node | IP |
k8s-master | 192.168.43.111 |
k8s-node1 | 192.168.43.112 |
k8s-node2 | 192.168.43.113 |
以下命令在三个主机上运行
systemctl stop firewalld && systemctl disable firewalld
sed -i 's/enforcing/disabled/' /etc/selinux/config # 永久setenforce 0 # 临时
swapoff -a # 临时vi /etc/fstab # 永久
hostnamectl set-hostname <hostname>
cat >> /etc/hosts << EOF192.168.43.111 k8s-master192.168.43.112 k8s-node1192.168.43.113 k8s-node2EOF
cat <<EOF | sudo tee /etc/modules-load.d/k8s.confbr_netfilterEOF
cat <<EOF | sudo tee /etc/sysctl.d/k8s.confnet.bridge.bridge-nf-call-ip6tables = 1net.bridge.bridge-nf-call-iptables = 1EOF
sudo sysctl --systemyum install wget -ywget https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo -O /etc/yum.repos.d/docker-ce.repoyum -y install docker-cesystemctl enable docker && systemctl start docker
cat > /etc/docker/daemon.json << EOF{"exec-opts": ["native.cgroupdriver=systemd"],"log-driver": "json-file","log-opts": {"max-size": "100m"},"storage-driver": "overlay2","registry-mirrors": ["https://vydiw6v2.mirror.aliyuncs.com"]}EOF
systemctl restart docker
cat > /etc/yum.repos.d/kubernetes.repo << EOF[kubernetes]name=Kubernetesbaseurl=https://mirrors.aliyun.com/kubernetes/yum/repos/kubernetes-el7-x86_64enabled=1gpgcheck=0repo_gpgcheck=0gpgkey=https://mirrors.aliyun.com/kubernetes/yum/doc/yum-key.gpg https://mirrors.aliyun.com/kubernetes/yum/doc/rpm-package-key.gpgEOF
sudo yum install -y kubelet-1.23.0 kubeadm-1.23.0 kubectl-1.23.0 --disableexcludes=kubernetes sudo systemctl enable --now kubelet
以下命令在master主机上运行
https://kubernetes.io/zh/docs/reference/setup-tools/kubeadm/kubeadm-init/kubeadm init \--apiserver-advertise-address=192.168.43.111 \--image-repository registry.aliyuncs.com/google_containers \--kubernetes-version v1.23.0 \--service-cidr=10.96.0.0/12 \--pod-network-cidr=10.244.0.0/16 \--ignore-preflight-errors=allvi /etc/profileexport KUBECONFIG=/etc/kubernetes/admin.confsource /etc/profile
kubectl get nodes
以下命令在node主机上运行
kubeadm join 192.16...........
kubeadm token create --print-join-command
wget https://projectcalico.docs.tigera.io/manifests/tigera-operator.yaml --no-check-certificatewget https://projectcalico.docs.tigera.io/manifests/custom-resources.yaml --no-check-certificate
kubectl create -f tigera-operator.yamlkubectl create -f custom-resources.yaml
验证
kubectl get pods -n kube-system
kubectl get nodes -o wide
kubectl create deployment nginx --image=nginxkubectl expose deployment nginx --port=80 --type=NodePortkubectl get pod,svc