This article will introduce the creation and use of Kube-ui (also called dashboard) on the basis of the previous article. This thing is essentially the WebUI connection Master API interface, through the API to obtain information about the k8s cluster, and then on the web display, for the user is more friendly, the actual use is not very large.One, download the image file and incorporate the unified management of the local warehouse# docker pull docker
Kubernetes can automatically run multiple copies of Odoo services, so it 's very well suited to make a highly available Odoo deployment, in this case,Odoo The service runs in the kubernetes cluster, while the PostgreSQL database runs in another Cluster host host Network on the other hostInstall
container sizes, and so on. Here are some interesting information and controls1. With Kubectl get deploy, you can view some details about each deployment2. Kubectl get RS for each deployment-related replication set (replicas)3. Use the KUBECTL scale command to specify how many containers to run for an appKubectl scale--replicas=3 rs/mvcapp-1456147153Note: In fact, when Kubectl run, you can specify the number of containers to run at the same time, and if you prefer, you can set it to Autoscale (
The next one is to deploy and expand the Kubernetes cluster based on rancher7. Configuring Redis with ConfigmapHttps://github.com/kubernetes/kubernetes.github.io/blob/master/docs/user-guide/configmap/redis/redis-configRedis-configMaxMemory 2MB Maxmemory-policy Allkeys-lru# kubectl Create Configmap example-redis-config--from-file=./redis-config# Kubectl Get config
The security of the cluster mainly considers the following aspects:
Isolation of the container from the host;
Limiting the ability of containers to adversely affect infrastructure and other containers;
The principle of least privilege--to reasonably restrict the permissions of all components, to ensure that the component only performs its mandated behavior, limiting the scope of the permissions it can achieve by restricting the ability of
Original intentionSince the advent of kubernetes (k8s), the installation of complex, difficult to deploy has been the industry to spit groove, but also a lot of beginners to block outside the door. While there are also official standalone deployment options for getting Started: Minikube, and the kubeadm used to build the cluster, the domestic green network environment makes the official program extremely co
This is a creation in
Article, where the information may have evolved or changed.
Kubernetes cluster has been set up, has been running very stable. Previous concerns have focused more on installation, configuration, and component debugging, and some of the minutiae has been overlooked. The settings for the time zone in the pod are one of them. I'm going to try to solve this problem today.
First, the problem
Add/Remove node to Kubernetes cluster
Minion node pre-operation preparation#关闭防火墙systemctl stop firewalld#禁止防火墙开机启动systemctl disable firewalld#检查selinuxgetenforceDisabled#端口检查
Add node to the Kubernetes clusterWhen the KUBEADM Init initialization operation is complete, the system finally gives the command to join the node to the cluster:kubeadm join 10.0.0.
/etc/hosts172.18.1.6 k8s-node-1172.18.1.7 k8s-node-2172.18.1.8 k8s-node-3172.18.1.9 k8s-node-42. Installing the ETCD Cluster2.1 K8s-node-1 operation (individual ports can be controlled by themselves)Yum-y Install etcd# Create ETCD Data Modify configuration file,/etc/etcd/etcd.conf need to modify the following parameters: etcd_name=etcd1etcd_listen_peer_urls= "/http 172.18.1.6:2380 "etcd_listen_client_urls=" http://172.18.1.6:2379,http://127.0.0.1:2379 "Etcd_initial_advertise_ peer_urls= "http://
Preparatory work:Install three virtual machines (Ubuntu14.04.5), where Ubuntu01 (192.168.195.131) represents the master node, Ubuntu02 (192.168.195.132) and Ubuntu03 (192.168.195.133) represent node Nodes. Install Docker (installed by Apt-get) in three virtual machines and run the command docker-v after installation to see if the installation was Successful.Note: 1. Three virtual machines must be able to ping each other.2. Install the SECURECRT to ensure that you can ssh into the three virtual m
Especially when creating pods, you will encounter all kinds of problems, please check the error details by the following command.Kubectl describe pod xxxxxx1. Problem phenomenon: Mirroring is always not getting downWORKAROUND: Set up a mirror source for Docker--registry-mirror=http://f2d6cb40.m.daocloud.io'2. Symptom: There is a certificate error in the error message, certificate xxxx, execute on node nodesYum Install *rhsm*-y3. Problem phenomenon: When using the Docker private library, when pro
"}, {_id:1, Host:"mongodb-1.mongodb.basic-app.svc.cluster.local:27017"}, {_id:2, Host:"mongodb-2.mongodb.basic-app.svc.cluster.local:27017" } ]});2. Create an administrative user: For specific reference: https://docs.mongodb.com/manual/tutorial/enable-authentication/Use admindb.createuser ({User:"Myuseradmin", pwd:"[email protected]", roles: [{role:"Useradminanydatabase"Db:"Admin"}]}) Db.auth ("Myuseradmin","[email protected]")3, after you can connect to create users, give role permissions to
also build a private warehouse, upload the pod-infrastructure:latest image to a private repository, and modify the address of this profile.
Start the service:To view ports:
Repeat the above operation on the NODE02 host.
Check the node status on master:Five Building a private warehouse:Kubernetes Management Container If this is the first operation, there may be some waiting time, because the first download of images takes a while. If there is no Docker registry locally, make sure tha
Tags: des art csdn get scribe run Master pre ASTUse Kubectl Run Nginx--image=nginx After viewing: Kubectl describe pods Found in creating state, and Error: (Unable to ping registry endpoint Https://gcr.io/v0/\nv2 Ping attempt failed with Error:get https://gcr.io/v2/: ... Cause: Gcr.io by the wall, unable to ping. Workaround: On each nodes, pull the relevant image from Dockerhub and hit the new tag: (You can use ansible to resolve) Docker pull docker.io/kuber
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.