\u6211\u5011\u5c07\u5728CentOS7\u4e0a\u5b89\u88ddKubernetes\uff081.9\uff09\uff0c\u4e26\u6309\u7167\u4ee5\u4e0b\u914d\u7f6e\u5efa\u7acbKubernetes\u96c6\u7fa4\u3002<\/p>\n
sugi-kubernetes19-master01: \u4e3b\u8282\u70b9
\nsugi-kubernetes19-node01: \u5de5\u4f5c\u8282\u70b9
\nsugi-kubernetes19-node02: \u5de5\u4f5c\u8282\u70b9<\/p>\n
\u6267\u884ckubeadm\u65f6\uff0c\u5982\u679cswap\u5904\u4e8e\u542f\u7528\u72b6\u6001\uff0c\u5b89\u88c5\u5c06\u5931\u8d25\uff0c
\n\u56e0\u6b64\u8981\u7981\u7528swap\u3002<\/p>\n
swapoff -a\r\n<\/code><\/pre>\n\u7f16\u8f91<\/p>\n
vim \/etc\/fstab\r\n<\/code><\/pre>\n\u5728\u6240\u6709\u670d\u52a1\u5668\u4e0a\u8fdb\u884ckubeadm\u5b89\u88c5\u3002<\/h1>\n
\u5b89\u88c5Docker<\/p>\n
yum install -y docker\r\nsystemctl enable docker && systemctl start docker\r\n<\/code><\/pre>\n\u4f9d\u8d56\u5173\u7cfb\u5907\u5fd8\u5f55<\/p>\n
============================================================================================================================================================\r\nPackage Arch Version Repository Size\r\n ============================================================================================================================================================\r\nInstalling:\r\ndocker x86_64 2:1.13.1-53.git774336d.el7.centos extras 16 M\r\nInstalling for dependencies:\r\naudit-libs-python x86_64 2.7.6-3.el7 base 73 k\r\ncheckpolicy x86_64 2.5-4.el7 base 290 k\r\ncontainer-selinux noarch 2:2.42-1.gitad8f0f7.el7 extras 32 k\r\ncontainer-storage-setup noarch 0.8.0-3.git1d27ecf.el7 extras 33 k\r\ndocker-client x86_64 2:1.13.1-53.git774336d.el7.centos extras 3.7 M\r\ndocker-common x86_64 2:1.13.1-53.git774336d.el7.centos extras 86 k\r\nlibcgroup x86_64 0.41-13.el7 base 65 k\r\nlibsemanage-python x86_64 2.5-8.el7 base 104 k\r\noci-register-machine x86_64 1:0-6.git2b44233.el7 extras 1.1 M\r\noci-systemd-hook x86_64 1:0.1.15-2.gitc04483d.el7 extras 33 k\r\noci-umount x86_64 2:2.3.3-3.gite3c9055.el7 extras 32 k\r\npolicycoreutils-python x86_64 2.5-17.1.el7 base 446 k\r\npython-IPy noarch 0.75-6.el7 base 32 k\r\nsetools-libs x86_64 3.3.8-1.1.el7 base 612 k\r\nskopeo-containers x86_64 1:0.1.28-1.git0270e56.el7 extras 13 k\r\nyajl x86_64 2.0.4-4.el7 base 39 k\r\n\r\nTransaction Summary\r\n ============================================================================================================================================================\r\nInstall 1 Package (+16 Dependent packages)\r\n<\/code><\/pre>\n\u4ed3\u5e93\u8bbe\u5b9a<\/p>\n
cat <<EOF > \/etc\/yum.repos.d\/kubernetes.repo\r\n[kubernetes]\r\nname=Kubernetes\r\nbaseurl=https:\/\/packages.cloud.google.com\/yum\/repos\/kubernetes-el7-x86_64\r\nenabled=1\r\ngpgcheck=1\r\nrepo_gpgcheck=1\r\ngpgkey=https:\/\/packages.cloud.google.com\/yum\/doc\/yum-key.gpg https:\/\/packages.cloud.google.com\/yum\/doc\/rpm-package-key.gpg\r\nEOF\r\n<\/code><\/pre>\n\u5b89\u88c5kubelet\uff0ckubeadm\u548ckubectl\u3002<\/p>\n
yum install -y kubelet kubeadm kubectl\r\nsystemctl enable kubelet && systemctl start kubelet\r\n<\/code><\/pre>\n\u4f9d\u5b58\u5173\u7cfb\u5907\u5fd8\u5f55<\/p>\n
