2. 程式人生 > 其它 >kubernetes配置清單知識點

kubernetes配置清單知識點

阿新 發佈:2021-08-24

資源及其在API中的組織形式

 1 [root@k8s-master01 ~]# kubectl api-versions
 2 admissionregistration.k8s.io/v1
 3 admissionregistration.k8s.io/v1beta1
 4 apiextensions.k8s.io/v1
 5 apiextensions.k8s.io/v1beta1
 6 apiregistration.k8s.io/v1
 7 apiregistration.k8s.io/v1beta1
 8 apps/v1
 9 authentication.k8s.io/v1
10 authentication.k8s.io/v1beta1

 
11 authorization.k8s.io/v1
12 authorization.k8s.io/v1beta1
13 autoscaling/v1
14 autoscaling/v2beta1
15 autoscaling/v2beta2
16 batch/v1
17 batch/v1beta1
18 certificates.k8s.io/v1
19 certificates.k8s.io/v1beta1
20 coordination.k8s.io/v1
21 coordination.k8s.io/v1beta1
22 discovery.k8s.io/v1beta1
23 events.k8s.io/v1

 
24 events.k8s.io/v1beta1
25 extensions/v1beta1
26 networking.k8s.io/v1
27 networking.k8s.io/v1beta1
28 node.k8s.io/v1beta1
29 policy/v1beta1
30 rbac.authorization.k8s.io/v1
31 rbac.authorization.k8s.io/v1beta1
32 scheduling.k8s.io/v1
33 scheduling.k8s.io/v1beta1
34 storage.k8s.io/v1
35 storage.k8s.io/v1beta1
36 v1

在當前叢集中,API Server所支援的API群組及其相關版本資訊可以通過kubectl api-servions命令獲取,如上命令結果顯示的多數API群組會在配置清單時用到。

例如:

apiVersion:v1

apiVersion:apps/v1

物件類資源配置規範(配置清單由5個(核心)一級欄位組成)

 1 [root@k8s-master01 ~]# kubectl get namespace kube-system -o yaml
 2 apiVersion: v1     #API群組及相關版本
 3 kind: Namespace   #kind欄位:標識物件所屬資源型別;常用的型別有namespace、deployment、service及pod等等
apiVersion和kind欄位可合稱為型別元資料(TypeMeta)
 4 metadata:            #metadata欄位為資源提供元資料資訊,例如:名稱、隸屬的名稱空間和標籤(labels)
 5   creationTimestamp: "2021-08-18T05:40:55Z"
 6   managedFields:
 7   - apiVersion: v1
 8     fieldsType: FieldsV1
 9     fieldsV1:
10       f:status:
11         f:phase: {}
12     manager: kube-apiserver
13     operation: Update
14     time: "2021-08-18T05:40:55Z"
15   name: kube-system
16   resourceVersion: "4"
17   selfLink: /api/v1/namespaces/kube-system
18   uid: 96bc536f-f992-4822-b31f-204c3b002619
19 spec:                   #spec欄位則是由使用者負責宣告物件期望狀態的欄位,不同資源型別的期望狀態描述方式各不相同,因此其巢狀支援的欄位也不盡相同。
20   finalizers:
21   - kubernetes
22 status:                #status欄位則記錄活動物件當前狀態資訊,它由kubernetes系統自行維護,對使用者來說為只讀欄位,不需要在配置清單提供。
23   phase: Active

獲取資源配置清單格式文件

命令:kubectl explain

kubectl explain pods|service|namespace|deployment 顯示一級資源欄位

kubectl explain pods.metadata 顯示巢狀二級欄位

kubectl explain pods.metadata.tables 顯示巢狀三級欄位

新增標籤:

