安装nginx安装依赖[root@k8sm1 ~]# yum install -y epel-release安装nginx keepalived[root@k8sm1 ~]# yum install -y nginx keepalived nginx-mod-stream配置nginx [root@k8sm1 ~]# cat /etc/nginx/nginx.conf # For more i
安装containerd 容器运行时[root@k8sm1 ~]# yum install -y containerd.io-1.6.6生成containerd 配置文件创建配置文件存储目录[root@k8sm1 ~]# mkdir -p /etc/containerd生成配置文件[root@k8sm1 ~]# containerd config default > /etc/contain
安装node-exporter所有节点导入镜像[root@k8sm1 ~]# ctr -n k8s.io image import node-exporter.tar.gz创建node采集PodapiVersion: v1 kind: Namespace metadata: name: monitor-sa --- apiVersion: apps/v1 kind: DaemonSet met
Ingress + service + deployment(HTTP)[root@k8smaster1 ingress]# cat ingress-demo.yaml apiVersion: apps/v1 kind: Deployment metadata: name: tomcat-deploy namespace: default labels: component:
1、服务器基础管理修改主机名称: hostnamectl set-hostname dock02_120 && bash2、修改服务器内核参数sysctl 用于动态修改内核运行参数 sysctl -a 显示所有内核运行参数 sysctl -p 从指定的文件加载系统参数,而不是从默认配置文件 /etc/sysctl.conf中加载3、查看CPU数top 显
集群配置角色IP 配置软件k8smaster1192.168.1.180k8smaster2192.168.1.181k8smaster3192.168.1.182k8snode1192.168.1.183k8snode2192.168.1.184初始化服务器安装基础软件包yum install -y
[root@k8sm1 ~]# kubectl api-versions
查看当前不同文件系统的利用率df -h按照gparted 磁盘扩容工具apt-get install -y gparted打开gparted执行扩容确认结果
错误提示root@u-master1:~# docker search nginx Error response from daemon: Get "https://index.docker.io/v1/search?q=nginx&n=25": dial tcp: lookup index.docker.io on 127.0.0.53:53: server misbehaving处理方
安装NFSyum install -y nfs-utils启动并配置开机自启systemctl start nfs && systemctl enable nfs创建共享目录mkdir /dataVolume修改共享参数vim /etc/exports /data/v1 192.168.1.0/24(rw,no_root_squash) # 任意网段,都能以root身份读写启用共
编写Yaml[root@k8smaster1 ingress]# cat ingress-v2-weight.yaml apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: nginx-v2 annotations: nginx.ingress.kubernetes.io/canary: "true"
第一种docker run --rm -it --net host -v /etc/kubernetes:/etc/kubernetes registry.cn-hangzhou.aliyuncs.com/google_containers/etcd:3.5.4-0 etcdctl --cert /etc/kubernetes/pki/etcd/peer.crt --key /etc/kubern
存在保存的快照,需删除快照
安装tree工具yum install -y tree查看Pod UID[root@k8smaster1 storage]# kubectl get pod pod-empty -o yaml | grep uid查看Pod 宿主机临时目录/var/lib/kubelet/pods/25863dd6-4e8c-490b-b64b-ea15ab28ec83/volumes/kubernetes.io
创建SAapiVersion: v1 kind: ServiceAccount metadata: name: sa-test创建RoleapiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: namespace: default name: sa-test rules: - apiGroups: [""] res
安装及配置NFS(参考本人博客)创建NFS共享目录mkdir -p /data/volumes/v{1,2,3,4,5,6,7,8,9,10}新增共享目录[root@k8smaster1 ~]# cat /etc/exports /data/v1 *(rw,no_root_squash) /data/volumes/v1 192.168.1.0/24(rw,no_root_squash) /da
生成新用户秘钥(/etc/kubernetes/pki/)(umask 077; openssl genrsa -out eric.key 2048)基于秘钥,生成csr文件(目录同上)openssl req -new -key eric.key -out eric.csr -subj "/CN=eric"基于新建用户csr,集群ca证书,生成crtopenssl x509 -req -in er
在Ubuntu系统添加key 到 trusted 数据库, 会提示“apt-key is deprecated” Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).这个提示意思是: 不赞成使用 apt-key 这个程序,推荐使用trusted.gp
先创建钉钉群聊群成员>=3添加群机器人https://oapi.dingtalk.com/robot/send?access_token=b713c27c658c4bbc798392d5ce76cc1408c9c0517b0146f75278e5c845a90031启动钉钉告警插件[root@k8smaster1 altermanager]# tar -zxvf prometheus-web
#!/bin/bash counter=$(ps -ef |grep nginx | grep sbin | egrep -cv "grep|$$" ) if [ $counter -eq 0 ]; then service nginx start sleep 2 counter=$(ps -ef |grep nginx | grep sbin | egrep -cv "g
创建redis PodapiVersion: apps/v1 kind: Deployment metadata: name: redis namespace: kube-system annotations: prometheus.io/scrape: 'true' spec: replicas: 1 selector: matchLabels:
导入镜像[root@k8snode1 prometheus]# ctr -n k8s.io image import heapster-grafana-amd64_v5_0_4.tar.gz unpacking k8s.gcr.io/heapster-grafana-amd64:v5.0.4 (sha256:1703015b12590c4c0a34d82e8c69c4e87a6f23031070
安装mariadb 及 mariadb-server导入监控插件[root@k8smaster1 mariadb]# tar -zxvf mysqld_exporter-0.10.0.linux-amd64.tar.gz复制exporter到 bin 目录下[root@k8smaster1 mysqld_exporter-0.10.0.linux-amd64]# cp mysqld_exporte
开启IMAP & POP3创建Altermanager configMap[root@k8smaster1 prometheus]# cat alertmanager-cm.yaml kind: ConfigMap apiVersion: v1 metadata: name: alertmanager namespace: monitor-sa data: alertmana
基于cookie流量切分模拟仅带有user_from_cd 的cookie的请求转发给当前Canary IIngress 策略文件编写[root@k8smaster1 ingress]# cat ingress-v2-cookie.yaml apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: nginx-canary
生成base64 参数[root@k8smaster4 sc]# echo -n 'admin' | base64 YWRtaW4= [root@k8smaster4 sc]# echo -n '51cto' | base64 NTFjdG8=创建secret [root@k8smaster4 sc]# cat secret-demo.yaml apiVersion: v1 kind: Sec
创建SA[root@k8smaster1 prometheus]# cat kube-state-metrics.yaml apiVersion: v1 kind: ServiceAccount metadata: name: kube-state-metrics namespace: kube-system创建clusterroleapiVersion: rbac.authorizat
编辑当前正在运行的对象[root@k8smaster1 prometheus]# kubectl edit pod prometheus-server-f59f6b786-tj5kj -n monitor-sa添加注释prometheus.io/scrape: "true" prometheus.io/port: "9090"配置允许热加载环境变量- prometheus - -- web.en
创建prometheus数据目录并赋权[root@k8snode2 ~]# mkdir /data [root@k8snode2 ~]# chmod 777 /data创建prometheus配置文件configMap[root@k8smaster1 prometheus]# cat prometheus-cfg.yaml apiVersion: v1 kind: ConfigMap metad
创建monitor-sa 工作空间[root@k8smaster1 prometheus]# cat monitor-sa.json { "apiVersion": "v1", "kind": "Namespace", "metadata":{ "name": "monitor-sa", "labels":{ "name": "dev" } } } [root@k8
Copyright © 2005-2025 51CTO.COM 版权所有 京ICP证060544号
