Kubernetes \u96c6\u7fa4\u72b6\u6001\u6587\u4ef6<\/a>\uff0c\u5305\u542b\u4e86\u83b7\u53d6\u8be5\u96c6\u7fa4\u6240\u6709\u6743\u9650\u7684\u8ba4\u8bc1\u51ed\u636e\uff0c\u4f7f\u7528 RKE v0.2.0 \u65f6\u624d\u4f1a\u521b\u5efa\u8fd9\u4e2a\u6587\u4ef6\u3002<\/li>\n<\/ul>\n\u4f7f\u7528kubectl\u547d\u4ee4\u67e5\u770b\u96c6\u7fa4<\/h2>\n
srs101\u670d\u52a1\u5668\u6267\u884c<\/strong><\/p>\n\u4e0b\u8f7dkubectl\u547d\u4ee4\u5de5\u5177<\/h3>\n
kubectl\u7248\u672c\u9700\u8981\u4e0ek8s\u7248\u672c\u4e00\u81f4<\/strong><\/p>\ncurl -L \"https:\/\/storage.googleapis.com\/kubernetes-release\/release\/v1.24.4\/bin\/linux\/amd64\/kubectl\" -o \/usr\/local\/bin\/kubectl\nchmod +x \/usr\/local\/bin\/kubectl\nln -s \/usr\/local\/bin\/kubectl \/usr\/bin\/kubectl\nkubectl version --client\n<\/code><\/pre>\n\u914d\u7f6e\u8fde\u63a5\u6587\u4ef6<\/h3>\nmkdir ~\/.kube\ncd \/data\/rancher\ncp kube_config_cluster.yml \/root\/.kube\/\nmv \/root\/.kube\/kube_config_cluster.yml \/root\/.kube\/config\n<\/code><\/pre>\n\u67e5\u770b\u96c6\u7fa4\u72b6\u6001<\/h3>\n[root@srs103 rancher]# kubectl get nodes -o wide\nNAME STATUS ROLES AGE VERSION INTERNAL-IP EXTERNAL-IP OS-IMAGE KERNEL-VERSION CONTAINER-RUNTIME\n10.80.210.103 Ready controlplane,etcd,worker 22h v1.24.4 10.80.210.103 <none> CentOS Linux 7 (Core) 3.10.0-1160.el7.x86_64 docker:\/\/20.10.18\n10.80.210.104 Ready controlplane,etcd,worker 22h v1.24.4 10.80.210.104 <none> CentOS Linux 7 (Core) 3.10.0-1160.el7.x86_64 docker:\/\/20.10.18\n10.80.210.105 Ready controlplane,etcd,worker 22h v1.24.4 10.80.210.105 <none> CentOS Linux 7 (Core) 3.10.0-1160.el7.x86_64 docker:\/\/20.10.18\n\n\n[root@srs103 rancher]# kubectl get cs -o wide\nWarning: v1 ComponentStatus is deprecated in v1.19+\nNAME STATUS MESSAGE ERROR\netcd-0 Healthy {\"health\":\"true\",\"reason\":\"\"}\netcd-2 Healthy {\"health\":\"true\",\"reason\":\"\"}\netcd-1 Healthy {\"health\":\"true\",\"reason\":\"\"}\nscheduler Healthy ok\ncontroller-manager Healthy ok\n\n<\/code><\/pre>\nHelm3\u5b89\u88c5Rancher\u9ad8\u53ef\u7528<\/h2>\n\u5b89\u88c5Helm3<\/h3>\n\u4e0b\u8f7d\u5b89\u88c5helm3<\/h4>\n
srs101\u670d\u52a1\u5668\u6267\u884c<\/strong><\/p>\ncurl -L https:\/\/get.helm.sh\/helm-v3.10.0-linux-amd64.tar.gz -o \/usr\/local\/src\/helm-v3.10.0-linux-amd64.tar.gz\ncd \/usr\/local\/src && tar -zxvf helm-v3.10.0-linux-amd64.tar.gz\nmv .\/linux-amd64\/helm \/usr\/local\/bin\/helm && chmod +x \/usr\/local\/bin\/helm\nln -s \/usr\/local\/bin\/helm \/usr\/bin\/helm\nhelm version\n<\/code><\/pre>\nHelm3\u5b89\u88c5Rancher\u96c6\u7fa4<\/h3>\n
\u53c2\u8003\u5b98\u7f51\u6b65\u9aa4\uff1ahttps:\/\/docs.rancher.cn\/docs\/rancher2\/installation\/install-rancher-on-k8s\/_index<\/code><\/p>\nsrs101\u670d\u52a1\u5668\u6267\u884c<\/strong><\/p>\n\u4f7f\u7528helm repo add\u547d\u4ee4\u6dfb\u52a0Rancher chart\u4ed3\u5e93\u5730\u5740<\/h4>\n# \u56fd\u5185\u7528\u6237\uff0c\u53ef\u4ee5\u4f7f\u7528\u653e\u5728\u56fd\u5185\u7684 Rancher Chart \u52a0\u901f\u5b89\u88c5\nhelm repo add rancher-stable http:\/\/rancher-mirror.oss-cn-beijing.aliyuncs.com\/server-charts\/stable\n# \u5b98\u7f51\u5730\u5740\nhelm repo add rancher-stable https:\/\/releases.rancher.com\/server-charts\/stable\n<\/code><\/pre>\n\u4e3a Rancher \u521b\u5efa Namespace<\/h4>\n
