Kubernetes The Hard Way on Azure
This tutorial is designed for Microsoft Azure and Azure CLI 2.0.It is a fork of the great Kubernetes The Hard Way from Kelsey Hightower that describes same steps using Google Cloud Platform.
Azure part is based on the superb translation done by Jonathan Carter - @lostintangent in this fork. He is the one who is really behind the Azure "translation".
This tutorial walks you through setting up Kubernetes the hard way. This guide is not for people looking for a fully automated command to bring up a Kubernetes cluster. If that's you then check out Azure Container Services, or the Getting Started Guides.
Kubernetes The Hard Way is optimized for learning, which means taking the long route to ensure you understand each task required to bootstrap a Kubernetes cluster.
Kubernetes Dashboard configuration has been added at the end of the tutorial, to let you play with the cluster through a UI.
The results of this tutorial should not be viewed as production ready, and may receive limited support from the community, but don't let that stop you from learning!
Target Audience
The target audience for this tutorial is someone planning to support a production Kubernetes cluster and wants to understand how everything fits together.
Cluster Details
Kubernetes The Hard Way guides you through bootstrapping a highly available Kubernetes cluster with end-to-end encryption between components and RBAC authentication.
- Kubernetes 1.17.3
- containerd Container Runtime 1.3.3
- gVisor latest
- CNI Container Networking 0.7.1
- etcd v3.3.18
- CoreDNS v1.6.7
Labs
This tutorial assumes you have access to the Microsoft Azure. While Azure is used for basic infrastructure requirements the lessons learned in this tutorial can be applied to other platforms.
- Prerequisites
- Installing the Client Tools
- Provisioning Compute Resources
- Provisioning the CA and Generating TLS Certificates
- Generating Kubernetes Configuration Files for Authentication
- Generating the Data Encryption Config and Key
- Bootstrapping the etcd Cluster
- Bootstrapping the Kubernetes Control Plane
- Bootstrapping the Kubernetes Worker Nodes
- Configuring kubectl for Remote Access
- Provisioning Pod Network Routes
- Deploying the DNS Cluster Add-on
- Smoke Test
- Dashboard
- Cleaning Up
-
Kubernetes is an amazing orchestration service. It will make sure all your services are up, restart ones that appear to be failing, and organize your logs and diagnostics. It has taken the industry by
-
托管非托管 by Daniele Polencic 由Daniele Polencic 如何利用Kubernetes的力量来优化您的托管成本 (How to leverage the power of Kubernetes to optimise your hosting costs) During the last few years, the industry has experienced
-
Engineering Josh Long April 29, 2020 speaker: Josh Long (@starbuxman) Hi, Spring fans! Welcome to another installment of Spring Tips! In this installment, we’ll revisit two topics that we’ve addressed
-
本部分将生成一个用于 admin 用户的 kubeconfig 文件。 注意:在生成 admin 客户端证书的目录来运行本部分的指令。 admin kubeconfig 每一个 kubeconfig 都需要一个 Kuberntes API Server 地址。为了保证高可用,这里将使用 API Servers 前端外部负载均衡器的 IP 地址。 查询 kubernetes-the-hard-way
-
本部分将删除该教程所创建的全部计算资源。 计算节点 删除所有的控制节点和 worker 节点: gcloud -q compute instances delete controller-0 controller-1 controller-2 worker-0 worker-1 worker-2 网路 删除外部负载均衡器以及网络资源: gcloud -q compute forwardin
-
本部分将会运行一系列的测试来验证 Kubernetes 集群的功能正常。 数据加密 本节将会验证 encrypt secret data at rest 的功能。 创建一个 Secret: kubectl create secret generic kubernetes-the-hard-way --from-literal="mykey=mydata" 查询存在 etcd 里 16 进位编码
-
本部分将部署 DNS 扩展,用于为集群内的应用提供服务发现。 DNS 扩展 部属 kube-dns 群集扩展: kubectl create -f https://storage.googleapis.com/kubernetes-the-hard-way/kube-dns.yaml 输出为 serviceaccount "kube-dns" created configmap "kube-dns
-
Kubernetes 组件都是无状态的,所有的群集状态都储存在 etcd 集群中。 本部分内容将部署一套三节点的 etcd 群集,并配置高可用以及远程加密访问。 事前准备 本部分的命令需要在每个控制节点上都运行以便,包括 controller-0、controller-1 和 controller-2。可以使用 gcloud 命令登录每个控制节点,比如 gcloud compute ssh con
-
本部分翻译自 Kubernetes The Hard Way,译者 @kweisamx 和 @feiskyer。该教程指引用户在 Google Cloud Platform 上面一步步搭建一个高可用的 Kubernetes 集群。 如有翻译不好的地方或文字上的错误, 欢迎提出 Issue 或是 PR。 另外,繁体中文版翻译见 Kubernetes-The-Hard-Way-ZH-tw。 本教程将带