability 0.50000000000 -j KUBE-SEP-LYGBYJFMWSAWPLXU$ e& J+ Y9 Y3 p$ k
-A KUBE-SVC-AGR3D4D4FQNH4O33 -m comment --comment "default/redis-slave:" -j KUBE-SEP-7R2ESD4YYXMXFEFZ! x/ b; }9 ]1 v( d6 ~- C
-A KUBE-SVC-GYQQTB6TY565JPRW -m comment --comment "default/frontend:" -m statistic --mode random --probability 0.33332999982 -j KUBE-SEP-63GTHXGNEQIFF6GY
2 ]) Z/ x8 H0 e-A KUBE-SVC-GYQQTB6TY565JPRW -m comment --comment "default/frontend:" -m statistic --mode random --probability 0.50000000000 -j KUBE-SEP-77PLGVXVTAKNHL2K8 `2 E! K1 X& p% P3 c/ h4 h
-A KUBE-SVC-GYQQTB6TY565JPRW -m comment --comment "default/frontend:" -j KUBE-SEP-ZDWRYP3AMCRYOGNR1 @, U; y+ ~3 G/ l6 R9 j' w: [% p
-A KUBE-SVC-NPX46M4PTMTKRN6Y -m comment --comment "default/kubernetes:https" -m recent --rcheck --seconds 180 --reap --name KUBE-SEP-GIMIRAR4ZAKGMA2Q --mask 255.255.255.255 --rsource -j KUBE-SEP-GIMIRAR4ZAKGMA2Q& b+ I) `6 ]9 q' q3 F& @  z' y
-A KUBE-SVC-NPX46M4PTMTKRN6Y -m comment --comment "default/kubernetes:https" -j KUBE-SEP-GIMIRAR4ZAKGMA2Q
! C' ?  G9 W0 l+ c, P: eCOMMIT) Y4 n$ T6 G0 ^5 c$ P) W
# Completed on Sun Jan 22 00:41:01 2017
. H' t6 `- e, Z* [* ~# B; Y7 r9 G& Y
----------------------------------------------------

尝试了本地卷

[root@centm ~]# cat redis-master-controller_with_volume.yaml& h. k+ l' _8 n3 g  C9 `: [7 V
apiVersion: v1
6 U, F. i+ _# a. ^8 h& n: D8 Xkind: ReplicationController  & f: W! R+ g2 i9 P9 i& W
metadata:                               , F0 L* ^6 D/ J+ A& E; ]5 Z: }# V
  labels:edis-master  
, J) _3 w5 ~, z. Q    name: redis-master
3 N3 }9 Y  p) ]; I1 |spec:9 F3 q' K  _+ S6 B
  replicas: 14 w. z, s8 V) i, }% N8 d
  selector:  I* }" I* g* ?4 p
    name: redis-master0 D% H# O+ c% @9 I4 |
  template:    ; X& p+ }4 m! r: Q
    metadata:
* ^2 t7 o% d8 v' n+ p      labels:
4 g! K. b2 e: M- Y3 U4 W        name: redis-master0 R: r0 K4 Q& Z0 k% {2 O4 ~( H
    spec:8 t& x5 ?1 Y- ^; z3 R: t0 q- s
        volumes:; ?' C: [0 H6 s) Z
        - name: "gf-dir1"9 M6 w% ~+ z/ \2 ?; p/ [
          hostPath:
  L& r! X% a# g4 p            path: "/tmp"
6 T5 E6 u) Q4 y% \  _( \* s
) ~+ e# K1 p& H        containers:
! \" {- G& l3 }3 B5 Q        - name: master         
7 Z3 G( v3 l; L/ b: h+ [: h          ports:: docker.io/kubeguide/redis-master:latest   
! F* h. x' ^4 O; m          - containerPort : 6379 8 t0 z# w( s( X( A& N
          volumeMounts:
7 W* p7 f- G- L  o  u          - name: "gf-dir1"# b1 `# ^4 |7 U5 J; w0 a1 c
            mountPath: "/gf1"