============================================================================================================================================================\r\n Package Arch Version Repository Size\r\n============================================================================================================================================================\r\nInstalling:\r\n kubeadm x86_64 1.9.4-0 kubernetes 17 M\r\n kubectl x86_64 1.9.4-0 kubernetes 8.9 M\r\n kubelet x86_64 1.9.4-0 kubernetes 17 M\r\nInstalling for dependencies:\r\n kubernetes-cni x86_64 0.6.0-0 kubernetes 8.6 M\r\n socat x86_64 1.7.3.2-2.el7 base 290 k\r\n\r\nTransaction Summary\r\n============================================================================================================================================================\r\nInstall 3 Packages (+2 Dependent packages)\r\n<\/code><\/pre>\n\u636e\u62a5\u9053\uff0c\u6709\u4eba\u62a5\u544a\u79f0\uff0c\u7531\u4e8eiptables\u7ed5\u8fc7\u4e86\uff0c\u5bfc\u81f4\u4e86\u65e0\u6cd5\u6b63\u786e\u8def\u7531\u7684\u95ee\u9898\u3002
\n\u4ee5\u4e0bsysctl\u53ef\u89e3\u51b3\u6b64\u95ee\u9898\u3002<\/p>\n
cat <<EOF > \/etc\/sysctl.d\/k8s.conf\r\nnet.bridge.bridge-nf-call-ip6tables = 1\r\nnet.bridge.bridge-nf-call-iptables = 1\r\nEOF\r\nsysctl --system\r\n<\/code><\/pre>\n\u6267\u884c\u793a\u4f8b l\u00ec)<\/p>\n
[root@sugi-kubernetes19-node02 ~]# sysctl --system\r\n* Applying \/usr\/lib\/sysctl.d\/00-system.conf ...\r\nnet.bridge.bridge-nf-call-ip6tables = 0\r\nnet.bridge.bridge-nf-call-iptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 0\r\n* Applying \/usr\/lib\/sysctl.d\/10-default-yama-scope.conf ...\r\nkernel.yama.ptrace_scope = 0\r\n* Applying \/usr\/lib\/sysctl.d\/50-default.conf ...\r\nkernel.sysrq = 16\r\nkernel.core_uses_pid = 1\r\nnet.ipv4.conf.default.rp_filter = 1\r\nnet.ipv4.conf.all.rp_filter = 1\r\nnet.ipv4.conf.default.accept_source_route = 0\r\nnet.ipv4.conf.all.accept_source_route = 0\r\nnet.ipv4.conf.default.promote_secondaries = 1\r\nnet.ipv4.conf.all.promote_secondaries = 1\r\nfs.protected_hardlinks = 1\r\nfs.protected_symlinks = 1\r\n* Applying \/usr\/lib\/sysctl.d\/99-docker.conf ...\r\nfs.may_detach_mounts = 1\r\n* Applying \/etc\/sysctl.d\/99-sysctl.conf ...\r\n* Applying \/etc\/sysctl.d\/k8s.conf ...\r\nnet.bridge.bridge-nf-call-ip6tables = 1\r\nnet.bridge.bridge-nf-call-iptables = 1\r\n* Applying \/etc\/sysctl.conf ...\r\n<\/code><\/pre>\n\u68c0\u67e5Docker\u4f7f\u7528\u7684cgroup\u9a71\u52a8\u7a0b\u5e8f\u4e0ekubelet\u8bc6\u522b\u7684cgroup\u9a71\u52a8\u7a0b\u5e8f\u662f\u5426\u5339\u914d\u3002
\nDocker\u4f7f\u7528systemd\u3002<\/p>\n
[root@sugi-kubernetes19-master01 ~]# docker info | grep -i cgroup\r\n WARNING: You're not using the default seccomp profile\r\nCgroup Driver: systemd\r\n<\/code><\/pre>\n\u7531\u4e8ekubelet\u7684\u9a71\u52a8\u7a0b\u5e8f\u6307\u5b9a\u4e5f\u662fsystemd\uff0c\u6240\u4ee5\u6ca1\u6709\u95ee\u9898\u3002<\/p>\n
[root@sugi-kubernetes19-master01 ~]# cat \/etc\/systemd\/system\/kubelet.service.d\/10-kubeadm.conf | grep cgroup\r\nEnvironment=\"KUBELET_CGROUP_ARGS=--cgroup-driver=systemd\"\r\n<\/code><\/pre>\n\u4f7f\u7528kubeadm\u6765\u914d\u7f6eMaster<\/h1>\n\n- \n
–pod-network-cidr \u306e\u6307\u5b9a<\/ul>\n<\/li>\n<\/ul>\n <\/p>\n
\n- \n
Kubernetes\u30af\u30e9\u30b9\u30bf\u3067\u4f7f\u7528\u3059\u308bNetworkPlugin\u306b\u4f9d\u5b58\u3057\u307e\u3059\u304c\u3001Flannel\u3092\u306f\u3058\u3081\u3068\u3057\u305fOverlayNW\u3067\u4f7f\u7528\u3059\u308bNW\u3092\u6307\u5b9a\u3057\u307e\u3059<\/ul>\n<\/li>\n<\/ul>\n <\/p>\n
kubeadm \u3092\u4f7f\u7528\u3057\u3066 Flannel\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u5834\u5408\u3001\u300c10.244.0.0\/16\u300d\u56fa\u5b9a\u3068\u306a\u308b<\/ul>\n\u6267\u884c\u65f6\u95f4\u5927\u7ea6\u4e3a2\u5206\u949f\u5de6\u53f3<\/p>\n
