0,规划
| 主机名 |
IP |
集群角色 |
操作系统 |
磁盘规划 |
| dts-paas-middleware-dev-master-0 |
1x.xxx.1.157 |
master |
CentOS Linux 7.9.2009 |
|
| dts-paas-middleware-dev-node-4 |
1x.xxx.1.162 |
node |
CentOS Linux 7.9.2009 |
|
| dts-paas-middleware-dev-node-5 |
1x.xxx.1.163 |
node |
CentOS Linux 7.9.2009 |
|
配置免密登录
1
2
3
4
5
6
7
8
9
10
11
12
13
14
| master节点生产sshkey
dts-paas-middleware-dev-master-0# ssh-keygen
在master和node节点都执行:
wget http://1x.xx.66.1/1574wU/id_rsa.pub
cat id_rsa.pub >> .ssh/authorized_keys
systemctl start firewalld.service
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="1x.xxx.1.157/32" port protocol="tcp" port="22" accept"
systemctl restart firewalld
firewall-cmd --reload
systemctl enable firewalld
systemctl disable firewalld
systemctl stop firewalld
echo "sshd: 1x.xxx.1.157" >> /etc/hosts.allow
|
1,安装k8s
指定cidr
1
2
3
4
5
6
7
| sealos init --master 1x.xxx.1.157 \
--node 1x.xxx.1.162 \
--node 1x.xxx.1.163 \
--user root \
--version v1.18.8 \
--pkg-url kube1.18.8.tar.gz \
--podcidr 1x.xxx.132.0/23
|
2,配置pvc
基于之前的文档已经配置好nfs
1
2
3
4
| cd yaml
kubectl apply -f rbac.yaml
kubectl apply -f nfs-provisioner.yaml
kubectl apply -f storageClass.yaml
|
配置网络
关闭ipip模式,使用bgp模式
1
| kubectl edit ippool -o yaml
|
spec:
blockSize: 26
cidr: 1x.xxx.130.0/23
ipipMode: Never 表示使用bgp模式,Always使用ipip模式
1
| kubectl edit ds calico-node -n kube-system
|
name: CALICO_IPV4POOL_IPIP
value: Never 表示关闭ipip模式,Always是启用
查看网络路由
bgp模式没有tunel了