前期提要
以下所有操作均在单 master 群集已完成部署的情况下进行. 如没有部署完成, 具体安装步骤请阅读本人之前的博客.
服务器角色分配
角色 | 地址 | 安装组件 |
---|---|---|
master | 192.168.142.220 | kube-apiserver kube-controller-manager kube-scheduler etcd |
master02 | 192.168.142.120 | kube-apiserver kube-controller-manager kube-scheduler |
node1 | 192.168.142.136 | kubelet kube-proxy docker flannel etcd |
node2 | 192.168.142.132 | kubelet kube-proxy docker flannel etcd |
nginx1 | 192.168.142.130 | nginx keepalived |
nginx2 | 192.168.142.140 | nginx keepalived |
一, Master02 配置
分隔符前的操作均在 master01 上进行
复制目录到 master02
复制 kubernetes 目录到 master02
[[email protected] k8s]# scp -r /opt/kubernetes/ [email protected]:/opt
复制 etcd 目录到 master02
master02 一定要有 etcd 证书, 否则 apiserver 服务无法启动
[[email protected] k8s]# scp -r /opt/etcd/ [email protected]:/opt
复制服务启动脚本
- kube-apiserver.service kube-controller-manager.service kube-scheduler.service
- [[email protected] k8s]# scp /usr/lib/systemd/system/{
- kube-apiserver,kube-controller-manager,kube-scheduler
- }.service [email protected]:/usr/lib/systemd/system/
修改服务脚本
实际上仅需要修改 apiserver 即可
- [[email protected] k8s]# cd /opt/kubernetes/cfg/
- [[email protected] cfg]# VIM kube-apiserver
- KUBE_APISERVER_OPTS="--logtostderr=true --v=4 --etcd-servers=https://192.168.142.220:2379,https://192.168.142.136:2379,https://192.168.142.132:2379 #注意地址更改
- --bind-address=192.168.142.120 --secure-port=6443 #注意地址更改
- --advertise-address=192.168.142.120 --allow-privileged=true --service-cluster-ip-range=10.0.0.0/24 --enable-admission-plugins=NamespaceLifecycle,LimitRanger,ServiceAccount,ResourceQuota,NodeRestriction --authorization-mode=RBAC,Node --kubelet-https=true --enable-Bootstrap-token-auth --token-auth-file=/opt/kubernetes/cfg/token.CSV --service-node-port-range=30000-50000 --tls-cert-file=/opt/kubernetes/ssl/server.pem --tls-private-key-file=/opt/kubernetes/ssl/server-key.pem --client-ca-file=/opt/kubernetes/ssl/ca.pem --service-account-key-file=/opt/kubernetes/ssl/ca-key.pem --etcd-cafile=/opt/etcd/ssl/ca.pem --etcd-certfile=/opt/etcd/ssl/server.pem --etcd-keyfile=/opt/etcd/ssl/server-key.pem"
开启服务
- [[email protected] cfg]# systemctl start kube-apiserver.service
- [[email protected] cfg]# systemctl start kube-controller-manager.service
- [[email protected] cfg]# systemctl start kube-scheduler.service
结果验证
- // 增加环境变量
- [[email protected] cfg]# VIM /etc/profile
- // 末尾添加
- export PATH=$PATH:/opt/kubernetes/bin/
- [[email protected] cfg]# source /etc/profile
- // 见到如下画面即为成功
- [[email protected] cfg]# kubectl get node
- NAME STATUS ROLES AGE VERSION
- 192.168.142.132 Ready <none> 2d12h v1.12.3
- 192.168.142.136 Ready <none> 38h v1.12.3
未完待续~~~
来源: http://www.bubuko.com/infodetail-3415594.html