kubeadm init --pod-network-cidr '10.244.0.0\/16'\r\n<\/code><\/pre>\n\u6267\u884c\u793a\u4f8b- Shi Xing Li<\/p>\n
[root@sugi-kubernetes19-master01 ~]# kubeadm init --pod-network-cidr '10.244.0.0\/16'\r\n[init] Using Kubernetes version: v1.9.4\r\n[init] Using Authorization modes: [Node RBAC]\r\n[preflight] Running pre-flight checks.\r\n [WARNING Hostname]: hostname \"sugi-kubernetes19-master01.localdomain\" could not be reached\r\n [WARNING Hostname]: hostname \"sugi-kubernetes19-master01.localdomain\" lookup sugi-kubernetes19-master01.localdomain on 8.8.8.8:53: no such host\r\n [WARNING FileExisting-crictl]: crictl not found in system path\r\n[certificates] Generated ca certificate and key.\r\n[certificates] Generated apiserver certificate and key.\r\n[certificates] apiserver serving cert is signed for DNS names [sugi-kubernetes19-master01.localdomain kubernetes kubernetes.default kubernetes.default.svc kubernetes.default.svc.cluster.local] and IPs [10.96.0.1 192.168.120.220]\r\n[certificates] Generated apiserver-kubelet-client certificate and key.\r\n[certificates] Generated sa key and public key.\r\n[certificates] Generated front-proxy-ca certificate and key.\r\n[certificates] Generated front-proxy-client certificate and key.\r\n[certificates] Valid certificates and keys now exist in \"\/etc\/kubernetes\/pki\"\r\n[kubeconfig] Wrote KubeConfig file to disk: \"admin.conf\"\r\n[kubeconfig] Wrote KubeConfig file to disk: \"kubelet.conf\"\r\n[kubeconfig] Wrote KubeConfig file to disk: \"controller-manager.conf\"\r\n[kubeconfig] Wrote KubeConfig file to disk: \"scheduler.conf\"\r\n[controlplane] Wrote Static Pod manifest for component kube-apiserver to \"\/etc\/kubernetes\/manifests\/kube-apiserver.yaml\"\r\n[controlplane] Wrote Static Pod manifest for component kube-controller-manager to \"\/etc\/kubernetes\/manifests\/kube-controller-manager.yaml\"\r\n[controlplane] Wrote Static Pod manifest for component kube-scheduler to \"\/etc\/kubernetes\/manifests\/kube-scheduler.yaml\"\r\n[etcd] Wrote Static Pod manifest for a local etcd instance to \"\/etc\/kubernetes\/manifests\/etcd.yaml\"\r\n[init] Waiting for the kubelet to boot up the control plane as Static Pods from directory \"\/etc\/kubernetes\/manifests\".\r\n[init] This might take a minute or longer if the control plane images have to be pulled.\r\n[apiclient] All control plane components are healthy after 114.503352 seconds\r\n[uploadconfig]\u00a0Storing the configuration used in ConfigMap \"kubeadm-config\" in the \"kube-system\" Namespace\r\n[markmaster] Will mark node sugi-kubernetes19-master01.localdomain as master by adding a label and a taint\r\n[markmaster] Master sugi-kubernetes19-master01.localdomain tainted and labelled with key\/value: node-role.kubernetes.io\/master=\"\"\r\n[bootstraptoken] Using token: 99bcf2.e89be75362d8794b\r\n[bootstraptoken] Configured RBAC rules to allow Node Bootstrap tokens to post CSRs in order for nodes to get long term certificate credentials\r\n[bootstraptoken] Configured RBAC rules to allow the csrapprover controller automatically approve CSRs from a Node Bootstrap Token\r\n[bootstraptoken] Configured RBAC rules to allow certificate rotation for all node client certificates in the cluster\r\n[bootstraptoken] Creating the \"cluster-info\" ConfigMap in the \"kube-public\" namespace\r\n[addons] Applied essential addon: kube-dns\r\n[addons] Applied essential addon: kube-proxy\r\n\r\nYour Kubernetes master has initialized successfully!