在CentOS上部署Kubernetes(k8s)集群的流程大致如下:
关闭防火墙:
systemctl stop firewalld
systemctl disable firewalld
关闭SELinux:
sed -i 's/enforcing/disabled/' /etc/selinux/config
setenforce 0
禁用交换分区:
swapoff -a
sed -i 's/.*swap.*/#&/' /etc/fstab
设置主机名和hosts文件:
hostnamectl set-hostname <hostname>
cat >> /etc/hosts << EOF
192.168.10.1 <node1-ip>
192.168.10.2 <node2-ip>
192.168.10.3 <master-ip>
EOF
修改内核参数:
cat << EOF > /etc/sysctl.d/k8s.conf
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
EOF
sysctl --system
时间同步:
yum install ntpdate -y
ntpdate time.windows.com
安装依赖包:
yum install -y yum-utils device-mapper-persistent-data lvm2
配置Docker国内源:
yum-config-manager --add-repo http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
安装Docker:
yum install -y docker-ce docker-ce-cli containerd.io
启动Docker并设置开机启动:
systemctl start docker && systemctl enable docker
添加Kubernetes源:
cat << EOF > /etc/yum.repos.d/kubernetes.repo
[kubernetes]
name=Kubernetes
baseurl=https://mirrors.aliyun.com/kubernetes/yum/repos/kubernetes-el7-x86_64/
enabled=1
gpgcheck=0
repo_gpgcheck=0
gpgkey=https://mirrors.aliyun.com/kubernetes/yum/doc/yum-key.gpg https://mirrors.aliyun.com/kubernetes/yum/doc/rpm-package-key.gpg
EOF
安装kubelet、kubeadm、kubectl:
yum install -y kubelet-1.22.15 kubeadm-1.22.15 kubectl-1.22.15
systemctl enable kubelet && systemctl start kubelet
初始化Master节点:
kubeadm init --apiserver-advertise-address <master-ip> --image-repository registry.aliyuncs.com/google_containers --kubernetes-version v1.22.15 --service-cidr 10.96.0.0/12 --pod-network-cidr 10.244.0.0/16 --ignore-preflight-errors
拷贝Kubernetes认证文件:
mkdir -p $HOME/.kube
sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
sudo chown $(id -u):$(id -g) $HOME/.kube/config
在Master节点获取Join命令:
kubeadm token create --print-join-command
在所有Worker节点执行Join命令:
kubeadm join <master-ip>:6443 --token <token> --discovery-token-ca-cert-hash sha256:<hash>
wget https://docs.projectcalico.org/manifests/calico.yaml --no-check-certificate
kubectl apply -f calico.yaml
在Master节点查询节点状态:
kubectl get nodes
查看所有Pods是否正常运行:
kubectl get pods --all-namespaces
请注意,上述步骤中的版本号和具体命令可能会因不同的CentOS版本和Kubernetes版本而有所差异。建议参考最新的官方文档或教程以确保部署成功。