溫馨提示×
您好,登錄后才能下訂單哦!
點擊 登錄注冊 即表示同意《億速云用戶服務條款》
您好,登錄后才能下訂單哦!
本篇內容介紹了“OpenShift-OKD3.10基礎環境的部署”的有關知識,在實際案例的操作過程中,不少人都會遇到這樣的困境,接下來就讓小編帶領大家學習一下如何處理這些情況吧!希望大家仔細閱讀,能夠學有所成!
單master + 雙node
1.主機角色劃分
#采用雙網段部署 0 網段是opesnshift內部通信IP,1 網段是連接外網通信地址
#master master.example.com192.168.0.39 192.168.1.39#node1 node1.example.com192.168.0.40192.168.1.40#node2 node2.example.com192.168.0.41192.168.1.41
2.系統初始化
2.1 開啟SELinux
[root@master ~]# cat /etc/sysconfig/selinux # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=enforcing# SELINUXTYPE= can take one of three two values: # targeted - Targeted processes are protected, # minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection. SELINUXTYPE=targeted
2.2 安裝基礎組件
yum install wget git net-tools bind-utils yum-utils iptables-services bridge-utils bash-completion kexec-tools sos psacct -y
2.3 更新操作系統
yum update -y reboot
2.4 配置ansible
## install ansibleyum -y install https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpmsed -i -e "s/^enabled=1/enabled=0/" /etc/yum.repos.d/epel.repoyum -y --enablerepo=epel install ansible pyOpenSSL
#checkout install playbooks
cd ~
git clone https://github.com/openshift/openshift-ansible
cd openshift-ansible
git checkout release-3.10
2.5 設置SSH免密登錄(master -> node)
## ssh ssh-keygenfor host in master.example.com \ master.example.com \ node1.example.com \ node2.example.com; \do ssh-copy-id -i ~/.ssh/id_rsa.pub $host; \done
3.開始部署
3.1 更新hosts配置文件
[root@master ~]# cat /etc/ansible/hosts
[OSEv3:children]
masters
nodes
etcd
nfs
[OSEv3:vars]
ansible_ssh_user=root
openshift_deployment_type=origin
#因采用虛擬機部署學習 配置此選項跳過主機硬件信息檢查
openshift_disable_check=disk_availability,docker_storage,memory_availability,docker_image_availability
openshift_master_identity_providers=[{'name':'htpasswd_auth','login':'true','challenge':'true','kind':'HTPasswdPasswordIdentityProvider',}]
openshift_master_default_subdomain=apps.test.example.com
openshift_deployment_type=origin
os_firewall_use_firewalld=true[masters]
master.example.com
[etcd]
master.example.com
[nodes]
master.example.com openshift_node_group_name='node-config-master'node1.example.com openshift_node_group_name='node-config-compute'node2.example.com openshift_node_group_name='node-config-compute'[nfs]
master.example.com3.2 執行預安裝檢測
[root@master ~]# ansible-playbook openshift-ansible/playbooks/prerequisites.yml
3.3 正式安裝
[root@master ~]# ansible-playbook openshift-ansible/playbooks/deploy_cluster.yml
4.FAQ
Q1 Docker HUB下載鏡像緩慢導致執行deploy腳本失敗##更改docker 的配置文件 /etc/sysconfig/docker
設置國內docker 鏡像倉庫例如阿里云加速
OPTIONS=' --selinux-enabled=false --signature-verification=False --registry-mirror=https://c9ojlmr5.mirror.aliyuncs.com'
#需要重啟docker
systemctl restart docker
#手動pull master和node使用的images
#master鏡像列表
docker.io/cockpit/kubernetes
docker.io/openshift/origin-haproxy-router
docker.io/openshift/origin-haproxy-router
docker.io/openshift/origin-service-catalog docker.io/openshift/origin-node
docker.io/openshift/origin-deployer
docker.io/openshift/origin-control-plane
docker.io/openshift/origin-control-plane
docker.io/openshift/origin-template-service-broker
docker.io/openshift/origin-pod
docker.io/cockpit/kubernetes
docker.io/openshift/origin-web-console
quay.io/coreos/etcd
#node鏡像列表
docker.io/openshift/origin-haproxy-router
docker.io/openshift/origin-node
docker.io/openshift/origin-deployer
docker.io/openshift/origin-pod
docker.io/ansibleplaybookbundle/origin-ansible-service-broker
docker.io/openshift/origin-docker-registry
docker-registry.default.svc:5000/openshift/jenkins
Q2 執行deploy時主機dns導致連外網失敗
臨時解決方案更改/etc/resolv.confecho nameserver 114.114.114.114 >>/etc/resolv.conf
“OpenShift-OKD3.10基礎環境的部署”的內容就介紹到這里了,感謝大家的閱讀。如果想了解更多行業相關的知識可以關注億速云網站,小編將為大家輸出更多高質量的實用文章!
免責聲明:本站發布的內容(圖片、視頻和文字)以原創、轉載和分享為主,文章觀點不代表本網站立場,如果涉及侵權請聯系站長郵箱:is@yisu.com進行舉報,并提供相關證據,一經查實,將立刻刪除涉嫌侵權內容。