回复

使用道具 举报

admin
 楼主| 发表于 2024-7-10 08:53:50 | 显示全部楼层
export PATH=$PATH:/usr/local/bin9 S# `4 V* F( S0 [* K
# alias kk="kubectl -n kube-system"
2 t. c/ z( {! t& q# alias kp="kubectl -n kube-public"
6 G5 u" U- o9 W" |. P# alias kis="kubectl -n istio-system"$ y2 s4 f' ?; W4 E0 S" C8 e
# alias ks="kubectl -n kubesphere-system"- Y, ]7 ?2 P9 D/ U# @8 F
# alias km="kubectl -n monitoring": m" X. V1 g: q' g0 o/ C! K
# alias kcm="kubectl -n caas-monitoring-system"
0 c* B$ F  w! p. u; I3 o$ L  N6 n# alias kcs="kubectl -n caas-system"
+ d+ _  {; z3 o4 \+ M# alias kcl="kubectl -n caas-logging"
9 p. ?' C, A9 W, h9 x8 C8 v; C# alias kcd="kubectl -n caas-devops") Z0 G0 _+ F; O
# alias kc="kubectl -n caas"* y7 c, S! G) |: t# ^6 H
# alias kcp="kubectl -n cpcs"
/ a* I1 K0 o; }& X# alias kop="kubectl -n openstack"" d& j  l9 o' t; {" C9 n
# alias kcmp="kubectl -n cmp"
; I( T  {1 }3 U9 z$ ?# alias kks="kubectl -n karmada-system"
0 c! q7 R. b) b8 w% J+ o# o# alias kocm="kubectl -n open-cluster-management"3 t3 Q3 k9 {! B, _" Y4 O; y3 I
# alias kocma="kubectl -n open-cluster-management-agent"& }: x' @! j2 y6 j% B7 B6 m. O& j
# alias kt="kubectl -n test"
4 p6 I7 Q0 z% A2 _( }- N# alias kv="kubectl -n vela-system"0 J" `. Y5 s* _4 j) O; o$ P- Y" X' Q" o
# alias kfs="kubectl -n flux-system"
: D& P+ g& G, }0 B7 J# alias kgo="kubectl -n gpu-operator"
/ `6 p) f9 h4 Y8 W) i% G# alias ki="kubectl -n infra". M2 f6 o% k8 ]4 N# B+ O( u
# alias k="kubectl"" ]# V; ~- C+ A8 ~4 |- `
# alias ctr="ctr --namespace k8s.io"
/ `" o9 i! G/ m( y9 M! S& w' P# alias nerdctl="nerdctl --namespace k8s.io"
% {3 ?1 R) D$ p# @* G# ps -ef|grep etcd
  d6 u5 _& D$ i9 P; [; w5 |, F; ^- ?- Y
# ps -ef|grep etcd3 `1 ^) B5 S' R6 q) E
# journalctl -xu kubelet -f5 v6 f+ d0 Y4 f( X8 p' h
# ps -ef|grep etcd
( [0 Q: d! `9 \6 }( b4 c( w4 K+ ]# R- j

$ g( C2 v: Y- ?5 g) G; e# cd etcd/
7 y# T8 Q- U5 C5 i9 Y# ls1 e% G0 L' G+ M! g, n
# mv /etc/kubernetes/manifests/etcd.yaml /etc/kubernetes/1 G7 W. Q8 ]. }
# ls
% j! E4 k& C9 O' e. i# rm -rf member/' v- r1 q6 H+ j3 L( T' R2 R. @' ]
# ls
+ |2 R+ q" j& n3 c* E# cd /etc/kubernetes/7 A8 K* q, M# M6 C$ z6 H
# ls
  H: h& s4 r: R9 {; E# mv etcd.yaml manifests/0 M8 t  M7 L3 r- u# W% w! t
# ls
, i" w8 C8 n8 Y9 ]1 ?0 |# journalctl -xu kubelet -f! D* `9 H' _* u# Z8 N% x* E
2 w5 L# b- x4 W# [

