【8】K8s
阿里云国内75折 回扣 微信号:monov8 |
阿里云国际,腾讯云国际,低至75折。AWS 93折 免费开户实名账号 代冲值 优惠多多 微信号:monov8 飞机:@monov6 |
目录
1、NFS存储持久化
【1】所有节点安装NFS
yum install -y nfs-utils
【2】然后再主节点
# nfs主节点
echo "/nfs/data/ *(insecure,rw,sync,no_root_squash)" > /etc/exports
mkdir -p /nfs/data
systemctl enable rpcbind --now
systemctl enable nfs-server --now
# 配置生效
exportfs -r
[root@master ~]# echo "/nfs/data/ *(insecure,rw,sync,no_root_squash)" > /etc/exports
[root@master ~]# mkdir -p /nfs/data
[root@master ~]# systemctl enable rpcbind --now
[root@master ~]# systemctl enable nfs-server --now
Created symlink from /etc/systemd/system/multi-user.target.wants/nfs-server.service to /usr/lib/systemd/system/nfs-server.service.
[root@master ~]# exportfs -r
[root@master ~]#
[root@master ~]# exportfs
/nfs/data <world>
【3】从节点
#看一下远程的服务器有哪些目录可以挂载
showmount -e masterIP
#先在本机创建一个目录/nfs/data
#然后将远程服务器master的/nfs/data目录挂载到本机的/nfs/data目录
mkdir -p /nfs/data
mount -t nfs masteIP:/nfs/data /nfs/data
#写入一个测试文件
echo "hello nfs server" > /nfs/data/test.txt
[root@node02 ~]# showmount -e 172.31.0.4
Export list for 172.31.0.4:
/nfs/data *
[root@node02 ~]# mkdir -p /nfs/data
[root@node02 ~]# mount -t nfs 172.31.0.4:/nfs/data /nfs/data
[root@node02 ~]# ls /nfs/data/
在主节点
[root@master data]# echo AAAAAAAA > 1111111
[root@master data]# ls
1111111
在从节点;
[root@node02 ~]# ls /nfs/data/
1111111
[root@node02 ~]# echo 222222 > /nfs/data/222222
[root@node02 ~]# ls /nfs/data/
1111111 222222
在主节点
[root@master data]# ls
1111111 222222
【4】数据挂载
写一个ymal
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: nginx-pv
name: nginx-pv
spec:
replicas: 2
selector:
matchLabels:
app: nginx-pv
template:
metadata:
labels:
app: nginx-pv
spec:
containers:
- image: nginx
name: nginx
volumeMounts:
- name: html
mountPath: /usr/share/nginx/html
volumes:
- name: html
nfs:
server: 172.31.0.4
path: /nfs/data/nginx-pv
执行yaml
[root@master ~]# vi nfs.ymal
[root@master ~]#
[root@master ~]#
[root@master ~]# kubectl apply -f nfs.ymal
deployment.apps/nginx-pv created
#缺少/nfs/data/nginx-pv目录重新安装
[root@master ~]# mkdir /nfs/data/nginx-pv
[root@master ~]# kubectl delete -f nfs.ymal
deployment.apps "nginx-pv" deleted
[root@master ~]# kubectl apply -f nfs.ymal
deployment.apps/nginx-pv created
测试一下
在master
[root@master ~]# cd /nfs/data/nginx-pv/
[root@master nginx-pv]# ls
[root@master nginx-pv]# echo AAAAAAAAAAA > index.html
[root@master nginx-pv]# ls
index.html
[root@master nginx-pv]# kubectl get pod
NAME READY STATUS RESTARTS AGE
nginx-pv-5f884c45b8-rk85j 1/1 Running 0 3m59s
nginx-pv-5f884c45b8-s5gxz 1/1 Running 0 3m59s
[root@master nginx-pv]#
[root@master nginx-pv]# kubectl exec -it nginx-pv-5f884c45b8-rk85j -- /bin/bash
root@nginx-pv-5f884c45b8-rk85j:/#
root@nginx-pv-5f884c45b8-rk85j:/# cd /usr/share/nginx
root@nginx-pv-5f884c45b8-rk85j:/usr/share/nginx# cd html/
root@nginx-pv-5f884c45b8-rk85j:/usr/share/nginx/html# cat index.html
AAAAAAAAAAA
2、PV8PVC
PV:持久卷(Persistent Volume)将应用筹要持久化的数据保存到指定位置
PVC持久卷申明Persistent Volume Claim)申明需要使用时持久卷规格
【1】创建pv池
#nfs主节点
mkdir -p /nfs/data/01
mkdir -p /nfs/data/02
mkdir -p /nfs/data/03
[root@master nginx-pv]# mkdir -p /nfs/data/01
[root@master nginx-pv]# mkdir -p /nfs/data/02
[root@master nginx-pv]# mkdir -p /nfs/data/03
【2】创建pv
写一个ymal文件
apiVersion: v1
kind: PersistentVolume
metadata:
name: pv01-10m
spec:
capacity:
storage: 10M
accessModes:
- ReadWriteMany
storageClassName: nfs
nfs:
path: /nfs/data/01
server: 172.31.0.4
---
apiVersion: v1
kind: PersistentVolume
metadata:
name: pv02-1gi
spec:
capacity:
storage: 1Gi
accessModes:
- ReadWriteMany
storageClassName: nfs
nfs:
path: /nfs/data/02
server: 172.31.0.4
---
apiVersion: v1
kind: PersistentVolume
metadata:
name: pv03-3gi
spec:
capacity:
storage: 3Gi
accessModes:
- ReadWriteMany
storageClassName: nfs
nfs:
