Kubernetes l\u00e0 m\u1ed9t h\u1ec7 th\u1ed1ng m\u00e3 ngu\u1ed3n m\u1edf \u0111\u1ec3 t\u1ef1 \u0111\u1ed9ng tri\u1ec3n khai, scaling, qu\u1ea3n l\u00fd c\u00e1c container. Kubernetes \u0111\u01b0\u1ee3c x\u00e2y d\u1ef1ng b\u1edfi Google d\u1ef1a tr\u00ean kinh nghi\u1ec7m qu\u1ea3n l\u00fd s\u1eed d\u1ee5ng c\u00e1c container trong khi tri\u1ec3n khai m\u1ed9t h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00fd g\u1ecdi l\u00e0 Borg ( nhi\u1ec1u l\u00fac g\u1ecdi l\u00e0 Omega). <\/p>\n\n\n\n
Chu\u1ea9n b\u1ecb <\/p>\n\n\n\n
C\u1ea5u h\u00ecnh \u0111\u1ecba ch\u1ec9 IP t\u0129nh<\/p>\n\n\n\n
vim \/etc\/network\/interfaces<\/p>\n\n\n\n
iface enp2s0 inet static
\n address 172.16.12.120
\n netmask 255.255.255.0
\n network 172.16.12.0
\n gateway 172.16.12.1
\n dns-nameservers 8.8.8.8<\/p>\n\n\n\n
Thi\u1ebft l\u1eadp file host theo y\u00eau c\u1ea7u, ch\u00fa \u00fd thi\u1ebft l\u1eadp c\u1ea3 tr\u00ean master v\u00e0 c\u00e1c node<\/p>\n\n\n\n
vim \/etc\/hosts<\/p>\n\n\n\n
172.16.12.120 k8s-master
\n172.16.12.135 k8s-node1
\n172.16.12.136 k8s-node2<\/p>\n\n\n\n
service networking restart<\/p>\n\n\n\n
C\u1eadp nh\u1eadt c\u00e1c b\u1ea3n v\u00e1<\/p>\n\n\n\n
apt update && apt upgrade -y<\/p>\n\n\n\n
Thi\u1ebft l\u1eadp kho c\u00e0i \u0111\u1eb7t k8s<\/p>\n\n\n\n
apt-get update && apt-get install -y apt-transport-https curl
\ncurl -s https:\/\/packages.cloud.google.com\/apt\/doc\/apt-key.gpg | apt-key add –<\/p>\n\n\n\n
cat <\/etc\/apt\/sources.list.d\/kubernetes.list
\ndeb https:\/\/apt.kubernetes.io\/ kubernetes-xenial main
\nEOF<\/p>\n\n\n\n
C\u00e0i \u0111\u1eb7t K8s<\/p>\n\n\n\n
apt-get update
apt-get install -y kubelet kubeadm kubectl docker.io<\/p>\n\n\n\n
Ti\u1ebfp theo c\u00e1c b\u1ea1n ch\u1ea1y l\u1ec7nh sau:<\/p>\n\n\n\n
kubeadm init –pod-network-cidr 10.244.0.0\/16<\/p>\n\n\n\n
cp -i \/etc\/kubernetes\/admin.conf $HOME\/.kube\/config
chown $(id -u):$(id -g) $HOME\/.kube\/confi
chown $(id -u):$(id -g) \/root\/.kube\/config<\/p>\n\n\n\n
Ti\u1ebfp t\u1ee5c ch\u1ea1y l\u1ec7nh<\/p>\n\n\n\n
kubectl apply -f https:\/\/raw.githubusercontent.com\/coreos\/flannel\/master\/Documentation\/kube-flannel.yml<\/p>\n\n\n\n
Th\u1ed1ng k\u00ea c\u00e1c namespaces \u0111ang ch\u1ea1y<\/p>\n\n\n\n
kubectl get pods –all-namespaces
\nwatch kubectl get pods –all-namespaces<\/p>\n\n\n\n
Kh\u1edfi \u0111\u1ed9ng l\u1ea1i d\u1ecbch v\u1ee5<\/p>\n\n\n\n
systemctl daemon-reload
\nsystemctl restart kubelet
\nkubectl get node
\nwatch kubectl get node<\/p>\n\n\n\n
C\u00e0i \u0111\u1eb7t Dashboard cho k8s<\/p>\n\n\n\n
kubectl apply -f https:\/\/raw.githubusercontent.com\/kubernetes\/dashboard\/v1.10.1\/src\/deploy\/recommended\/kubernetes-dashboard.yaml<\/p>\n\n\n\n
Run command <\/p>\n\n\n\n
cat < \/root\/khanh1.yml
\napiVersion: v1
\nkind: ServiceAccount
\nmetadata:
\n name: admin-user
\n namespace: kube-system
\nEOF<\/p>\n\n\n\n
cat < \/root\/khanh2.yml
\napiVersion: rbac.authorization.k8s.io\/v1
\nkind: ClusterRoleBinding
\nmetadata:
\n name: admin-user
\nroleRef:
\n apiGroup: rbac.authorization.k8s.io
\n kind: ClusterRole
\n name: cluster-admin
\nsubjects:<\/p>\n\n\n\n
EOF<\/p>\n\n\n\n
Th\u1ef1c hi\u1ec7n ch\u1ea1y l\u1ec7nh \u0111\u1ec3 apply<\/p>\n\n\n\n
kubectl apply -f \/root\/khanh1.yml
kubectl apply -f \/root\/khanh2.yml<\/p>\n\n\n\n
Hi\u1ec3n th\u1ecb token \u0111\u1ec3 \u0111\u0103ng nh\u1eadp v\u00e0o dashboard<\/p>\n\n\n\n
kubectl -n kube-system describe secret $(kubectl -n kube-system get secret | grep admin-user | awk ‘{print $1}’)<\/p>\n\n\n\n
kubectl proxy –address 0.0.0.0 –accept-hosts=’^*$’<\/p>\n\n\n\n