\r\n\r\nTo start using your cluster, you need to run the following as a regular user:\r\n\r\n mkdir -p $HOME\/.kube\r\n sudo cp -i \/etc\/kubernetes\/admin.conf $HOME\/.kube\/config\r\n sudo chown $(id -u):$(id -g) $HOME\/.kube\/config\r\n\r\nYou should now deploy a pod network to the cluster.\r\nRun \"kubectl apply -f [podnetwork].yaml\" with one of the options listed at:\r\n https:\/\/kubernetes.io\/docs\/concepts\/cluster-administration\/addons\/\r\n\r\nYou can now join any number of machines by running the following on each node\r\nas root:\r\n\r\n kubeadm join --token 99bcf2.e89be75362d8794b 192.168.120.220:6443 --discovery-token-ca-cert-hash sha256:c6094ae953604710d9f10fd4f248e35d7f8c4f0829eff777d677c9462fb83ce1\r\n<\/code><\/pre>\n\u8981\u4ee5root\u7528\u6237\u8eab\u4efd\u8fd0\u884ckubectl\uff0c\u9700\u8981\u6307\u5b9a\u73af\u5883\u53d8\u91cf\u3002<\/p>\n
export KUBECONFIG=\/etc\/kubernetes\/admin.conf\r\n<\/code><\/pre>\n\u6267\u884c\u547d\u4ee4\u786e\u8ba4<\/p>\n
[root@sugi-kubernetes19-master01 kubernetes]# kubectl get nodes\r\nNAME STATUS ROLES AGE VERSION\r\nsugi-kubernetes19-master01.localdomain NotReady master 4m v1.9.4\r\n<\/code><\/pre>\n\u5728 .bash_profile \u4e2d\u8bbe\u7f6e\u73af\u5883\u53d8\u91cf\u3002<\/p>\n
cat <<'EOF' > \/root\/.bash_profile\r\n# .bash_profile\r\n\r\n# Get the aliases and functions\r\nif [ -f ~\/.bashrc ]; then\r\n . ~\/.bashrc\r\nfi\r\n\r\n# User specific environment and startup programs\r\n\r\nPATH=$PATH:$HOME\/bin\r\n\r\nexport PATH\r\n\r\n# add for kubernetes\r\nexport KUBECONFIG=\/etc\/kubernetes\/admin.conf\r\nEOF\r\n<\/code><\/pre>\n\u786e\u8ba4\u7528\u4e8e\u52a0\u5165\u4e3b\u8282\u70b9\u7684kubeadm\u4ee4\u724c\u3002
\n\u8fc7\u671f\u65f6\u95f4\u9650\u5236\u4e3a24\u5c0f\u65f6\u3002
\n\u4e0b\u6b21\u6269\u5c55\u65f6\uff0c\u53ef\u80fd\u9700\u8981\u521b\u5efa\u4ee4\u724c\u3002<\/p>\n
[root@sugi-kubernetes19-master01 ~]# kubeadm token list\r\nTOKEN TTL EXPIRES USAGES DESCRIPTION EXTRA GROUPS\r\n99bcf2.e89be75362d8794b 23h 2018-03-18T22:00:39+09:00 authentication,signing The default bootstrap token generated by 'kubeadm init'. system:bootstrappers:kubeadm:default-node-token\r\n<\/code><\/pre>\nPod Network \u7684\u5b89\u88c5<\/h1>\n
\u8bd5\u8bd5\u5b89\u88c5Flannel<\/p>\n
kubectl apply -f https:\/\/raw.githubusercontent.com\/coreos\/flannel\/v0.9.1\/Documentation\/kube-flannel.yml\r\n<\/code><\/pre>\n\u6267\u884c\u793a\u4f8b<\/p>\n
[root@sugi-kubernetes19-master01 ~]# kubectl apply -f https:\/\/raw.githubusercontent.com\/coreos\/flannel\/v0.9.1\/Documentation\/kube-flannel.yml\r\nclusterrole \"flannel\" created\r\nclusterrolebinding \"flannel\" created\r\nserviceaccount \"flannel\" created\r\nconfigmap \"kube-flannel-cfg\" created\r\ndaemonset \"kube-flannel-ds\" created\r\n<\/code><\/pre>\n\u4e3a\u4e86\u786e\u8ba4\u662f\u5426\u6b63\u5e38\u8fd0\u884c\uff0c\u5728\u6240\u6709\u7684\u547d\u540d\u7a7a\u95f4\u4e2d\u68c0\u67e5pod\u3002\u786e\u8ba4\u5df2\u521b\u5efa\u591a\u4e2apod\uff0c\u5e76\u786e\u8ba4kube-dns\u6b63\u5728\u8fd0\u884c\u3002<\/p>\n
[root@sugi-kubernetes19-master01 ~]# kubectl get pods --all-namespaces\r\nNAMESPACE NAME READY STATUS RESTARTS AGE\r\nkube-system etcd-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 6m\r\nkube-system kube-apiserver-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 7m\r\nkube-system kube-controller-manager-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 7m\r\nkube-system kube-dns-6f4fd4bdf-5tvpn 3\/3 Running 0 7m\r\nkube-system kube-flannel-ds-z8btx 1\/1 Running 0 2m\r\nkube-system kube-proxy-24mm5 1\/1 Running 0 7m\r\nkube-system kube-scheduler-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 6m\r\n<\/code><\/pre>\n\u7ed2\u5e031\u5df2\u7ecf\u5236\u4f5c\u5b8c\u6210\u3002<\/p>\n
