您好,欢迎来到六九路网。
科技 教育 生活 旅游 时尚 美容 美食 健康 体育 游戏 汽车 家电
搜索
您的当前位置:首页生产级K8S基础环境部署配置流程

生产级K8S基础环境部署配置流程

来源:六九路网
⽣产级K8S基础环境部署配置流程

⽣产级K8S基础环境部署:

配置本地hosts⽂件(有多少台,配置多少台)

vim /etc/hosts

192.168.1.5 k8s-master

配置yum源(有⾃⼰的yum源更好)

wget -O /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-7.repowget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo

安装基础⼯具,配置docker源

sudo yum install -y yum-utils device-mapper-persistent-data lvm2

sudo yum-config-manager --add-repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.reposudo sed -i 's+download.docker.com+mirrors.aliyun.com/docker-ce+' /etc/yum.repos.d/docker-ce.reposudo yum makecache fast

安装⼀些必备⼯具

yum -y install wget jq psmisc vim net-tools telnet yum-utils device-mapper-persistent-data lvm2 git -y

关闭防⽕墙

systemctl disable --now firewalld

关闭SELinux

setenforce 0

sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/sysconfig/selinux

关闭交换分区

swapoff -a && sysctl -w vm.swappiness=0cat /etc/fstab

# /dev/mapper/centos-swap swap swap defaults 0 0

关闭NetworkManager

systemctl disable --now NetworkManager

进⾏时间同步(有⾃⼰的时间服务器更好)

# 安装

rpm -ivh http://mirrors.wlnmp.com/centos/wlnmp-release-centos.noarch.rpmyum -y install ntpdate# 同步

ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtimeecho 'Asia/Shanghai' >/etc/timezonentpdate ntp.aliyun.comcrontab -ecrontab -l

*/5 * * * * ntpdate ntp.aliyun.com

配置ulimit

ulimit -SHn 65535

vim /etc/security/limits.conf* soft nofile 655360* hard nofile 131072* soft nproc 655350* hard nproc 655350

* seft memlock unlimited* hard memlock unlimitedd

配置免密登录(从主master向其他节点分发)

ssh-keygen -t rsa

ssh-copy-id -i .ssh/id_rsa.pub 其他主机

升级系统到最新(跳过内核)

yum update -y --exclude=kernel*

升级内核⾄4.18版本以上

cd /root/

wget http://193.49.22.109/elrepo/kernel/el7/x86_/RPMS/kernel-ml-4.19.12-1.el7.elrepo.x86_.rpm

wget http://193.49.22.109/elrepo/kernel/el7/x86_/RPMS/kernel-ml-devel-4.19.12-1.el7.elrepo.x86_.rpmyum -y localinstall kernel-ml*

grub2-set-default 0 && grub2-mkconfig -o /etc/grub2.cfg && grubby --args=\"user_namespace.enable=1\" --update-kernel=\"$(grubby --default-kernel)\"rebootuname -r

安装ipvsadm

yum install ipvsadm ipset sysstat conntrack libseccomp –yvim /etc/modules-load.d/ipvs.confcat /etc/modules-load.d/ipvs.confip_vsip_vs_rrip_vs_wrrip_vs_shnf_conntrackip_tablesip_setxt_setipt_setipt_rpfilteript_REJECTipip

systemctl enable --now systemd-modules-load.servicelsmod | grep -e ip_vs -e nf_conntrack_ipv4ip_vs_sh 16384 0ip_vs_wrr 16384 0ip_vs_rr 16384 0

ip_vs 151552 6 ip_vs_rr,ip_vs_sh,ip_vs_wrrnf_conntrack 143360 1 ip_vs

libcrc32c 16384 3 nf_conntrack,xfs,ip_vs

修改内核参数

cat < /etc/sysctl.d/k8s.confnet.ipv4.ip_forward = 1

net.bridge.bridge-nf-call-iptables = 1fs.may_detach_mounts = 1vm.overcommit_memory=1vm.panic_on_oom=0

fs.inotify.max_user_watches=100fs.file-max=52706963fs.nr_open=52706963

net.netfilter.nf_conntrack_max=2310720net.ipv4.tcp_keepalive_time = 600net.ipv4.tcp_keepalive_probes = 3net.ipv4.tcp_keepalive_intvl =15

net.ipv4.tcp_max_tw_buckets = 36000net.ipv4.tcp_tw_reuse = 1

net.ipv4.tcp_max_orphans = 327680net.ipv4.tcp_orphan_retries = 3net.ipv4.tcp_syncookies = 1

net.ipv4.tcp_max_syn_backlog = 16384net.ipv4.ip_conntrack_max = 65536net.ipv4.tcp_max_syn_backlog = 16384net.ipv4.tcp_timestamps = 0net.core.somaxconn = 16384EOF

sysctl --system

本篇内容只讲K8S部属前的基础环境

以上就是⽣产级K8S基础环境部署配置过程的详细内容,更多关于⽣产级K8S环境部署的资料请关注其它相关⽂章!

因篇幅问题不能全部显示,请点此查看更多更全内容

查看全文

Copyright © 2019- 69lv.com 版权所有 湘ICP备2023021910号-1

违法及侵权请联系:TEL:199 1889 7713 E-MAIL:2724546146@qq.com

本站由北京市万商天勤律师事务所王兴未律师提供法律服务