命令直接管理活動物件的標籤

 1 [root@k8s-master01 yaml]# cat pod-demo-with-cmd-and-args.yaml 
 2 apiVersion: v1
 3 kind: Pod
 4 metadata:
 5   name: pod-demo-with-cmd-and-args
 6   namespace: dev
 7 spec:
 8   containers:
 9   - name: demo
10     image: ikubernetes/demoapp:v1.0
11     imagePullPolicy: IfNotPresent
12     command: ["/bin/sh","-c"]
13     args: ["python3 /usr/local/bin/demo.py -p 8081"]
14 
15 [root@k8s-master01 yaml]# kubectl label pod/pod-demo-with-cmd-and-args release=beta
16 Error from server (NotFound): pods "pod-demo-with-cmd-and-args" not found
17 [root@k8s-master01 yaml]# kubectl label pod/pod-demo-with-cmd-and-args -n dev release=beta
18 pod/pod-demo-with-cmd-and-args labeled

修改標籤與刪除標籤

 1 [root@k8s-master01 yaml]# kubectl label pod/pod-demo-with-cmd-and-args -n dev release=canary 
 2 error: 'release' already has a value (beta), and --overwrite is false
 3 [root@k8s-master01 yaml]# kubectl label pod/pod-demo-with-cmd-and-args -n dev release=canary --overwrite
 4 pod/pod-demo-with-cmd-and-args labeled     #修改標籤必須帶上引數--overwrite  表示強制覆蓋原有標籤
 5 [root@k8s-master01 yaml]# kubectl label pod/pod-demo-with-cmd-and-args -n dev --show-labels
 6 Error: unknown flag: --show-labels
 7 See 'kubectl label --help' for usage.
 8 [root@k8s-master01 yaml]# kubectl get pod/pod-demo-with-cmd-and-args -n dev --show-labels   #檢視標籤
 9 NAME                         READY   STATUS    RESTARTS   AGE   LABELS
10 pod-demo-with-cmd-and-args   1/1     Running   0          74m   release=canary
11 [root@k8s-master01 yaml]# kubectl label pod/pod-demo-with-cmd-and-args -n dev release-     #刪除標籤,標籤名稱後面並緊跟一個-號
12 pod/pod-demo-with-cmd-and-args labeled
13 [root@k8s-master01 yaml]# kubectl get pod/pod-demo-with-cmd-and-args -n dev --show-labels
14 NAME                         READY   STATUS    RESTARTS   AGE   LABELS
15 pod-demo-with-cmd-and-args   1/1     Running   0          75m   <none>

資源註解(annotations)

