K3s部署

通安宁

2023-12-01

# 1）环境配置

- `每个节点`都要执行一遍

## 主机名设置

```shell
hostnamectl set-hostname node1
hostnamectl set-hostname node2
hostnamectl set-hostname node3
```

## hosts解析

```shell
cat >> /etc/hosts << EOF
192.168.1.40 node1
192.168.1.41 node2
192.168.1.44 node3
199.232.28.133 raw.githubusercontent.com
EOF
```

> 注意：
>
> 在 https://www.ipaddress.com/ 查询raw.githubusercontent.com的真实IP

## 免密登录

```shell
ssh-keygen -t rsa -P "" -f ~/.ssh/id_rsa
cd ~/.ssh/
cat id_rsa.pub >> authorized_keys
chmod 700 ~/.ssh
chmod 600 ~/.ssh/*
service sshd restart
scp ~/.ssh/* root@192.168.1.41:~/.ssh/
scp ~/.ssh/* root@192.168.1.44:~/.ssh/
```

## 必须组件

```shell
yum install -y container-selinux selinux-policy-base
rpm -i https://rpm.rancher.io/k3s-selinux-0.1.1-rc1.el7.noarch.rpm
```

## 运行脚本

- 下面的命令都只在`node1`执行

### k3sup脚本

```shell
vim k3sup.sh
```

```shell
#!/bin/bash

# Copyright OpenFaaS Author(s) 2019
#########################
# Repo specific content #
#########################

export VERIFY_CHECKSUM=0
export ALIAS=""
export OWNER=alexellis
export REPO=k3sup
export SUCCESS_CMD="$REPO version"
export BINLOCATION="/usr/local/bin"

###############################
# Content common across repos #
###############################

version=$(curl -sI https://github.com/$OWNER/$REPO/releases/latest | grep -i location | awk -F"/" '{ printf "%s", $NF }' | tr -d '\r')
if [ ! $version ]; then
echo "Failed while attempting to install $REPO. Please manually install:"
echo ""
echo "1. Open your web browser and go to https://github.com/$OWNER/$REPO/releases"
echo "2. Download the latest release for your platform. Call it '$REPO'."
echo "3. chmod +x ./$REPO"
echo "4. mv ./$REPO $BINLOCATION"
if [ -n "$ALIAS_NAME" ]; then
echo "5. ln -sf $BINLOCATION/$REPO /usr/local/bin/$ALIAS_NAME"
fi
exit 1
fi

hasCli() {

hasCurl=$(which curl)
if [ "$?" = "1" ]; then
echo "You need curl to use this script."
exit 1
fi
}

checkHash(){

sha_cmd="sha256sum"

if [ ! -x "$(command -v $sha_cmd)" ]; then
sha_cmd="shasum -a 256"
fi

if [ -x "$(command -v $sha_cmd)" ]; then

targetFileDir=${targetFile%/*}

(cd $targetFileDir && curl -sSL $url.sha256|$sha_cmd -c >/dev/null)

if [ "$?" != "0" ]; then
rm $targetFile
echo "Binary checksum didn't match. Exiting"
exit 1
fi
fi
}

getPackage() {
uname=$(uname)
userid=$(id -u)

suffix=""
case $uname in
"Darwin")
suffix="-darwin"
;;
"MINGW"*)
suffix=".exe"
BINLOCATION="$HOME/bin"
mkdir -p $BINLOCATION

;;
"Linux")
arch=$(uname -m)
echo $arch
case $arch in
"aarch64")
suffix="-arm64"
;;
esac
case $arch in
"armv6l" | "armv7l")
suffix="-armhf"
;;
esac
;;
esac

targetFile="/tmp/$REPO$suffix"

if [ "$userid" != "0" ]; then
targetFile="$(pwd)/$REPO$suffix"
fi

if [ -e "$targetFile" ]; then
rm "$targetFile"
fi

url=https://github.com/$OWNER/$REPO/releases/download/$version/$REPO$suffix
echo "Downloading package $url as $targetFile"

curl -sSL $url --output "$targetFile"

if [ "$?" = "0" ]; then

if [ "$VERIFY_CHECKSUM" = "1" ]; then
checkHash
fi

chmod +x "$targetFile"

echo "Download complete."

if [ ! -w "$BINLOCATION" ]; then

echo
echo "============================================================"
echo " The script was run as a user who is unable to write"
echo " to $BINLOCATION. To complete the installation the"
echo " following commands may need to be run manually."
echo "============================================================"
echo
echo " sudo cp $REPO$suffix $BINLOCATION/$REPO"

if [ -n "$ALIAS_NAME" ]; then
echo " sudo ln -sf $BINLOCATION/$REPO $BINLOCATION/$ALIAS_NAME"
fi

echo

else

echo
echo "Running with sufficient permissions to attempt to move $REPO to $BINLOCATION"

if [ ! -w "$BINLOCATION/$REPO" ] && [ -f "$BINLOCATION/$REPO" ]; then

echo
echo "================================================================"
echo " $BINLOCATION/$REPO already exists and is not writeable"
echo " by the current user. Please adjust the binary ownership"
echo " or run sh/bash with sudo."
echo "================================================================"
echo
exit 1

mv $targetFile $BINLOCATION/$REPO

if [ "$?" = "0" ]; then
echo "New version of $REPO installed to $BINLOCATION"
fi

if [ -e "$targetFile" ]; then
rm "$targetFile"
fi

if [ -n "$ALIAS_NAME" ]; then
if [ ! -L $BINLOCATION/$ALIAS_NAME ]; then
ln -s $BINLOCATION/$REPO $BINLOCATION/$ALIAS_NAME
echo "Creating alias '$ALIAS_NAME' for '$REPO'."
fi
fi

${SUCCESS_CMD}
fi
fi
}

hasCli
getPackage
```

```shell
chmod +x k3sup.sh
./k3sup.sh
k3sup --help
```

# 2) k3s集群

## 创建master节点

```shell
export IP=192.168.1.40
k3sup install --ip 192.168.1.40 --user root
```

```shell
export KUBECONFIG=/root/kubeconfig
kubectl get node
```

## 加入其他master节点

```shell
export USER=root
export SERVER_IP=192.168.1.40
export NEXT_SERVER_IP=192.168.1.41

k3sup join \
--ip $NEXT_SERVER_IP \
--user $USER \
--server-user $USER \
--server-ip $SERVER_IP \
--server
```

```shell
export USER=root
export SERVER_IP=192.168.1.40
export NEXT_SERVER_IP=192.168.1.44

k3sup join \
--ip $NEXT_SERVER_IP \
--user $USER \
--server-user $USER \
--server-ip $SERVER_IP \
--server
```

```shell
kubectl get node
```

---

[参考资料 ]:https://cloud.tencent.com/developer/article/1629246

K3s部署

相关阅读

相关文章

相关问答

相关文档