使用Kubernetes建设容器化数据中心操作命令-1.服务器准备

棒棒堂智能运维
8 阅读3分钟

服务器准备

1.1 服务器Labs-K8s-Master-1:系统初始化

#关闭防火墙和SELINUX
systemctl disable --now firewalld
setenforce 0
sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

#关闭交换分区
swapoff -a
sed -ri 's/.*swap.*/#&/' /etc/fstab

#设置主机名称,每台主机不同
hostnamectl set-hostname Labs-K8s-Master-1
reboot

#配置本地hosts
cat >> /etc/hosts << EOF
10.10.2.151 Labs-K8s-Master-1
10.10.2.152 Labs-K8s-Master-2
10.10.2.153 Labs-K8s-Master-3
10.10.2.154 Labs-K8s-Woker-1
EOF

#配置和加载 Linux 内核模块,启用容器网络过滤功能
cat >> /etc/modules-load.d/k8s.conf << EOF
overlay
br_netfilter
EOF

modprobe overlay
modprobe br_netfilter

#修改内核参数
cat >> /etc/sysctl.d/k8s.conf << EOF
net.bridge.bridge-nf-call-iptables  = 1  
net.bridge.bridge-nf-call-ip6tables = 1
net.ipv4.ip_forward                 = 1 
EOF
sysctl -p /etc/sysctl.d/k8s.conf

#配置时间同步
echo 'pool tiger.sina.com.cn iburst' >> /etc/chrony.conf
echo 'pool ntp1.aliyun.com iburst' >> /etc/chrony.conf
systemctl enable chronyd
systemctl start chronyd

#配置支持 IPVS负载均衡功能
yum install -y ipset ipvsadm
cat >> /etc/sysconfig/modules/ipvs.modules << EOF
modprobe -- ip_vs
modprobe -- ip_vs_rr
modprobe -- ip_vs_wrr
modprobe -- ip_vs_sh
modprobe -- nf_conntrack
EOF

#加载并验证内核模块
chmod 755 /etc/sysconfig/modules/ipvs.modules
bash /etc/sysconfig/modules/ipvs.modules
lsmod | grep -e ip_vs -e nf_conntrack

1.2 服务器Labs-K8s-Master-2:系统初始化

#关闭防火墙和SELINUX
systemctl disable --now firewalld
setenforce 0
sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

#关闭交换分区
swapoff -a
sed -ri 's/.*swap.*/#&/' /etc/fstab

#设置主机名称,每台主机不同
hostnamectl set-hostname Labs-K8s-Master-2
reboot

#配置本地hosts
cat >> /etc/hosts << EOF
10.10.2.151 Labs-K8s-Master-1
10.10.2.152 Labs-K8s-Master-2
10.10.2.153 Labs-K8s-Master-3
10.10.2.154 Labs-K8s-Woker-1
EOF

#配置和加载 Linux 内核模块,启用容器网络过滤功能
cat >> /etc/modules-load.d/k8s.conf << EOF
overlay
br_netfilter
EOF
modprobe overlay
modprobe br_netfilter

#修改内核参数
cat >> /etc/sysctl.d/k8s.conf << EOF
net.bridge.bridge-nf-call-iptables  = 1  
net.bridge.bridge-nf-call-ip6tables = 1
net.ipv4.ip_forward                 = 1  
EOF
sysctl -p /etc/sysctl.d/k8s.conf

#配置时间同步
echo 'pool tiger.sina.com.cn iburst' >> /etc/chrony.conf
echo 'pool ntp1.aliyun.com iburst' >> /etc/chrony.conf
systemctl enable chronyd
systemctl start chronyd

#配置支持 IPVS负载均衡功能
yum install -y ipset ipvsadm
cat >> /etc/sysconfig/modules/ipvs.modules << EOF
modprobe -- ip_vs
modprobe -- ip_vs_rr
modprobe -- ip_vs_wrr
modprobe -- ip_vs_sh
modprobe -- nf_conntrack
EOF

#加载并验证内核模块
chmod 755 /etc/sysconfig/modules/ipvs.modules
bash /etc/sysconfig/modules/ipvs.modules
lsmod | grep -e ip_vs -e nf_conntrack