path: /nfs/data/03
server: 172.31.0.4
[root@master nginx-pv]# vi pv.yaml
[root@master nginx-pv]# kubectl apply -f pv.yaml
persistentvolume/pv01-10m created
persistentvolume/pv02-1gi created
persistentvolume/pv03-3gi created
[root@master nginx-pv]# kubectl get pv
NAME CAPACITY ACCESS MODES RECLAIM POLICY STATUS CLAIM STORAGECLASS REASON AGE
pv01-10m 10M RWX Retain Available nfs 36s
pv02-1gi 1Gi RWX Retain Available nfs 36s
pv03-3gi 3Gi RWX Retain Available nfs 36s
【3】创建pvc
用yaml的方式
kind: PersistentVolumeClaim
apiVersion: v1
metadata:
name: nginx-pvc
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: 200Mi
storageClassName: nfs
[root@master ~]# vi pvc.yaml
[root@master ~]# kubectl apply -f pvc.yaml
persistentvolumeclaim/nginx-pvc created
[root@master ~]# kubectl get pvc
NAME STATUS VOLUME CAPACITY ACCESS MODES STORAGECLASS AGE
nginx-pvc Bound pv02-1gi 1Gi RWX nfs 42s
[root@master ~]# kubectl get pv
NAME CAPACITY ACCESS MODES RECLAIM POLICY STATUS CLAIM STORAGECLASS REASON AGE
pv01-10m 10M RWX Retain Available nfs 13m
pv02-1gi 1Gi RWX Retain Bound default/nginx-pvc nfs 13m
pv03-3gi 3Gi RWX Retain Available nfs 13m
[root@master ~]#
【4】创建Pod绑定PVC
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: nginx-deploy-pvc
name: nginx-deploy-pvc
spec:
replicas: 2
selector:
matchLabels:
app: nginx-deploy-pvc
template:
metadata:
labels:
app: nginx-deploy-pvc
spec:
containers:
- image: nginx
name: nginx
volumeMounts:
- name: html
mountPath: /usr/share/nginx/html
volumes:
- name: html
persistentVolumeClaim:
claimName: nginx-pvc
aster ~]# vi pod_pvc.yaml
[root@master ~]#
[root@master ~]#
[root@master ~]# kubectl apply -f pod_pvc.yaml
deployment.apps/nginx-deploy-pvc created
[root@master ~]# kubectl get pvc,pv
NAME STATUS VOLUME CAPACITY ACCESS MODES STORAGECLASS AGE
persistentvolumeclaim/nginx-pvc Bound pv02-1gi 1Gi RWX nfs 11m
NAME CAPACITY ACCESS MODES RECLAIM POLICY STATUS CLAIM STORAGECLASS REASON AGE
persistentvolume/pv01-10m 10M RWX Retain Available nfs 23m
persistentvolume/pv02-1gi 1Gi RWX Retain Bound default/nginx-pvc nfs 23m
persistentvolume/pv03-3gi 3Gi RWX Retain Available nfs
3、ConfigMap
【1】创建配置redis保存到k8s的etcd
kubectl create cm redis-config --from-file=redis.conf
kubectl get cm
[root@master ~]# echo appendonly yes > vi redis.conf
[root@master ~]# kubectl create cm redis.conf --from-file=redis.conf
configmap/redis.conf created
[root@master ~]# kubectl get cm
NAME DATA AGE
kube-root-ca.crt 1 5d17h
redis.conf 1 11s
[root@master ~]# kubectl get cm redis.conf -oyaml
apiVersion: v1
data:
redis.conf: |
appendonly yes
kind: ConfigMap
metadata:
creationTimestamp: "2023-01-11T08:52:39Z"
managedFields:
- apiVersion: v1
fieldsType: FieldsV1
fieldsV1:
f:data:
.: {}
f:redis.conf: {}
manager: kubectl-create
operation: Update
time: "2023-01-11T08:52:39Z"
name: redis.conf
namespace: default
resourceVersion: "78979"
uid: 9ce6bc39-16e4-4c88-9380-3440ac787099
【2】创建pod
apiVersion: v1
kind: Pod
metadata:
name: redis
spec:
containers:
- name: redis
image: redis
command:
- redis-server
- "/redis-master/redis.conf"
ports:
- containerPort: 6379
volumeMounts:
- mountPath: /data
name: data
- mountPath: /redis-master
name: config
volumes:
- name: data
emptyDir: {}
- name: config
configMap:
name: redis-config
items:
- key: redis.config
path: redis.config
[root@master ~]# vi pod1.yaml
[root@master ~]# kubectl apply -f pod1.yaml
pod/redis created
[root@master ~]#
4、Secret
kubectl create secret docker-registry regcred \
--docker-server=<镜像仓库服务器> \
--docker-username=<用户名> \
--docker-password=<密码> \
--docker-email=<邮箱地址>
管理员执行上面命令后执行下面yaml就可以从私有仓库中下载安装Pod
apiVersion: v1
kind: Pod
metadata:
name: private-nginx
spec:
containers:
- name: private-nginx
image: qrxqrx/nginx:v1.0
imagePullSecret:
- name: regcred
kubectl apply -f mypod.yaml