* j4 X8 J6 @" d8 C: A# ps -ef|grep etcd
( j. O# _" k5 P' V# ls
8 ]& F* v7 K0 M3 W: q* c$ D# cd manifests/, t0 @4 v* C. h
# ls' T8 I+ P. E1 U& c
# mv * ../  w5 k* `9 I! k' F& g% u
# ls4 o2 f% k  Z6 [% n0 q2 k$ ~
# ls. g) ]' q. g' O- @% r
# cd + s' v4 M6 `6 P$ {* J
# cd /etc/kube
$ Y3 I% W, o; M. Z. u# }# cd /etc/kubernetes/
: F5 R- i$ x) K0 {2 N5 a# ls* {0 _# O- E3 [4 h  Y: J, r
# mv etcd.yaml kube-apiserver.yaml kube-controller-manager.yaml kube-scheduler.yaml manifests/# i4 I) D+ j9 N
# journalctl -xu kubelet -f: T' v6 x0 {+ t; }

- ^/ m: K- ^; e7 v0 a+ O* O# ps -ef|grep etcd
. ~3 o1 A8 M! |' h) T2 S0 b# journalctl -xu kubelet -f|grep etcd9 j5 P: X- o1 F" |" @
# k get po/ |* K3 G8 Y9 i4 F7 m
# journalctl -xu kubelet -f|grep etcd
. K# g. q0 W( w* I8 m% J# journalctl -xu kubelet -f
4 \2 B* o- _- o8 l$ B9 b) K# journalctl -xu kubelet -f|grep etcd
. G0 _8 e/ Z; S# ps -ef|grep etcd6 Q; q+ q' _6 q9 {
# ls
9 j2 i0 O. Q% b# cat manifests/etcd.yaml
& z( x9 I; b! Z. T( f
6 K3 o7 ^4 ^1 P) ~3 C* m
2 x4 ^% {- G3 k
3 U% K0 ^! Z6 a4 f; a# systemctl stop kubelet6 {6 x- g, q% a% h0 p
# ls" p7 b8 w' a2 O
# rm -rf /data/etcd/member/
/ y" c- T8 L+ ~" d9 w# ls /data/etcd/: e( k6 ]8 U2 H" o, s
# ls8 M+ ]& ~6 }. y  `- I8 h) E
# systemctl status kubelet
) G( M: @: m2 i+ G3 X" w: V# systemctl start kubelet- W+ v3 |. x$ j$ S* b
# ETCDCTL_API=3 etcdctl --cacert=/etc/kubernetes/pki/etcd/ca.crt --cert=/etc/kubernetes/pki/etcd/peer.crt --key=/etc/kubernetes/pki/etcd/peer.key --endpoints=https://10.166.7.5:2379,https://10.166.7.6:2379,https://10.166.7.7:2379 endpoint status --write-out=table1 ]. f+ B8 N0 H8 d9 g+ {" e
# ps -ef|grep etcd8 U' z; W& b9 B" z8 z

