当前位置: 首页 > 软件库 > 云计算 > 云原生 >

kubernetes-the-hard-way-on-azure

授权协议 Apache-2.0 License
开发语言 Google Go
所属分类 云计算、 云原生
软件类型 开源软件
地区 不详
投 递 者 袁河
操作系统 跨平台
开源组织
适用人群 未知
 软件概览

Kubernetes The Hard Way on Azure

This tutorial is designed for Microsoft Azure and Azure CLI 2.0.It is a fork of the great Kubernetes The Hard Way from Kelsey Hightower that describes same steps using Google Cloud Platform.

Azure part is based on the superb translation done by Jonathan Carter - @lostintangent in this fork. He is the one who is really behind the Azure "translation".

This tutorial walks you through setting up Kubernetes the hard way. This guide is not for people looking for a fully automated command to bring up a Kubernetes cluster. If that's you then check out Azure Container Services, or the Getting Started Guides.

Kubernetes The Hard Way is optimized for learning, which means taking the long route to ensure you understand each task required to bootstrap a Kubernetes cluster.

Kubernetes Dashboard configuration has been added at the end of the tutorial, to let you play with the cluster through a UI.

The results of this tutorial should not be viewed as production ready, and may receive limited support from the community, but don't let that stop you from learning!

Target Audience

The target audience for this tutorial is someone planning to support a production Kubernetes cluster and wants to understand how everything fits together.

Cluster Details

Kubernetes The Hard Way guides you through bootstrapping a highly available Kubernetes cluster with end-to-end encryption between components and RBAC authentication.

Labs

This tutorial assumes you have access to the Microsoft Azure. While Azure is used for basic infrastructure requirements the lessons learned in this tutorial can be applied to other platforms.

 相关资料
  • 本部分将生成一个用于 admin 用户的 kubeconfig 文件。 注意:在生成 admin 客户端证书的目录来运行本部分的指令。 admin kubeconfig 每一个 kubeconfig 都需要一个 Kuberntes API Server 地址。为了保证高可用,这里将使用 API Servers 前端外部负载均衡器的 IP 地址。 查询 kubernetes-the-hard-way

  • 本部分将删除该教程所创建的全部计算资源。 计算节点 删除所有的控制节点和 worker 节点: gcloud -q compute instances delete controller-0 controller-1 controller-2 worker-0 worker-1 worker-2 网路 删除外部负载均衡器以及网络资源: gcloud -q compute forwardin

  • 本部分将会运行一系列的测试来验证 Kubernetes 集群的功能正常。 数据加密 本节将会验证 encrypt secret data at rest 的功能。 创建一个 Secret: kubectl create secret generic kubernetes-the-hard-way --from-literal="mykey=mydata" 查询存在 etcd 里 16 进位编码

  • 本部分将部署 DNS 扩展,用于为集群内的应用提供服务发现。 DNS 扩展 部属 kube-dns 群集扩展: kubectl create -f https://storage.googleapis.com/kubernetes-the-hard-way/kube-dns.yaml 输出为 serviceaccount "kube-dns" created configmap "kube-dns

  • Kubernetes 组件都是无状态的,所有的群集状态都储存在 etcd 集群中。 本部分内容将部署一套三节点的 etcd 群集,并配置高可用以及远程加密访问。 事前准备 本部分的命令需要在每个控制节点上都运行以便,包括 controller-0、controller-1 和 controller-2。可以使用 gcloud 命令登录每个控制节点,比如 gcloud compute ssh con

  • 本部分翻译自 Kubernetes The Hard Way,译者 @kweisamx 和 @feiskyer。该教程指引用户在 Google Cloud Platform 上面一步步搭建一个高可用的 Kubernetes 集群。 如有翻译不好的地方或文字上的错误, 欢迎提出 Issue 或是 PR。 另外,繁体中文版翻译见 Kubernetes-The-Hard-Way-ZH-tw。 本教程将带