\u6211\u4eec\u9700\u8981\u5b9a\u4e49\u4e00\u4e2a Kubernetes Namespace\uff0c\u5728 Namespace \u4e2d\u5b89\u88c5\u7531 Chart \u521b\u5efa\u7684\u8d44\u6e90\u3002\u8fd9\u4e2a\u547d\u540d\u7a7a\u95f4\u7684\u540d\u79f0\u4e3acattle-system<\/code>\uff1a<\/p>\nkubectl create namespace cattle-system<\/code><\/p>\n\u9009\u62e9\u60a8\u7684 SSL \u9009\u9879<\/h4>\n
\u53c2\u8003\u5b98\u7f51\uff0c\u6709\u4ee5\u4e0b\u4e09\u79cd\uff1a<\/p>\n
\n- Rancher \u751f\u6210\u7684\u81ea\u7b7e\u540d\u8bc1\u4e66<\/strong><\/li>\n
- Let’s Encrypt<\/strong><\/li>\n
- \u81ea\u7b7e\u8bc1\u4e66<\/li>\n<\/ol>\n
\u56e0\u4e2d\u56fd\u6280\u672f\u56e2\u961f\u5efa\u8bae\u4f7f\u7528\u81ea\u7b7e\u8bc1\u4e66<\/code>,\u6240\u4ee5\u4e5f\u624d\u6709\u6b64\u65b9\u5f0f\u3002\u5176\u4ed6\u4e24\u79cd\u53ef\u53c2\u8003\u5b98\u7f51\u6b65\u9aa4<\/p>\n\u751f\u6210\u81ea\u7b7e\u8bc1\u4e66<\/h4>\n
\u81ea\u7b7e\u8bc1\u4e66\u811a\u672c-\u5b98\u65b9\u751f\u6210\u811a\u672c\uff1ahttps:\/\/docs.rancher.cn\/docs\/rancher2.5\/installation\/resources\/advanced\/self-signed-ssl\/_index\/#41-%E4%B8%80%E9%94%AE%E7%94%9F%E6%88%90-ssl-%E8%87%AA%E7%AD%BE%E5%90%8D%E8%AF%81%E4%B9%A6%E8%84%9A%E6%9C%AC<\/code><\/p>\nmkdir -p \/data\/rancher\/ca && cd \/data\/rancher\/ca\n\n.\/create_self-signed-cert.sh --ssl-domain=www.rancher.local --ssl-size=2048 --ssl-date=3650\n<\/code><\/pre>\n\u6dfb\u52a0 \u81ea\u7b7e\u8bc1\u4e66<\/h4>\n
\u4f7f\u7528 kubectl<\/code> \u521b\u5efa tls<\/code> \u7c7b\u578b\u7684\u5bc6\u6587\u3002<\/p>\nkubectl -n cattle-system create secret tls tls-rancher-ingress \\\n --cert=tls.crt \\\n --key=tls.key\n<\/code><\/pre>\n\u62f7\u8d1d CA \u8bc1\u4e66\u5230\u540d\u4e3a cacerts.pem<\/code> \u7684\u6587\u4ef6\uff0c\u4f7f\u7528 kubectl<\/code> \u547d\u4ee4\u5728 cattle-system<\/code> \u547d\u540d\u7a7a\u95f4\u4e2d\u521b\u5efa\u540d\u4e3a tls-ca<\/code> \u7684\u5bc6\u6587\u3002<\/p>\nkubectl -n cattle-system create secret generic tls-ca \\\n --from-file=cacerts.pem=.\/cacerts.pem\n<\/code><\/pre>\nhelm\u5b89\u88c5rancher<\/h4>\nhelm install rancher rancher-stable\/rancher \\\n --namespace cattle-system \\\n --set hostname=www.rancher.local \\\n --set bootstrapPassword=\"rancher\" \\\n --set ingress.tls.source=secret \\\n --set privateCA=true \\\n --set replicas=2\n<\/code><\/pre>\n\u68c0\u67e5\u5b89\u88c5\u8fdb\u5ea6\uff1a<\/h4>\n[root@srs103 ca]# kubectl -n cattle-system get all\nNAME READY STATUS RESTARTS AGE\npod\/rancher-7cdf6968fd-86ph7 1\/1 Running 1 (5h20m ago) 7h6m\npod\/rancher-7cdf6968fd-vdspc 1\/1 Running 4 (5h15m ago) 7h7m\npod\/rancher-webhook-66dcd7db66-strqs 1\/1 Running 0 6h52m\n\nNAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE\nservice\/rancher ClusterIP 10.43.19.253 <none> 80\/TCP,443\/TCP 7h11m\nservice\/rancher-webhook ClusterIP 10.43.2.238 <none> 443\/TCP 6h52m\nservice\/webhook-service ClusterIP 10.43.193.244 <none> 443\/TCP 6h52m\n\nNAME READY UP-TO-DATE AVAILABLE AGE\ndeployment.apps\/rancher 2\/2 2 2 7h11m\ndeployment.apps\/rancher-webhook 1\/1 1 1 6h52m\n\nNAME DESIRED CURRENT READY AGE\nreplicaset.apps\/rancher-7cdf6968fd 2 2 2 7h11m\nreplicaset.apps\/rancher-webhook-66dcd7db66 1 1 1 6h52m\n\n<\/code><\/pre>\n\u5230\u6b64\uff0c\u6211\u4eec\u5df2\u7ecf\u5b89\u88c5\u5b8c\u4e86\uff01<\/p>\n