1 w9 {2 L* c, S+ m! Q2 I# ps -ef|grep etcd
( u- k. ~$ ]4 O( a9 I# ls /data/etcd/member/  ~: b7 ~( Q: d$ w. O
# ls /data/etcd/member/snap/
( S' [- R0 @2 E7 D# ls -lhS /data/etcd/member/snap/
4 r$ T+ `0 C* d. e( H, A# ps -ef|grep etcd( I1 f4 X( }& E- p0 R
5 Q9 j+ s* [+ o. q* H
# cat /etc/hosts
& o$ ^, e: R# p1 l, z# vi /etc/hosts
- p& P6 e; T8 v# K' D) A# kk get po& ^2 m0 [) S9 l+ m% H- j( n
# kk logs -f etcd-cmp-server02
# h. X: L3 P3 t) T! u( Z' F9 i( y1 o5 N+ O: T8 O1 ?
# ls
0 |: P& v6 @$ {7 w/ Z8 C* T# cd manifests/
5 D' F: s5 `* u& O4 |! Z# ls
4 E* e# u. |9 ]* t8 S4 D# H# mv etcd.yaml ../+ }8 f# W- Z. R9 j
# cd ../: a1 n* ?9 a4 C) c
# ls1 q' E9 u1 Z1 k! U( y8 S$ \
# ps -ef|grep etcd
; `5 @5 ?3 _' N5 Q# ls
, }1 P9 ~+ o' f, P$ H1 B# mv etcd.yaml manifests/; P/ C% c7 S: E: C0 [: ^
# kk get po
, S8 ?5 H" ^  w# k get po
0 ~6 @' D: M/ j' s; \8 G; G# k get node" {6 L4 j9 p4 u  ]8 {7 X4 i% X( [
# kk get po
7 P) Q5 k& o, l0 ^" H. c3 C# kk logs -f etcd-cmp-server02" d- O: E0 j+ U/ a
6 K/ N1 E2 L0 }" p% D" K
# cd manifests/
5 o1 z3 f0 y# Z+ j. m# ls5 N3 R, s/ @0 w
# mv etcd.yaml ../
0 `8 w$ ~- L4 n# rm -rf /data/etcd// N5 N: ?$ |: ?
# ls, z* ]2 F/ l4 m4 |) S" ~
# cd ../
3 P+ L. N: B- [1 ^# ls
! W: e. x( a) W" @, s) T: Z9 n# mv etcd.yaml manifests/
: B/ {$ u4 H) ?+ g0 x9 }4 l5 w# kk get po
* X8 X+ x* D5 {* d6 Z# kk logs -f etcd-cmp-server02. b9 a3 q1 J$ L+ @' z
# kk get po* O& h5 k5 M/ q8 {+ @# R) a5 d
# systemctl restart kubelet
4 \/ H& j: o; u* @9 j# kk get po
/ u. z6 Y$ q. u# k3 L/ ^# kk get po
5 l2 G. `) E9 u# cat /etc/hosts
6 ^$ u/ n( V$ j/ ?6 n# kk logs -f etcd-cmp-server02
+ a( b. A5 m$ i) N* J# kk logs -f etcd-cmp-server02$ ~5 }3 b! w( i  Q9 Q: b  x
# kk logs -f etcd-cmp-server02
( ~+ a0 m* |' o  ~% c# kk logs -f etcd-cmp-server02- T4 X: f" X5 k; x
# ls
$ C" g( J* v( `6 u6 d, G5 \) f# cd manifests/
9 {% ]9 G/ M9 P% i) L( f# ls2 O# t# c6 Z# F/ N4 V) f  b% }
# vi etcd.yaml
' c" n' R8 f5 L0 x! @- q6 G# cat etcd.yaml
" `3 U! N: H# `' e! W# vi etcd.yaml
. ~) R' z" P0 |3 V; P' N# ls% P/ W2 p( E6 g9 i
# mv etcd.yaml ../
$ d, K. K' e3 |  N0 i- n7 g' q0 L2 ?# ls
6 Z# G  o% S& S8 e" ~# cd ../
2 A3 [' Q6 h7 h/ ?3 S) `# ls
% P; w8 m) h4 Y3 h" ^( O* Y# mv etcd.yaml manifests/: V! d0 E5 x3 S3 h( w1 w
# ls
: p) Y9 _% n5 Q" R, b8 L; w, c0 ]+ `9 n# kk get po4 c8 W7 |0 n' @4 d) F6 L
# kk get po
7 e& D3 }7 E+ k6 n5 v8 w" ]( D1 f# kk get po" c# e9 A8 ^$ c$ C
# kk get po
0 q  C# `: u( q( u( t/ ]& D# kk get po
5 H% T; `) W- P6 S% R8 w# kk get po) V/ f8 V% D& I) b' x3 }- l
# kk get po2 E! d; M; X' i& M% {* v
# kk logs -f etcd-cmp-server02
  U2 S- t- S5 I5 r' j  s# ls; R, L" p) R% S9 d' A1 x& E
# mv manifests/etcd.yaml .. k  o5 z+ U  Y3 o& L
# rm -rf /data/etcd/
+ x9 n+ Q9 g+ h9 c# ls1 j2 d5 U6 M" _" \" U* |% J, T
# mv etcd.yaml manifests/
2 j0 O9 S4 d5 g4 ?3 f+ B3 p# cd manifests/) i2 k5 J* u/ R; |. ?
# ls3 I" G8 ~/ s+ B
# s
8 K+ C% E. ^* J% f" }# cd ../) M$ x% r5 ~) r* j& J+ n2 V3 |2 [
# ls" f# a, ?3 h! `; W
# kk get po
2 _$ h! ^! V1 A( P
