高可用 apiServer :https://kubernetes.io/docs/setup/independent/high-availability/
高可用 etcd: http://www.vservices.top/docs/automated/etcd
使用kubeadm 安装k8s
打印默认初始化配置文件
kubeadm config print init-defaults --component-configs KubeProxyConfiguration
初始化配置文件
apiVersion: kubeadm.k8s.io/v1beta1
kind: InitConfiguration
---
apiVersion: kubeadm.k8s.io/v1beta1
clusterName: kubernetes
controlPlaneEndpoint: "172.16.0.188:6443"
etcd:
external:
endpoints:
- "https://172.16.0.185:2379"
- "https://172.16.0.186:2379"
- "https://172.16.0.187:2379"
caFile: /etc/kubernetes/pki/etcd/ca.pem
certFile: /etc/kubernetes/pki/etcd/client.pem
keyFile: /etc/kubernetes/pki/etcd/client-key.pem
imageRepository: registry.aliyuncs.com/google_containers
kind: ClusterConfiguration
kubernetesVersion: v1.13.0
networking:
serviceSubnet: "172.25.0.0/16"
podSubnet: "172.26.0.0/16"
dnsDomain: "lianhang.jetair"
apiServer:
certSANs:
- "172.16.0.185"
- "172.16.0.186"
- "172.16.0.187"
- "172.16.0.188"
- "kapi.lianhang.jetair"
拉取镜像
kubeadm config images list
kubeadm config images pull --config kubeadm-init.yaml
初始化
kubeadm init --config kubeadmin-init.yaml
重置初始化
kubeadm reset -f
多master集群加入命令
scp -r /etc/kubernetes/pki root@xxx:/etc/kubernetes/ #拷贝证书文件
kubeadm token create --print-join-command #获取加入集群命令并在后添加 --control-plane
#如:
# kubeadm join 172.16.0.183:6443 --token rnlt5o.pax7g54g6prdh5ye --discovery-token-ca-cert-hash sha256:52a0dada3a7e0fb4ae77c0b0161b4bf1446dbadde0ca7b302366d837a8184953 --control-plane
文档更新时间: 2021-04-20 17:19 作者:张尚