coreos kubernetes

[TOC]DescriptionThere is no detailed explanation of the Kubernetes's service exposure and Traefik's principles. The Traefik principle can be consulted in the official documentation: https://docs.traefik.io/, This document can also be consulted about the service exposure of kubernetes and the rationale for using Traefik as a kubernetes ingress: https://mritd.me/2016/12/06/ Try-traefik-on-

Reference Address: Https://github.com/gjmzj/kubeasz IntroductionProvides tools for quickly deploying highly available k8s clusters, deploying in binary mode and automating with Ansible-playbook, providing a one-click installation script or stepping through the installation of individual components while explaining the main parameter configurations and considerations for each step.CharacteristicsCluster Features: TLS bidirectional authentication, RBAC authorization, multi-master high availab

k8s Basic Concepts1. NodeNode as a working node in the cluster, running a real application, the smallest running unit kubernetes managed on node is the pod. Node runs Kubernetes's kubelet, Kube-proxy service processes, which are responsible for pod creation, startup, monitoring, restart, destruction, and load balancing for software patterns. The information that node contains: node address: The IP address of the host, or node ID. node op

First, introduce This case is based on Kubernetes and Docker, which includes1, Web front-end2, Redis Master3, Redis SlaveWhere the Web front-end interacts with the JavaScript Redis API and Redis Master Kubernetes System Architecture Second, the configuration 0. PrerequisitesKubernetes Cluster 1, start Redis Master use replication controller to ensure that only one pod is running (when a node is down,

Services deployed by users on Kubernetes typically run on private networks, and pod and service provide parameters such as Hostport,nodeport to expose these service ports to K8S nodes for user access. There are obvious drawbacks to this approach:1) Easy to occupy excessive host port;2) service ports exposed to multiple hosts increasing the difficulty of firewalls and security configuration3) The default hostport,nodeport mode does not function as load

1. The following error was reported during the creation of Nginx pod:#kubectlcreate-F Nginx-pod.yaml from " Nginx-pod.yaml " " Nginx " is for default/default is automatically created and added to the service accountWorkaround:1> Modify the Kube_admission_control parameter in the/etc/kubernetes/apiserver file.Before modification:Kube_admission_control="--admission_control=namespacelifecycle,namespaceexists,limitranger, Securitycontextdeny,serviceacco

Brief introductionKubernetes is an open source, containerized application for managing multiple hosts on a cloud platform, with the goal of making deploying containerized applications simple and efficient, Kuernetes provides a mechanism for application deployment, planning, updating, and maintenance.In Kubernetes, all containers are run in pods, and one pod can host one or more related containers. Each pod system created by the user automatically choo

components $ yum install-y etcd kubernetes NTP flannel 3, each node configuration ETCD Server # Modify config file $ vim/etc/etcd/etcd.conf Etcd_name=defaultEtcd_data_dir="/var/lib/etcd/default.etcd"Etcd_listen_client_urls="http://localhost:2379,http://192.168.80.139:2379"Etcd_advertise_client_urls="http://192.168.80.139:2379"# Start Service $ systemctl start ETCD $ systemctl enable etcd# check ETCD cluster status $ etcdctl cluster-Hea

1. Reference documentationhttp://traefik.cn/2. Simple way to accessReference documentshttps://tonybai.com/2018/06/25/the-kubernetes-ingress-practice-for-https-service/Previous: Traefik Basic deployment record, describes the simplest HTTP access Traefik, the access process reference is shown below:Client---(via HTTP)---> Traefik----(via HTTP)----;? ServicesNow to practice is more secure and more complex HTTPS access Traefik, there are two kinds of acce

First, prefaceKubernetes is the Google Open Source container cluster management system, based on Docker to build a container scheduling service, providing resource scheduling, balanced disaster recovery, service registration, dynamic expansion capacity and other functional suites, currently the latest version is 0.6.2. This article describes how to build Kubernetes platform based on Centos7.0, before it is formally introduced, it is necessary to under

How to obtain a Kubernetes image in China I. background As we all know, due to domestic network reasons, when building a Kubernetes environment, we often encounter situations where necessary images cannot be found. After all, it is not a good way to pick up junk in DockerHub. This article will teach you how to build your own image repository in DockerHub. Requirement: You have a GitHub account and a DockerH

Use Rancher's RKE to quickly deploy a Kubernetes Cluster Brief description: This article involves three Ubuntu machines, one RKE deployment machine (192.168.3.161), and two Kubernetes cluster machines (3.162 and 3.163 ). First on a Windows machine, download the rke_linux-amd64 from github, rename it rke, edit the cluster. the yml cluster deployment file uses the pscp Command provided by putty to upload the

, indicates the use of Host network volumes: #在该pod On the definition shared storage Volume List-name:string #共享存储卷名称 (there are many types of volumes) Emptydir: {} #类型为emtyDir的存储卷, a temporary directory with the pod's life cycle. A null-value hostpath:string #类型为hostPath的存储卷 that represents the directory path:string the host where the pod is mounted, and will be used for the same time Mount directory #Pod所在宿主机的目录. Secret: #类型为secret的存储卷, mount the cluster with the defined Secre ob

Introduction to deploying Calico Network Calico Components: The Felix:calico agent runs on each node, setting network information for the container: IP, routing Rules, iptable rules, etc. Etcd:calico Back-End storage BIRD:BGP Client: Responsible for broadcasting Felix's routing information set on each node to the Calico network (via the BGP Protocol). BGP Route Reflector: Hierarchical routing distribution for large-scale clusters. Calico:calico command-line administratio

With the popularity of micro-service architectures and the trend of cloud-native, containerized microservices have become the best product of continuous delivery and have become the kubernetes best ecosystem for operation and maintenance containers. Practice out of knowledge, since kubernetes the study, wrote a series of articles, in order to be able to learn from each other, to find knowledge of the loopho

The current skaffold version is v0.4 and has not yet been released, and is not recommended for use in production environments;Skaffold is used for developer rapid deployment programs to Kubernetes,Skaffold provides dev, run two modes , and Skaffold requires a skaffold configuration file that defines Skaffold workflow ；The Skaffold workflow defines three main stages : Build, Push, Deploy;First, BuildDuring the build phase, Skaffold uses the dockerfile

As early as half a year ago, the company began to implement the container deployment scheme Appos, although the publishing interface is too geek, very obscure, but carefully studied really feel very powerful, after the implementation of the container, computing resources (CPU, memory) utilization can be greatly improved, reduce the number of servers, thereby saving technical costs. Coincidentally, a number of friends in the start-up companies are also recently trying to do micro-services, contai