[root@sugi-kubernetes19-master01 ~]# ip -d a\r\n1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1\r\n link\/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 promiscuity 0\r\n inet 127.0.0.1\/8 scope host lo\r\n valid_lft forever preferred_lft forever\r\n inet6 ::1\/128 scope host\r\n valid_lft forever preferred_lft forever\r\n2: ens192: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP qlen 1000\r\n link\/ether 00:50:56:98:17:ee brd ff:ff:ff:ff:ff:ff promiscuity 0\r\n inet 192.168.120.220\/24 brd 192.168.120.255 scope global ens192\r\n valid_lft forever preferred_lft forever\r\n inet6 fe80::98a0:413d:6b71:8fbd\/64 scope link\r\n valid_lft forever preferred_lft forever\r\n3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN\r\n link\/ether 02:42:f6:06:77:86 brd ff:ff:ff:ff:ff:ff promiscuity 0\r\n bridge forward_delay 1500 hello_time 200 max_age 2000 ageing_time 30000 stp_state 0 priority 32768 vlan_filtering 0 vlan_protocol 802.1Q bridge_id 8000.2:42:f6:6:77:86 designated_root 8000.2:42:f6:6:77:86 root_port 0 root_path_cost 0 topology_change 0 topology_change_detected 0 hello_timer 0.00 tcn_timer 0.00 topology_change_timer 0.00 gc_timer 89.73 vlan_default_pvid 1 group_fwd_mask 0 group_address 01:80:c2:00:00:00 mcast_snooping 1 mcast_router 1 mcast_query_use_ifaddr 0 mcast_querier 0 mcast_hash_elasticity 4 mcast_hash_max 512 mcast_last_member_count 2 mcast_startup_query_count 2 mcast_last_member_interval 100 mcast_membership_interval 26000 mcast_querier_interval 25500 mcast_query_interval 12500 mcast_query_response_interval 1000 mcast_startup_query_interval 3125\r\n inet 172.17.0.1\/16 scope global docker0\r\n valid_lft forever preferred_lft forever\r\n4: flannel.1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UNKNOWN\r\n link\/ether 8a:35:24:38:60:de brd ff:ff:ff:ff:ff:ff promiscuity 0\r\n vxlan id 1 local 192.168.120.220 dev ens192 srcport 0 0 dstport 8472 nolearning ageing 300\r\n inet 10.244.0.0\/32 scope global flannel.1\r\n valid_lft forever preferred_lft forever\r\n inet6 fe80::8835:24ff:fe38:60de\/64 scope link\r\n valid_lft forever preferred_lft forever\r\n5: cni0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UP qlen 1000\r\n link\/ether 0a:58:0a:f4:00:01 brd ff:ff:ff:ff:ff:ff promiscuity 0\r\n bridge forward_delay 1500 hello_time 200 max_age 2000 ageing_time 30000 stp_state 0 priority 32768 vlan_filtering 0 vlan_protocol 802.1Q bridge_id 8000.a:58:a:f4:0:1 designated_root 8000.a:58:a:f4:0:1 root_port 0 root_path_cost 0 topology_change 0 topology_change_detected 0 hello_timer 0.00 tcn_timer 0.00 topology_change_timer 0.00 gc_timer 255.62 vlan_default_pvid 1 group_fwd_mask 0 group_address 01:80:c2:00:00:00 mcast_snooping 1 mcast_router 1 mcast_query_use_ifaddr 0 mcast_querier 0 mcast_hash_elasticity 4 mcast_hash_max 512 mcast_last_member_count 2 mcast_startup_query_count 2 mcast_last_member_interval 100 mcast_membership_interval 26000 mcast_querier_interval 25500 mcast_query_interval 12500 mcast_query_response_interval 1000 mcast_startup_query_interval 3125\r\n inet 10.244.0.1\/24 scope global cni0\r\n valid_lft forever preferred_lft forever\r\n inet6 fe80::ac47:5ff:fe51:b4b2\/64 scope link\r\n