CentOS 10 kubeadm安装K8s 1.32.2

前期配置

系统初始化及runtime安装(此处省略)

配置 containerd 使用 systemd(所有节点执行)

sed -i 's/SystemdCgroup = false/SystemdCgroup = true/' /etc/containerd/config.toml

systemctl restart containerd

添加官方源(所有节点执行)

cat <<EOF | sudo tee /etc/yum.repos.d/kubernetes.repo
[kubernetes]
name=Kubernetes
baseurl=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/
enabled=1
gpgcheck=1
gpgkey=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/repodata/repomd.xml.key
exclude=kubelet kubeadm kubectl cri-tools kubernetes-cni
EOF

安装 kubelet kubeadm kubectl(所有节点执行)

yum install -y kubelet kubeadm kubectl --disableexcludes=kubernetes

# 锁定版本
dnf install -y python3-dnf-plugins-extras-versionlock
dnf versionlock add kubelet kubeadm kubectl
dnf versionlock list

# 启动 kubelet
systemctl enable --now kubelet

镜像拉取(所有节点执行)

kubeadm config images pull --kubernetes-version 1.32.2
# 若拉取不了,可手动拉取
ctr -n k8s.io image pull registry.k8s.io/kube-controller-manager:v1.32.2
ctr -n k8s.io image pull registry.k8s.io/kube-scheduler:v1.32.2
ctr -n k8s.io image pull registry.k8s.io/kube-apiserver:v1.32.2
ctr -n k8s.io image pull registry.k8s.io/kube-proxy:v1.32.2
ctr -n k8s.io image pull registry.k8s.io/coredns/coredns:v1.11.3
ctr -n k8s.io image pull registry.k8s.io/pause:3.10
ctr -n k8s.io image pull registry.k8s.io/etcd:3.5.16-0


# 国内源拉取(如果仓库里的对应版本存在的话)
kubeadm config images pull \
  --image-repository registry.cn-hangzhou.aliyuncs.com/google_containers \
  --kubernetes-version 1.32.2

集群初始化(cp节点执行)

kubeadm init --apiserver-advertise-address 192.168.1.26 \
  --cri-socket "unix:///var/run/containerd/containerd.sock" \
  --kubernetes-version 1.32.2

output: (手动执行输出的命令)

Your Kubernetes control-plane has initialized successfully!

To start using your cluster, you need to run the following as a regular user:

  mkdir -p $HOME/.kube
  sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
  sudo chown $(id -u):$(id -g) $HOME/.kube/config

Alternatively, if you are the root user, you can run:

  export KUBECONFIG=/etc/kubernetes/admin.conf

You should now deploy a pod network to the cluster.
Run "kubectl apply -f [podnetwork].yaml" with one of the options listed at:
  https://kubernetes.io/docs/concepts/cluster-administration/addons/

Then you can join any number of worker nodes by running the following on each as root:

kubeadm join 192.168.1.26:6443 --token l3hk4z.6gifq3s7d8ur7uet \
        --discovery-token-ca-cert-hash sha256:eedb0b52c911a42100ecec7f62990528043248fefe6411485e28b7008fecb4b1

初始化失败后执行

# 重置初始化
kubeadm reset -f

# 排查日志
tail -f /var/log/messages

worker节点加入集群(worker 节点执行)

kubeadm join 192.168.1.26:6443 --token l3hk4z.6gifq3s7d8ur7uet \
        --discovery-token-ca-cert-hash sha256:eedb0b52c911a42100ecec7f62990528043248fefe6411485e28b7008fecb4b1

安装 CNI 网络插件 - Calico

# Introduction URL:
# https://docs.tigera.io/calico/latest/getting-started/kubernetes/self-managed-onprem/onpremises#calico-manifests

# 下载
curl -O https://raw.githubusercontent.com/projectcalico/calico/v3.29.2/manifests/calico.yaml

# 拉取镜像(所有节点执行)
ctr -n k8s.io image pull docker.io/calico/cni:v3.29.2
ctr -n k8s.io image pull docker.io/calico/node:v3.29.2
ctr -n k8s.io image pull docker.io/calico/kube-controllers:v3.29.2

# 创建
kubectl apply -f calico.yaml

检测集群节点及pod状态

kubectl get node

kubectl get pod -A

备注:

若加入集群命令的token过期,可在cp节点使用如下命令重新生成: kubeadm token create --print-join-command

PreviousCentOS 10 安装 ContainerdNextK8s 使用 NFS 动态制备 PV

Last updated