安装
主节点
curl -sfL http://rancher-mirror.cnrancher.com/k3s/k3s-install.sh | INSTALL_K3S_MIRROR=cn INSTALL_K3S_EXEC="--no-deploy traefik" sh -
curl -sfL http://rancher-mirror.cnrancher.com/k3s/k3s-install.sh | INSTALL_K3S_MIRROR=cn INSTALL_K3S_EXEC="--tls-san 121.5.251.228 --node-ip 121.5.251.228 --node-external-ip 121.5.251.228 --no-deploy servicelb --flannel-backend wireguard --kube-proxy-arg "proxy-mode=ipvs" "masquerade-all=true" --kube-proxy-arg "metrics-bind-address=0.0.0.0" --no-deploy traefik " sh -
安装后 /var/lib/rancher/k3s/server/node-token 获取K3S_TOKEN
删除自带的traefik
如果安装后不需要使用自带的traefik可使用以下方法删除
kubectl -n kube-system get pods
- 删除traefik资源:
kubectl -n kube-system delete helmcharts.helm.cattle.io traefik - 停止k3s服务:
sudo service k3s stop - 编辑服务文件
sudo vim /etc/systemd/system/k3s.service并将此行添加到ExecStart : –no-deploy traefik \ - 重新加载服务文件:
sudo systemctl daemon-reload - 从自动部署文件夹中删除清单文件:
sudo rm /var/lib/rancher/k3s/server/manifests/traefik.yaml - 启动k3s服务:
sudo service k3s start
添加子节点
K3S_TOKEN=`cat /var/lib/rancher/k3s/server/node-token`
curl -sfL http://rancher-mirror.cnrancher.com/k3s/k3s-install.sh | INSTALL_K3S_MIRROR=cn K3S_URL=https://domain:6443 K3S_TOKEN=${K3S_TOKEN} sh -
curl -sfL http://rancher-mirror.cnrancher.com/k3s/k3s-install.sh | INSTALL_K3S_MIRROR=cn K3S_URL=https://121.5.251.228:6443 K3S_TOKEN=K10051304dff023c4c7ee9bece98d2cd97874f6bbae7162c6b44f559f63f9f9c6ad::server:3583bfbd2e01f12f2a4971cf38b5bbea sh -
代理 Dashboard
kubectl port-forward $(kubectl get pods --selector "app.kubernetes.io/name=traefik" --output=name) 9000:9000 --address=0.0.0.0
centos 8 安装 wireguard
sudo curl -Lo /etc/yum.repos.d/wireguard.repo https://copr.fedorainfracloud.org/coprs/jdoss/wireguard/repo/epel-7/jdoss-wireguard-epel-7.repo
sudo yum install epel-release -y
sudo yum install wireguard-dkms wireguard-tools -y
kubeconfig 默认地址
etc/rancher/k3s/k3s.yaml