valid_lft forever preferred_lft forever\r\n6: vethe30d042d@if3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue master cni0 state UP\r\n link\/ether de:8f:ad:8b:9a:bd brd ff:ff:ff:ff:ff:ff link-netnsid 0 promiscuity 1\r\n veth\r\n bridge_slave state forwarding priority 32 cost 2 hairpin off guard off root_block off fastleave off learning on flood on port_id 0x8001 port_no 0x1 designated_port 32769 designated_cost 0 designated_bridge 8000.a:58:a:f4:0:1 designated_root 8000.a:58:a:f4:0:1 hold_timer 0.00 message_age_timer 0.00 forward_delay_timer 0.00 topology_change_ack 0 config_pending 0 proxy_arp off proxy_arp_wifi off mcast_router 1 mcast_fast_leave off mcast_flood on\r\n inet6 fe80::dc8f:adff:fe8b:9abd\/64 scope link\r\n valid_lft forever preferred_lft forever\r\n<\/code><\/pre>\n\u5728\u8282\u70b9\u670d\u52a1\u5668\u4e0a\u6267\u884c<\/h1>\n
\u4e3a\u4e86\u53c2\u52a0Master\uff0c\u8bf7\u6267\u884ckubeadm\u547d\u4ee4\u3002
\n\u4ece\u5728Master\u4e0a\u6267\u884ckubeadm\u65f6\u8f93\u51fa\u7684\u6700\u540e\u4e00\u4e2a\u5b57\u7b26\u4e32\u4e2d\u5f15\u7528\u3002<\/p>\n
kubeadm join --token 99bcf2.e89be75362d8794b 192.168.120.220:6443 --discovery-token-ca-cert-hash sha256:c6094ae953604710d9f10fd4f248e35d7f8c4f0829eff777d677c9462fb83ce1\r\n<\/code><\/pre>\n\u8fd0\u884c\u793a\u4f8b
\n\u5927\u7ea6\u57282\u79d2\u5185\u7ed3\u675f<\/p>\n
[root@sugi-kubernetes19-node01 ~]# kubeadm join --token 99bcf2.e89be75362d8794b 192.168.120.220:6443 --discovery-token-ca-cert-hash sha256:c6094ae953604710d9f10fd4f248e35d7f8c4f0829eff777d677c9462fb83ce1\r\n[preflight] Running pre-flight checks.\r\n [WARNING Hostname]: hostname \"sugi-kubernetes19-node01.localdomain\" could not be reached\r\n [WARNING Hostname]: hostname \"sugi-kubernetes19-node01.localdomain\" lookup sugi-kubernetes19-node01.localdomain on 8.8.8.8:53: no such host\r\n [WARNING FileExisting-crictl]: crictl not found in system path\r\n[discovery] Trying to connect to API Server \"192.168.120.220:6443\"\r\n[discovery] Created cluster-info discovery client, requesting info from \"https:\/\/192.168.120.220:6443\"\r\n[discovery] Requesting info from \"https:\/\/192.168.120.220:6443\" again to validate TLS against the pinned public key\r\n[discovery] Cluster info signature and contents are valid and TLS certificate validates against pinned roots, will use API Server \"192.168.120.220:6443\"\r\n[discovery] Successfully established connection with API Server \"192.168.120.220:6443\"\r\n\r\nThis node has joined the cluster:\r\n* Certificate signing request was sent to master and a response\r\n was received.\r\n* The Kubelet was informed of the new secure connection details.\r\n\r\nRun 'kubectl get nodes' on the master to see this node join the cluster.\r\n<\/code><\/pre>\n\u5728Node\u670d\u52a1\u5668\u4e0a\u8fd0\u884c\u4e86\u5bb9\u5668\u3002<\/p>\n
[root@sugi-kubernetes19-node01 ~]# docker ps\r\nCONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES\r\nd47fa6aa99b3 quay.io\/coreos\/flannel@sha256:056cf57fd3bbe7264c0be1a3b34ec2e289b33e51c70f332f4e88aa83970ad891 \"\/opt\/bin\/flanneld...\" 46 seconds ago Up 45 seconds k8s_kube-flannel_kube-flannel-ds-w9dz9_kube-system_2b9cd429-29e5-11e8-9843-0050569817ee_1\r\n789d0beaac8e gcr.io\/google_containers\/kube-proxy-amd64@sha256:424a9dfc295f26f9d1e8070836d6fa08c83f22d86e592dfccddc847a85b1ef20 \"\/usr\/local\/bin\/ku...\" 50 seconds ago Up 49 seconds k8s_kube-proxy_kube-proxy-ddtfk_kube-system_2b9cbb8a-29e5-11e8-9843-0050569817ee_0\r\n33cc95e86646 gcr.io\/google_containers\/pause-amd64:3.0 \"\/pause\" About a minute ago Up About a minute k8s_POD_kube-proxy-ddtfk_kube-system_2b9cbb8a-29e5-11e8-9843-0050569817ee_0\r\n513e60c0149b gcr.io\/google_containers\/pause-amd64:3.0 \"\/pause\" About a minute ago Up About a minute k8s_POD_kube-flannel-ds-w9dz9_kube-system_2b9cd429-29e5-11e8-9843-0050569817ee_0\r\n<\/code><\/pre>\n\u786e\u8ba4\u72b6\u6001<\/p>\n