* k( b# L! I+ C! h0 r; G# kk get po0 M6 P2 x2 o6 S$ S+ z7 y: C0 a
# kk get po
) E1 o' }3 [% a2 ~% }; e7 ]4 E# kk get po
# A' ?* M1 r: Z# kk logs -f etcd-cmp-server02
; j6 l7 P* s" X* j7 y' s: e% p# kk get po
/ o8 g5 A) O/ g) K: H1 Q* r0 m# kk get po
+ F9 b; h: n1 O" C: v! M# kk logs -f etcd-cmp-server02
, G0 Q  b5 o7 S! j! i6 R3 @! v  a# ls
  `  i7 I' z1 A) @' \+ o9 S# mv manifests/etcd.yaml .4 n, O* {# K. q, h4 I1 `
% d; o/ o4 h: C$ e
# kk get po5 |. o5 G; c/ Q% C5 B
# ls
8 a! j: H2 Y, x2 b# rm -rf /data/etcd/
$ N/ B# S- K/ o' Z6 f8 G5 r# ls& ~7 E' E3 O% l
# mv etcd.yaml manifests/; G3 Q# u1 A# h7 x& z0 u6 w
#
6 M4 R6 @; p3 t# kk get po( e: Z2 ?) M, @; C
# kk logs -f etcd-cmp-server02/ s4 |1 Q# |' H  S" s
# ls
& Q# s* {# M/ x  Y# kk get po
" n1 c, }; o1 R; ~6 x( e# kk logs -f kube-apiserver-cmp-server02
6 P# I4 C2 H" X! `8 N: u) u5 C4 g7 x8 p, Z" p
# kk get po: V% W8 r5 `0 N. Z1 [
# kk logs -f etcd-cmp-server02
- a; R* Y4 N% h! X- E# ls" Q7 H4 b2 g( U( ^# f! s0 u
# cat manifests/etcd.yaml 9 e' w  t! H0 a* s) x; o
# ls
/ N/ u5 y" s$ y4 n7 J7 @# ls
- t0 n4 ~. d5 ~5 g/ G# ls5 q: ^: a  L1 N8 Z, }
# ls: @  M; J* Y; N) `' _" t2 O
# ls( [5 }. ~& O( y/ ?# U6 Z/ [
# ls2 _. ]/ `* y$ T& }: d9 O0 a+ b, l
# ls
  S: X# ~* C! w# u( b' a" N# ls
" Y& N- W* x+ Q6 o# kk get po
. ^9 `% H! z! d) U8 c# N# kk logs -f etcd-cmp-server02
8 Z! r. S% ^/ e# kk get po+ o; S  t% M( Z2 p
, H4 S4 T, ~8 l6 v
# kk get po. o5 g8 N( B' W0 f6 \; F
# kk logs -f etcd-cmp-server024 ^: A* }3 J% i1 G* n- ^+ a! L
# kk logs -f etcd-cmp-server02
1 q, Z$ }- `) {& c: c* j# kk get po' T  j; @, B, n7 K$ G
# k get po
9 H9 @: L& E) m. b$ k4 C# kk get po2 C4 W; y# y4 j' B# s% F
# ls( R+ F8 L- W- |/ P  F7 k/ q, N
# cd manifests/
7 `: u" z+ e) J: w# ls/ H" I- I* V2 v" R
# kk get po& V1 `: ^# x" W7 j- b, D% U/ |
# kk logs -f kube-apiserver-cmp-server025 ~/ ~, N4 W* T0 u$ u% }( p
# kk get po/ {9 @% D8 F7 |
# ls3 O6 W, y' ?/ i1 A5 D
# mv kube-apiserver.yaml ../6 G$ c7 p0 C: U  c+ M' @3 M7 C
# cd ../
2 `+ v2 ?  v. d# mv kube-apiserver.yaml manifests/3 T6 N8 v, o1 ^7 s+ C5 t: L
# kk get po: b; M7 h% |* ]/ e0 O5 H3 M
# kk get po
; ?; S* ^9 r8 |. ]* M! B# kk logs -f kube-apiserver-cmp-server02
, G8 N$ t' Y: @8 f+ M9 V7 j( N2 ?# ps -ef|grep etcd
! s; I& |& H$ H, s( i* U# ss -tunlp|grep 2379
8 e- Y4 ~5 ]5 H' J, E  X( p# kk logs -f kube-apiserver-cmp-server02
* k; R8 e' Z- U# kk get po) q+ }7 |- ?: D; u3 w  s% P  ~8 z3 x
# kk get po -owide
5 u! G6 ^0 ?4 @, Y# s+ e  f% n7 b( Q/ R
# kk get po' R! j3 q* F9 J0 H4 O
# ETCDCTL_API=3 etcdctl --cacert=/etc/kubernetes/pki/etcd/ca.crt --cert=/etc/kubernetes/pki/etcd/peer.crt --key=/etc/kubernetes/pki/etcd/peer.key --endpoints=https://10.166.7.5:2379,https://10.166.7.6:2379,https://10.166.7.7:2379 endpoint status --write-out=table+ v  T. s; K/ n, v5 H" O
# kk get po
2 o( u6 M$ [0 Z6 l9 ?8 I# ^# kk get po8 Z3 s# D0 ?7 }: Y2 z3 O
# kk get po# W6 P. U$ ^$ A# Y, `
# kk logs -f kube-apiserver-cmp-server029 \2 Z1 }: J8 R' a! V4 }& w7 i
# tennet 127.0.0.1:23798 B, \; O* u/ f' ~! z# M( {1 T1 {

