首页 开源 资讯 活动 开源许可证
软件工程云服务
软件代码质量检测云服务 持续集成与部署云服务 社区个性化内容推荐服务 贡献审阅人推荐服务 群体化学习服务 重睛鸟代码扫描工具
Watch 1 Star 0 Fork 0

罗兴/k8s-install

代码 Issues 0 Pull Requests 0 Wiki 0 统计
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
该仓库未声明开源许可证文件(LICENSE),使用请关注具体项目描述及其代码上游依赖。
项目仓库所选许可证以仓库主分支所使用许可证为准
克隆/下载
k8s1.28.14.sh 4.84 KB
一键复制 编辑 原始数据 按行查看 历史
罗兴 提交于 2024-09-14 13:51 . k8s一键安装脚本
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181
#!/bin/bash

# @FileName  :k8s-install.sh

# @Time      :2024/9/14

# @Author    :Rohing

# Rocky9.2进行搭建的脚本

# 修改主机名为 master

hostnamectl set-hostname master



# 配置 Rocky Linux 软件源

configure_repo() {

  cat > /etc/yum.repos.d/rocky.repo <<EOF

[baseos]

name=Rocky Linux \$releasever - BaseOS

baseurl=http://mirrors.sjtug.sjtu.edu.cn/rocky/\$releasever/BaseOS/\$basearch/os/

gpgcheck=1

enabled=1

gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial



[appstream]

name=Rocky Linux \$releasever - AppStream

baseurl=http://mirrors.sjtug.sjtu.edu.cn/rocky/\$releasever/AppStream/\$basearch/os/

gpgcheck=1

enabled=1

gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial

EOF

  yum clean all

  yum makecache

}



# 安装基本工具

install_basic_tools() {

  yum install -y epel-release vim wget curl net-tools git iproute-tc bash-completion chrony

}



# 禁用防火墙和 SELinux

disable_security() {

  systemctl stop firewalld

  systemctl disable firewalld

  setenforce 0

  sed -i 's/^SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

}



# 配置 Chrony 时间同步

configure_chrony() {

  systemctl enable chronyd

  systemctl start chronyd

  chronyc sources

}



# 配置系统限制

configure_limits() {

  cat > /etc/sysctl.d/k8s.conf <<EOF

net.bridge.bridge-nf-call-ip6tables = 1

net.bridge.bridge-nf-call-iptables = 1

net.ipv4.ip_forward = 1

vm.swappiness = 0

EOF

  sysctl --system

}



# 安装 ELRepo 并升级内核

install_elrepo() {

  yum install -y https://www.elrepo.org/elrepo-release-9.el9.elrepo.noarch.rpm

  yum --disablerepo="*" --enablerepo="elrepo-kernel" list available

  yum --enablerepo=elrepo-kernel install -y kernel-ml

  grub2-set-default 0

  grub2-mkconfig -o /boot/grub2/grub.cfg

}



# 配置 Kernel 模块和网络

configure_kernel_network() {

  cat > /etc/modules-load.d/k8s.conf <<EOF

br_netfilter

ip_vs

ip_vs_rr

ip_vs_wrr

ip_vs_sh

nf_conntrack

EOF



  modprobe br_netfilter

  modprobe ip_vs

}



# 安装 containerd 并配置

install_containerd() {

  yum install -y containerd

  systemctl enable containerd

  systemctl start containerd

  mkdir -p /etc/containerd

  containerd config default > /etc/containerd/config.toml

  sed -i 's#SystemdCgroup = false#SystemdCgroup = true#' /etc/containerd/config.toml

  systemctl restart containerd

}



# 配置 containerd 镜像加速器

configure_registry_mirrors() {

  sed -i 's#registry.k8s.io#registry.aliyuncs.com/google_containers#' /etc/containerd/config.toml

  systemctl restart containerd

}



# 安装 crictl 工具

install_crictl() {

  VERSION="v1.28.0"  # 和 Kubernetes 版本一致

  wget https://github.com/kubernetes-sigs/cri-tools/releases/download/$VERSION/crictl-$VERSION-linux-amd64.tar.gz

  tar zxvf crictl-$VERSION-linux-amd64.tar.gz -C /usr/local/bin

  chmod +x /usr/local/bin/crictl

  rm -f crictl-$VERSION-linux-amd64.tar.gz

}



# 拉取 Kubernetes 相关的镜像

pull_k8s_images() {

  VERSION="v1.28.0"  # Kubernetes 版本

  IMAGES=(

    "kube-apiserver:$VERSION"

    "kube-controller-manager:$VERSION"

    "kube-scheduler:$VERSION"

    "kube-proxy:$VERSION"

    "pause:3.9"

    "etcd:3.5.9-0"

    "coredns/coredns:v1.10.1"

  )



  for IMAGE in "${IMAGES[@]}"; do

    crictl pull m.daocloud.io/registry.k8s.io/$IMAGE

  done

}



# 安装 Kubernetes 组件

install_k8s_components() {

  cat <<EOF | tee /etc/yum.repos.d/kubernetes.repo

[kubernetes]

name=Kubernetes

baseurl=https://mirrors.aliyun.com/kubernetes-new/core/stable/v1.28/rpm/

enabled=1

gpgcheck=1

gpgkey=https://mirrors.aliyun.com/kubernetes-new/core/stable/v1.28/rpm/repodata/repomd.xml.key

EOF



  setenforce 0

  yum install -y kubelet kubeadm kubectl

  systemctl enable kubelet

  systemctl start kubelet

}



# 初始化 Kubernetes Master 节点

init_k8s_master() {

  kubeadm init --kubernetes-version=v1.28.0 --pod-network-cidr=10.244.0.0/16 --apiserver-advertise-address=192.168.1.151 --cri-socket unix:///var/run/containerd/containerd.sock



  # 配置 kubectl 使用 admin 配置文件

  mkdir -p $HOME/.kube

  cp -i /etc/kubernetes/admin.conf $HOME/.kube/config

  chown $(id -u):$(id -g) $HOME/.kube/config



  echo "Kubernetes master 已成功初始化。"

  echo "请使用以下命令将其他节点加入集群:"

  kubeadm token create --print-join-command

}



# 运行所有功能

main() {

  configure_repo

  install_basic_tools

  disable_security

  configure_chrony

  configure_limits

  install_elrepo

  configure_kernel_network

  install_containerd

  configure_registry_mirrors

  install_crictl

  pull_k8s_images

  install_k8s_components

  init_k8s_master

}



main



echo "接下来需要网络插件,请自行选择"

echo "kubectl apply -f https://raw.githubusercontent.com/coreos/flannel/master/Documentation/kube-flannel.yml"

echo "https://projectcalico.docs.tigera.io/about/about-calico"
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化