1.3 服务器Labs-K8s-Master-3:系统初始化

#关闭防火墙和SELINUX
systemctl disable --now firewalld
setenforce 0
sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

#关闭交换分区
swapoff -a
sed -ri 's/.*swap.*/#&/' /etc/fstab

#设置主机名称,每台主机不同
hostnamectl set-hostname Labs-K8s-Master-3
reboot

#配置本地hosts
cat >> /etc/hosts << EOF
10.10.2.151 Labs-K8s-Master-1
10.10.2.152 Labs-K8s-Master-2
10.10.2.153 Labs-K8s-Master-3
10.10.2.154 Labs-K8s-Woker-1
EOF

#配置和加载 Linux 内核模块,启用容器网络过滤功能
cat >> /etc/modules-load.d/k8s.conf << EOF
overlay
br_netfilter
EOF
modprobe overlay
modprobe br_netfilter

#修改内核参数
cat >> /etc/sysctl.d/k8s.conf << EOF
net.bridge.bridge-nf-call-iptables  = 1  
net.bridge.bridge-nf-call-ip6tables = 1
net.ipv4.ip_forward                 = 1  
EOF
sysctl -p /etc/sysctl.d/k8s.conf

#配置时间同步
echo 'pool tiger.sina.com.cn iburst' >> /etc/chrony.conf
echo 'pool ntp1.aliyun.com iburst' >> /etc/chrony.conf
systemctl enable chronyd
systemctl start chronyd

#配置支持 IPVS负载均衡功能
yum install -y ipset ipvsadm
cat >> /etc/sysconfig/modules/ipvs.modules << EOF
modprobe -- ip_vs
modprobe -- ip_vs_rr
modprobe -- ip_vs_wrr
modprobe -- ip_vs_sh
modprobe -- nf_conntrack
EOF

#加载并验证内核模块
chmod 755 /etc/sysconfig/modules/ipvs.modules
bash /etc/sysconfig/modules/ipvs.modules
lsmod | grep -e ip_vs -e nf_conntrack

1.4 服务器Labs-K8s-Woker-1:系统初始化

#关闭防火墙和SELINUX
systemctl disable --now firewalld
setenforce 0
sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

#关闭交换分区
swapoff -a
sed -ri 's/.*swap.*/#&/' /etc/fstab

#设置主机名称,每台主机不同
hostnamectl set-hostname Labs-K8s-Woker-1
reboot

#配置本地hosts
cat >> /etc/hosts << EOF
10.10.2.151 Labs-K8s-Master-1
10.10.2.152 Labs-K8s-Master-2
10.10.2.153 Labs-K8s-Master-3
10.10.2.154 Labs-K8s-Woker-1
EOF

#配置和加载 Linux 内核模块,启用容器网络过滤功能
cat >> /etc/modules-load.d/k8s.conf << EOF
overlay
br_netfilter
EOF
modprobe overlay
modprobe br_netfilter

#修改内核参数
cat >> /etc/sysctl.d/k8s.conf << EOF
net.bridge.bridge-nf-call-iptables  = 1  
net.bridge.bridge-nf-call-ip6tables = 1
net.ipv4.ip_forward                 = 1 
EOF
sysctl -p /etc/sysctl.d/k8s.conf

#配置时间同步
echo 'pool tiger.sina.com.cn iburst' >> /etc/chrony.conf
echo 'pool ntp1.aliyun.com iburst' >> /etc/chrony.conf
systemctl enable chronyd
systemctl start chronyd

#配置支持 IPVS负载均衡功能
yum install -y ipset ipvsadm
cat >> /etc/sysconfig/modules/ipvs.modules << EOF
modprobe -- ip_vs
modprobe -- ip_vs_rr
modprobe -- ip_vs_wrr
modprobe -- ip_vs_sh
modprobe -- nf_conntrack
EOF

#加载并验证内核模块
chmod 755 /etc/sysconfig/modules/ipvs.modules
bash /etc/sysconfig/modules/ipvs.modules
lsmod | grep -e ip_vs -e nf_conntrack
avatar
文章
阅读
粉丝