\u7531\u4e8e\u57df\u540d\u662f\u81ea\u5b9a\u4e49\u7684\uff0c\u6211\u4eec\u9700\u8981\u5728\u81ea\u5df1\u7684windows\u4e0a\u914d\u7f6ehosts\uff1a<\/p>\n
![\"image-20221025172854914\"](\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\")
<\/div><\/p>\n
\u9047\u5230\u95ee\u9898<\/h2>\n1.\u9047\u5230\u544a\u8b66Warning: networking.k8s.io\/v1beta1 Ingress is deprecated in v1.19+, unavailable in v1.22+; use networking.k8s.io\/v1 Ingress<\/code><\/h3>\n\u6700\u521d\u4f7f\u7528k8s\u7248\u672c\u662f1.20+\uff0c\u9047\u5230ingress\u65e0\u6cd5\u8d1f\u8f7d\u5747\u8861\u7684\u95ee\u9898<\/p>\n
\u4e8e\u662f\u6d4b\u8bd5demo\u53d1\u73b0\u662f\u65b0\u7248\u672c\u7684\u8bed\u6cd5\u9519\u8bef\u5bfc\u81f4\u7684<\/p>\n
<\/div><\/p>\n
<\/div><\/p>\n
<\/div><\/p>\n
\u4fee\u6539\u6587\u4ef6\u8bf7\u53c2\u8003\u5b98\u65b9\u6587\u6863\uff1a<\/p>\n
\n Kubernetes version 1.20+ introduces the networking.k8s.io API version as stable. If you have ingresses that predate K3S 1.20, you have until Kubernetes 1.22 to update them. Until then, if you use old-style ingress definitions, you will receive a warning like Warning: networking.k8s.io\/v1beta1 Ingress is deprecated in v1.19+, unavailable in v1.22+; use networking.k8s.io\/v1 Ingress when you apply the ingress to a cluster.\n<\/p><\/blockquote>\n
\u90e8\u7f72\u8fc7\u7a0b\u53c2\u8003\uff1a<\/p>\n
\nhttps:\/\/docs.rancher.cn\/docs\/rancher2.5\/installation\/install-rancher-on-k8s\/_index<\/code><\/li>\nhttps:\/\/www.cnblogs.com\/zoujiaojiao\/p\/15011469.html<\/code><\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"RKE\u642d\u5efak8s\u96c6\u7fa4&Helm3\u90e8\u7f72Rancher\u9ad8\u53ef\u7528 \u6b64\u6b21\u662f\uff1aRKE\u7684\u65b9\u5f0f\u5feb\u901f\u90e8\u7f72K8S\u96c6\u7fa4\uff08ht […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[332,353,260],"tags":[440,352,351,418],"class_list":["post-2452","post","type-post","status-publish","format-standard","hentry","category-docker","category-kubernetes","category-linux","tag-helm","tag-k8s","tag-kubernetes","tag-rke"],"_links":{"self":[{"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/posts\/2452","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/comments?post=2452"}],"version-history":[{"count":1,"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/posts\/2452\/revisions"}],"predecessor-version":[{"id":2453,"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/posts\/2452\/revisions\/2453"}],"wp:attachment":[{"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/media?parent=2452"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/categories?post=2452"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/199604.com\/wp-json\/wp\/v2\/tags?post=2452"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"image-20221025172854914\"](\"https:\/\/qn.199604.com\/typoraImg\/image-20221025172854914.png\")
<\/div><\/p>\n![\"image-20221025173254017\"](\"https:\/\/qn.199604.com\/typoraImg\/image-20221025173254017.png\")
<\/div><\/p>\n![\"image-20221025173322633\"](\"https:\/\/qn.199604.com\/typoraImg\/image-20221025173322633.png\")
<\/div><\/p>\n![\"image-20221025173331712\"](\"https:\/\/qn.199604.com\/typoraImg\/image-20221025173331712.png\")
<\/div><\/p>\n