. O9 ]5 G& I' j: G% e3 ?# ls
! L, a5 w  e5 G2 b# cd manifests/
7 `5 @4 E6 M) a+ t, @* J) M  j- M% I# ls
  \# K# g2 [/ N# k0 _# cat kube-apiserver.yaml & I! D* w! K# v
# kk get po
6 [( x! P! ]" q, B# kk get po
5 e. J( l5 y2 z* u; d( a6 a
; p  {+ B% s- i+ ?* X1 r, ?. X# kk get po
' ?; u- m+ U5 P- T! o/ v" G. f9 `) S# df -h
. E& w3 y2 F- ]9 V# ls
1 ?* g- D  L( T8 Y( J, \# cd /
* q6 A( A  G# N# cd
' U9 i* u/ K7 Q# cd /home/devops/; j2 c6 o2 ]+ E1 r, H' ?' \
# ls6 }( E$ ^$ ?0 P* {
# cd : ~/ n. M8 Z6 O; k
# ls% m/ V4 z, s% E! \
# du -sh *
: K, j1 j" U- x  B- g* I* f# cd /
( n3 M2 Q. _+ {; j  N$ f# du -sh *
2 K. P5 S0 p# n# cd data/2 y: O" C) X: I0 M
# ls  Q- y+ {& |- a0 k' {$ L& {! ^
# du -sh *
( N4 V0 ^- ^3 l0 [' V% Y- \. y  I- f" o0 p+ _( C) h# Y" N1 c
# journalctl -xefu kubelet
8 p  }- z4 `/ T' @4 H: b# ;s- h% o1 W$ z8 ]( C3 m. `& }! [; P
# /usr/local/bin/nerdctl -n k8s.io tag caas4/keystone-sync-db:latest 10.166.7.5:30443/caas/keystone-sync-db:latest
# w: C* Q3 N$ ^9 M$ i# /usr/local/bin/nerdctl -n k8s.io push 10.166.7.5:30443/caas/keystone-sync-db:latest; s# f% P4 V" w" B3 s; b3 ]- v
# /usr/local/bin/nerdctl -n k8s.io login 10.166.7.5:30443
5 j3 v* {; I% F5 Q3 a! W; v# /usr/local/bin/nerdctl -n k8s.io push 10.166.7.5:30443/caas/keystone-sync-db:latest' ~) v1 R. A' q% \2 `- Q3 x
# /usr/local/bin/nerdctl -n k8s.io tag caas4/perception 10.166.7.5:30443/caas/perception:latest
" p1 y( M# A$ s# /usr/local/bin/nerdctl -n k8s.io tag sameersbn/gitlab:13.10.3 10.166.7.5:30443/cmp/gitlab:13.10.3
) Q) }# G  u0 u1 {/ Y#  /usr/local/bin/nerdctl -n k8s.io push 10.166.7.5:30443/cmp/gitlab:13.10.38 K- o9 |7 r: G! P
# /usr/local/bin/nerdctl -n k8s.io tag sameersbn/postgresql:12-20200524 10.166.7.5:30443/cmp/postgresql:12-20200524
. c/ I1 m* ~' R& Z+ L2 e, d+ m# /usr/local/bin/nerdctl -n k8s.io tag cmp/redis:5.0.6  10.166.7.5:30443/cmp/redis:5.0.69 g- H  i# @# P
# /usr/local/bin/nerdctl -n k8s.io push 10.166.7.5:30443/cmp/redis:5.0.6
! f! I8 O' o" f: u. v: ?4 S# /usr/local/bin/nerdctl -n k8s.io tag busybox  10.166.7.5:30443/cmp/busybox:latest% H) j' ]! |, B: u1 h" `+ K