[root@sugi-kubernetes19-master01 ~]# kubectl get node\r\nNAME STATUS ROLES AGE VERSION\r\nsugi-kubernetes19-master01.localdomain Ready master 18m v1.9.4\r\nsugi-kubernetes19-node01.localdomain Ready <none> 4m v1.9.4\r\nsugi-kubernetes19-node02.localdomain Ready <none> 3m v1.9.4\r\n<\/code><\/pre>\n\u78ba\u8a8d\u83a2\u679c<\/p>\n
[root@sugi-kubernetes19-master01 ~]# kubectl get pods --all-namespaces\r\nNAMESPACE NAME READY STATUS RESTARTS AGE\r\nkube-system etcd-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 28m\r\nkube-system kube-apiserver-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 29m\r\nkube-system kube-controller-manager-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 29m\r\nkube-system kube-dns-6f4fd4bdf-5tvpn 3\/3 Running 0 29m\r\nkube-system kube-flannel-ds-tvvbj 1\/1 Running 1 14m\r\nkube-system kube-flannel-ds-w9dz9 1\/1 Running 1 15m\r\nkube-system kube-flannel-ds-z8btx 1\/1 Running 0 24m\r\nkube-system kube-proxy-24mm5 1\/1 Running 0 29m\r\nkube-system kube-proxy-ddtfk 1\/1 Running 0 15m\r\nkube-system kube-proxy-gnnvw 1\/1 Running 0 14m\r\nkube-system kube-scheduler-sugi-kubernetes19-master01.localdomain 1\/1 Running 0 28m\r\n<\/code><\/pre>\n\u4e0a\u9762\u5df2\u7ecf\u5efa\u7acb\u5b8c\u6210\u4e86\u3002 j\u00ec de le.)<\/p>\n
\u8bf7\u63d0\u4f9b\u4e00\u4e2a\u53c2\u8003\u7f51\u5740\u3002<\/h1>\n","protected":false},"excerpt":{"rendered":"
\u9996\u5148 \u6211\u5011\u5c07\u5728CentOS7\u4e0a\u5b89\u88ddKubernetes\uff081.9\uff09\uff0c\u4e26\u6309\u7167\u4ee5\u4e0b\u914d\u7f6e\u5efa\u7acbKubernetes\u96c6\u7fa4\u3002 […]<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-36063","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"\n
\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9 - Blog - Silicon Cloud<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.silicloud.com\/zh\/blog\/\u5728-centos-7-\u4e0a\u5b89\u88c5-kubernetes-1-9\/\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9\" \/>\n<meta property=\"og:description\" content=\"\u9996\u5148 \u6211\u5011\u5c07\u5728CentOS7\u4e0a\u5b89\u88ddKubernetes\uff081.9\uff09\uff0c\u4e26\u6309\u7167\u4ee5\u4e0b\u914d\u7f6e\u5efa\u7acbKubernetes\u96c6\u7fa4\u3002 […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.silicloud.com\/zh\/blog\/\u5728-centos-7-\u4e0a\u5b89\u88c5-kubernetes-1-9\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog - Silicon Cloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-02-05T04:27:22+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-04-30T01:36:20+00:00\" \/>\n<meta name=\"author\" content=\"\u79d1, \u9896\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"\u79d1, \u9896\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/\",\"name\":\"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9 - Blog - Silicon Cloud\",\"isPartOf\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\"},\"datePublished\":\"2023-02-05T04:27:22+00:00\",\"dateModified\":\"2024-04-30T01:36:20+00:00\",\"author\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9875\",\"item\":\"https:\/\/www.silicloud.com\/zh\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/\",\"name\":\"Blog - Silicon Cloud\",\"description\":\"\",\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e\",\"name\":\"\u79d1, \u9896\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g\",\"caption\":\"\u79d1, \u9896\"},\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/author\/keying\/\"},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/#local-main-organization-logo\",\"url\":\"\",\"contentUrl\":\"\",\"caption\":\"Blog - Silicon Cloud\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9 - Blog - Silicon Cloud","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.silicloud.com\/zh\/blog\/\u5728-centos-7-\u4e0a\u5b89\u88c5-kubernetes-1-9\/","og_locale":"zh_CN","og_type":"article","og_title":"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9","og_description":"\u9996\u5148 \u6211\u5011\u5c07\u5728CentOS7\u4e0a\u5b89\u88ddKubernetes\uff081.9\uff09\uff0c\u4e26\u6309\u7167\u4ee5\u4e0b\u914d\u7f6e\u5efa\u7acbKubernetes\u96c6\u7fa4\u3002 […]","og_url":"https:\/\/www.silicloud.com\/zh\/blog\/\u5728-centos-7-\u4e0a\u5b89\u88c5-kubernetes-1-9\/","og_site_name":"Blog - Silicon Cloud","article_published_time":"2023-02-05T04:27:22+00:00","article_modified_time":"2024-04-30T01:36:20+00:00","author":"\u79d1, \u9896","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"\u79d1, \u9896","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"11 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/","url":"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/","name":"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9 - Blog - Silicon Cloud","isPartOf":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website"},"datePublished":"2023-02-05T04:27:22+00:00","dateModified":"2024-04-30T01:36:20+00:00","author":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e"},"breadcrumb":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9875","item":"https:\/\/www.silicloud.com\/zh\/blog\/"},{"@type":"ListItem","position":2,"name":"\u5728 CentOS 7 \u4e0a\u5b89\u88c5 Kubernetes 1.9"}]},{"@type":"WebSite","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website","url":"https:\/\/www.silicloud.com\/zh\/blog\/","name":"Blog - Silicon Cloud","description":"","inLanguage":"zh-Hans"},{"@type":"Person","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e","name":"\u79d1, \u9896","image":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g","caption":"\u79d1, \u9896"},"url":"https:\/\/www.silicloud.com\/zh\/blog\/author\/keying\/"},{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e5%9c%a8-centos-7-%e4%b8%8a%e5%ae%89%e8%a3%85-kubernetes-1-9\/#local-main-organization-logo","url":"","contentUrl":"","caption":"Blog - Silicon Cloud"}]}},"_links":{"self":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/36063","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/comments?post=36063"}],"version-history":[{"count":2,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/36063\/revisions"}],"predecessor-version":[{"id":91122,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/36063\/revisions\/91122"}],"wp:attachment":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/media?parent=36063"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/categories?post=36063"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/tags?post=36063"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}