ECS部署k8s

# 阿里云 docker hub 镜像exportREGISTRY_MIRROR=https://registry.cn-hangzhou.aliyuncs.com
# 在 master 节点和 worker 节点都要执行# 安装 docker# 参考文档如下# https://docs.docker.com/install/linux/docker-ce/centos/ # https://docs.docker.com/install/linux/linux-postinstall/# 卸载旧版本yum remove -y docker \
docker-client \
docker-client-latest \
docker-ce-cli \
docker-common \
docker-latest \
docker-latest-logrotate \
docker-logrotate \
docker-selinux \
docker-engine-selinux \
docker-engine
# 设置 yum repositoryyum install -y yum-utils \
device-mapper-persistent-data \
lvm2
yum-config-manager --add-repo http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
# 安装并启动 dockeryum install -y docker-ce-19.03.11 docker-ce-cli-19.03.11 containerd.io-1.2.13
mkdir /etc/docker || truecat > /etc/docker/daemon.json <<EOF
{
"registry-mirrors": ["${REGISTRY_MIRROR}"],
"exec-opts": ["native.cgroupdriver=systemd"],
"log-driver": "json-file",
"log-opts": {
"max-size": "100m"  },
"storage-driver": "overlay2",
"storage-opts": [
"overlay2.override_kernel_check=true"  ]
}
EOF
mkdir-p /etc/systemd/system/docker.service.d
# Restart Dockersystemctl daemon-reload
systemctl enable docker
systemctl restart docker
# 安装 nfs-utils# 必须先安装 nfs-utils 才能挂载 nfs 网络存储yum install -y nfs-utils
yum install -ywget# 关闭 防火墙systemctl stop firewalld
systemctl disable firewalld
# 关闭 SeLinuxsetenforce 0sed-i"s/SELINUX=enforcing/SELINUX=disabled/g" /etc/selinux/config
# 关闭 swapswapoff -ayes | cp /etc/fstab /etc/fstab_bak
cat /etc/fstab_bak |grep -v swap > /etc/fstab
# 修改 /etc/sysctl.conf# 如果有配置，则修改sed-i"s#^net.ipv4.ip_forward.*#net.ipv4.ip_forward=1#g"  /etc/sysctl.conf
sed-i"s#^net.bridge.bridge-nf-call-ip6tables.*#net.bridge.bridge-nf-call-ip6tables=1#g"  /etc/sysctl.conf
sed-i"s#^net.bridge.bridge-nf-call-iptables.*#net.bridge.bridge-nf-call-iptables=1#g"  /etc/sysctl.conf
sed-i"s#^net.ipv6.conf.all.disable_ipv6.*#net.ipv6.conf.all.disable_ipv6=1#g"  /etc/sysctl.conf
sed-i"s#^net.ipv6.conf.default.disable_ipv6.*#net.ipv6.conf.default.disable_ipv6=1#g"  /etc/sysctl.conf
sed-i"s#^net.ipv6.conf.lo.disable_ipv6.*#net.ipv6.conf.lo.disable_ipv6=1#g"  /etc/sysctl.conf
sed-i"s#^net.ipv6.conf.all.forwarding.*#net.ipv6.conf.all.forwarding=1#g"  /etc/sysctl.conf
# 可能没有，追加echo"net.ipv4.ip_forward = 1" >> /etc/sysctl.conf
echo"net.bridge.bridge-nf-call-ip6tables = 1" >> /etc/sysctl.conf
echo"net.bridge.bridge-nf-call-iptables = 1" >> /etc/sysctl.conf
echo"net.ipv6.conf.all.disable_ipv6 = 1" >> /etc/sysctl.conf
echo"net.ipv6.conf.default.disable_ipv6 = 1" >> /etc/sysctl.conf
echo"net.ipv6.conf.lo.disable_ipv6 = 1" >> /etc/sysctl.conf
echo"net.ipv6.conf.all.forwarding = 1"  >> /etc/sysctl.conf
# 执行命令以应用sysctl -p# 配置K8S的yum源cat <<EOF > /etc/yum.repos.d/kubernetes.repo
[kubernetes]
name=Kubernetes
baseurl=http://mirrors.aliyun.com/kubernetes/yum/repos/kubernetes-el7-x86_64
enabled=1gpgcheck=0repo_gpgcheck=0gpgkey=http://mirrors.aliyun.com/kubernetes/yum/doc/yum-key.gpg
       http://mirrors.aliyun.com/kubernetes/yum/doc/rpm-package-key.gpg
EOF
# 卸载旧版本yum remove -y kubelet kubeadm kubectl
# 安装kubelet、kubeadm、kubectl# 将 ${1} 替换为 kubernetes 版本号，例如 1.19.0yum install -y kubelet-${1} kubeadm-${1} kubectl-${1}# 重启 docker，并启动 kubeletsystemctl daemon-reload
systemctl restart docker
systemctl enable kubelet && systemctl start kubelet
docker version

# 只在 master 节点执行# 替换 x.x.x.x 为 master 节点的内网IP# export 命令只在当前 shell 会话中有效，开启新的 shell 窗口后，如果要继续安装过程，请重新执行此处的 export 命令exportMASTER_IP=x.x.x.x
# 替换 apiserver.demo 为 您想要的 dnsNameexportAPISERVER_NAME=apiserver.demo
# Kubernetes 容器组所在的网段，该网段安装完成后，由 kubernetes 创建，事先并不存在于您的物理网络中exportPOD_SUBNET=10.100.0.1/16
echo"${MASTER_IP}${APISERVER_NAME}" >> /etc/hosts
#!/bin/bash# 只在 master 节点执行# 脚本出错时终止执行set-eif [ ${#POD_SUBNET}-eq0 ] || [ ${#APISERVER_NAME}-eq0 ]; thenecho-e"\033[31;1m请确保您已经设置了环境变量 POD_SUBNET 和 APISERVER_NAME \033[0m"echo 当前POD_SUBNET=$POD_SUBNETecho 当前APISERVER_NAME=$APISERVER_NAMEexit1fi# 查看完整配置选项 https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta2rm-f ./kubeadm-config.yaml
cat <<EOF > ./kubeadm-config.yaml
apiVersion: kubeadm.k8s.io/v1beta2
kind: ClusterConfiguration
kubernetesVersion: v${1}imageRepository: registry.aliyuncs.com/k8sxio
controlPlaneEndpoint: "${APISERVER_NAME}:6443"networking:
  serviceSubnet: "10.96.0.0/16"  podSubnet: "${POD_SUBNET}"  dnsDomain: "cluster.local"EOF
# kubeadm init# 根据您服务器网速的情况，您需要等候 3 - 10 分钟kubeadm config images pull --config=kubeadm-config.yaml
kubeadm init --config=kubeadm-config.yaml --upload-certs# 配置 kubectlrm-rf /root/.kube/
mkdir /root/.kube/
cp-i /etc/kubernetes/admin.conf /root/.kube/config
# 安装 calico 网络插件# 参考文档 https://docs.projectcalico.org/v3.13/getting-started/kubernetes/self-managed-onprem/onpremisesecho"安装calico-3.13.1"rm-f calico-3.13.1.yaml
wget https://kuboard.cn/install-script/calico/calico-3.13.1.yaml
kubectl apply -f calico-3.13.1.yaml

# 只在 master 节点执行# 执行如下命令，等待 3-10 分钟，直到所有的容器组处于 Running 状态watch kubectl get pod -n kube-system -o wide
# 查看 master 节点初始化结果kubectl get nodes -o wide