# /usr/local/bin/nerdctl -n k8s.io push 10.166.7.5:30443/cmp/busybox:latest1 N" N# f6 E  b
# kubectl get node --show-labels
5 a. [! b3 A  O% o# journalctl -xefu kubelet9 a! a! u$ [7 S9 h' c$ |! O9 K% R, _
# journalctl -xefu kubelet  ^% K. x. m: c2 I7 G; e
# journalctl -xefu kubelet
# t" C/ _6 c- m# n. l# journalctl -xefu kubelet
3 {0 s# ^3 [% P' h, W5 k# kubeadm reset -f
1 F; ~/ h6 e! ~0 B2 O! U( [0 ^2 [" V# vi /etc/hosts
. I1 h% ^, _4 B8 d4 z% @8 e/ ~# cat /etc/hosts5 s& A" n) q; p
# systemctl stop firewalld || true
3 j0 G2 N# ?/ G" c& t# systemctl disable firewalld || true
, {% L4 j+ z/ W- B" m# setenforce 0  c$ w) X4 f5 T- L
# sed -i s/^SELINUX=.*$/SELINUX=disabled/ /etc/selinux/config
& s0 ]) D$ q, n8 Y0 I& C1 S# R3 R# modprobe br_netfilter && modprobe nf_conntrack: T- X+ T, ]) G8 Q
# cat > /etc/sysctl.d/98-k8s.conf << EOF2 n4 Y$ o: k/ e: E& {
# net.netfilter.nf_conntrack_tcp_be_liberal = 19 i+ C( h" J9 d' `! N4 U
# net.netfilter.nf_conntrack_tcp_loose = 1
; O! y/ @( D- p/ [* I  ]$ y# net.netfilter.nf_conntrack_max = 5242884 g9 Y5 l0 [  q; Q
# net.netfilter.nf_conntrack_buckets = 131072; |* o' `! _8 q9 f" \7 R
# net.netfilter.nf_conntrack_tcp_timeout_established = 21600+ I' s" g% u/ R! Z
# net.netfilter.nf_conntrack_tcp_timeout_time_wait = 1209 o4 g' S5 W* d1 u2 Q" _) Q
# net.ipv4.neigh.default.gc_thresh1 = 10243 z& q% @1 l9 a
# net.ipv4.neigh.default.gc_thresh2 = 2048
4 @8 m" a# ~! v' N# net.ipv4.neigh.default.gc_thresh3 = 4096# f2 \1 @* [% S# `
# vm.max_map_count = 262144, n$ }6 `" {$ b( x' l* }. R
# net.ipv4.ip_forward = 1; [: w9 F6 l% ?5 V  K8 J3 P2 f
# net.ipv4.tcp_timestamps = 1
$ Y1 b! D3 O$ C, g5 y0 S9 u1 j# net.bridge.bridge-nf-call-ip6tables = 1
$ ~( V+ _9 a  _1 |" S2 Z. A' p# net.bridge.bridge-nf-call-iptables = 1( }7 `: t' c. v0 {' X) }
# net.ipv6.conf.all.forwarding=10 ]9 e% _# c  Y' Q
# fs.file-max=1048576
9 g, `! N8 [0 K) s9 m# fs.inotify.max_user_instances = 81924 ~9 S& j1 ^9 f: T, p
# fs.inotify.max_user_watches = 524288/ E# l$ s1 n  v# U" @- T
# EOF
" q3 Q. x8 q) I  f& m
! L3 O& a+ k* g; L$ I# cat > /etc/security/limits.d/98-k8s.conf << EOF
6 {3 j/ @, \2 b& }# * soft nproc 65535
/ [1 }/ d! a, k# * hard nproc 655351 m; t' N& g# w  J3 H' z
# * soft nofile 65535
# ~8 `3 G! }! q/ ^4 m3 ^# * hard nofile 65535, f0 j/ {) c9 j
# EOF
! x) e7 h- ^. z) l" _4 q7 Z% Q$ {6 b/ t  }
# sysctl --system
9 @$ ]" k4 J8 ?, r3 }- Z" [# sysctl -p
. H' A. y- F; K0 V# swapoff -a0 \4 T  C4 z1 m4 @  m8 X' |6 D! q
# sed -i /swap/d /etc/fstab
3 Y1 [" @# u% f& W# kubeadm join apiserver.cluster.local:6443 --token 25omv5.cqx4gnuhoyh7nwxy --discovery-token-ca-cert-hash sha256:eaf7ee645c5cc0af1782df11c38519b84d643f06d9c6613009047e9b2e275524
4 }; f, |# b. {, A2 O# kubeadm reset -f
! v: y  b5 F+ z; q+ L3 S7 {# kubeadm reset -f8 Q& o+ u; ^' ^' W# W
# kubeadm join apiserver.cluster.local:6443 --token 25omv5.cqx4gnuhoyh7nwxy --discovery-token-ca-cert-hash sha256:eaf7ee645c5cc0af1782df11c38519b84d643f06d9c6613009047e9b2e275524 " c/ o3 A& _3 j" H' A! s
# /usr/local/bin/nerdctl -n k8s.io images
% w4 X5 @3 E$ f9 l! B2 Z# /usr/local/bin/nerdctl -n k8s.io tag rancher/local-path-provisioner:v0.0.24  10.166.7.5:30443/cmp/local-path-provisioner:v0.0.24
2 n! }& s3 j3 N6 M5 v- v( x2 y# /usr/local/bin/nerdctl -n k8s.io push  10.166.7.5:30443/cmp/local-path-provisioner:v0.0.24* y; E0 e+ W) Q: Y8 u  A) j" A& j
! [% |* A5 V- r- t; G  d
: E. r/ I7 ~0 c! F4 g! v" T: p
# cd local-path-provisioner/
$ g( ~8 N, k- ^. Z8 d) F# ls
+ [" S! _( k1 d* P# du -sh *. D* j  U; i# o: L  H6 R% X$ B
# cd pvc-cedd6757-22af-46a3-a863-cdc4a02af016_caas-system_minio/7 u# k2 z6 L2 E6 i
# du -sh *& W! z' s' Y% r) Z0 P) a+ {5 ~" d, g
# cd mgmt/
4 D  ]5 r' f, H% B# ls4 v/ |# f2 N9 C% U1 Y. p/ p
# cat /etc/kubernetes/kubelet.conf8 A8 i) ?) p8 M4 i! o8 z
# cat /etc/kubernetes/kubelet.conf6 J7 ]9 |6 \! b& R7 C! H* Z: |
# cat /etc/kubernetes/controller-manager.conf
1 n" M2 Z. @: l- v# cat /etc/kubernetes/kubelet.conf + U& {# [# z1 f  p1 y
; H# J" J6 L9 q0 P
, v5 ?4 W9 q1 }& `
# cat /etc/kubernetes/kubelet.conf $ S% M6 m8 A7 b% O8 l
# cat /var/lib/kubelet/config.yaml
( H7 U  w& T  q! q' `: x
% Q  D5 O" w$ `% o) e
回复 支持 反对

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 开始注册

本版积分规则

关闭

站长推荐上一条 /4 下一条

北京云银创陇科技有限公司以云计算运维,代码开发

QQ|返回首页|Archiver|小黑屋|易陆发现技术论坛 ( 蜀ICP备2026014127号-1 )点击这里给我发消息

GMT+8, 2026-4-8 21:26 , Processed in 0.051469 second(s), 24 queries .

Powered by Discuz! X3.4 Licensed

© 2012-2025 Discuz! Team.

快速回复 返回顶部 返回列表