資源註解:資源註解也是鍵值型資料,類似於標籤,但是它不能用作標籤,可以使用者自行新增,也可以由工具程式自動附加並使用。

kubectl get和kubectl describe命令均能顯示資源的註解資訊

[root@k8s-master01 yaml]# kubectl describe pod/pod-demo-with-cmd-and-args -n dev
Name:         pod-demo-with-cmd-and-args
Namespace:    dev
Priority:     0
Node:         k8s-node02/192.168.3.22
Start Time:   Sun, 22 Aug 2021 23:05:29 +0800
Labels:       release=canary
Annotations:  <none>
Status:       Running
IP:           10.244.2.10
IPs:
  IP:  10.244.2.10
Containers:
  demo:
    Container ID:  docker://373799e5b51d33bb086ca63936be2193b95e2161c3b6f570abdda2e663172e85
    Image:         ikubernetes/demoapp:v1.0
    Image ID:      docker-pullable://ikubernetes/demoapp@sha256:6698b205eb18fb0171398927f3a35fe27676c6bf5757ef57a35a4b055badf2c3
    Port:          <none>
    Host Port:     <none>
    Command:
      /bin/sh
      -c
    Args:
      python3 /usr/local/bin/demo.py -p 8081
    State:          Running
      Started:      Sun, 22 Aug 2021 23:05:57 +0800
    Ready:          True
    Restart Count:  0
    Environment:    <none>
    Mounts:
      /var/run/secrets/kubernetes.io/serviceaccount from default-token-7p2m9 (ro)
Conditions:
  Type              Status
  Initialized       True 
  Ready             True 
  ContainersReady   True 
  PodScheduled      True 
Volumes:
  default-token-7p2m9:
    Type:        Secret (a volume populated by a Secret)
    SecretName:  default-token-7p2m9
    Optional:    false
QoS Class:       BestEffort
Node-Selectors:  <none>
Tolerations:     node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
                 node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
Events:          <none>
[root@k8s-master01 yaml]# 
[root@k8s-master01 yaml]# 
[root@k8s-master01 yaml]# clear
[root@k8s-master01 yaml]# kubectl get pod/pod-demo-with-cmd-and-args -n dev -o yaml
apiVersion: v1
kind: Pod
metadata:
  annotations:
    kubectl.kubernetes.io/last-applied-configuration: |
      {"apiVersion":"v1","kind":"Pod","metadata":{"annotations":{},"name":"pod-demo-with-cmd-and-args","namespace":"dev"},"spec":{"containers":[{"args":["python3 /usr/local/bin/demo.py -p 8081"],"command":["/bin/sh","-c"],"image":"ikubernetes/demoapp:v1.0","imagePullPolicy":"IfNotPresent","name":"demo"}]}}
  creationTimestamp: "2021-08-24T02:45:43Z"
  labels:
    release: canary
  managedFields:
  - apiVersion: v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:annotations:
          .: {}
          f:kubectl.kubernetes.io/last-applied-configuration: {}
      f:spec:
        f:containers:
          k:{"name":"demo"}:
            .: {}
            f:args: {}
            f:command: {}
            f:image: {}
            f:imagePullPolicy: {}
            f:name: {}
            f:resources: {}
            f:terminationMessagePath: {}
            f:terminationMessagePolicy: {}
        f:dnsPolicy: {}
        f:enableServiceLinks: {}
        f:restartPolicy: {}
        f:schedulerName: {}
        f:securityContext: {}
        f:terminationGracePeriodSeconds: {}
    manager: kubectl-client-side-apply
    operation: Update
    time: "2021-08-24T02:45:43Z"
  - apiVersion: v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:conditions:
          k:{"type":"ContainersReady"}:
            .: {}
            f:lastProbeTime: {}
            f:lastTransitionTime: {}
            f:status: {}
            f:type: {}
          k:{"type":"Initialized"}:
            .: {}
            f:lastProbeTime: {}
            f:lastTransitionTime: {}
            f:status: {}
            f:type: {}
          k:{"type":"Ready"}:
            .: {}
            f:lastProbeTime: {}
            f:lastTransitionTime: {}
            f:status: {}
            f:type: {}
        f:containerStatuses: {}
        f:hostIP: {}
        f:phase: {}
        f:podIP: {}
        f:podIPs:
          .: {}
          k:{"ip":"10.244.2.10"}:
            .: {}
            f:ip: {}
        f:startTime: {}
    manager: kubelet
    operation: Update
    time: "2021-08-24T02:46:09Z"
  - apiVersion: v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:labels:
          .: {}
          f:release: {}
    manager: kubectl-label
    operation: Update
    time: "2021-08-24T04:06:32Z"
  name: pod-demo-with-cmd-and-args
  namespace: dev
  resourceVersion: "907621"
  selfLink: /api/v1/namespaces/dev/pods/pod-demo-with-cmd-and-args
  uid: f52c1976-2f59-4351-92cd-93a970a48a73
spec:
  containers:
  - args:
    - python3 /usr/local/bin/demo.py -p 8081
    command:
    - /bin/sh
    - -c
    image: ikubernetes/demoapp:v1.0
    imagePullPolicy: IfNotPresent
    name: demo
    resources: {}
    terminationMessagePath: /dev/termination-log
    terminationMessagePolicy: File
    volumeMounts:
    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
      name: default-token-7p2m9
      readOnly: true
  dnsPolicy: ClusterFirst
  enableServiceLinks: true
  nodeName: k8s-node02
  preemptionPolicy: PreemptLowerPriority
  priority: 0
  restartPolicy: Always
  schedulerName: default-scheduler
  securityContext: {}
  serviceAccount: default
  serviceAccountName: default
  terminationGracePeriodSeconds: 30
  tolerations:
  - effect: NoExecute
    key: node.kubernetes.io/not-ready
    operator: Exists
    tolerationSeconds: 300
  - effect: NoExecute
    key: node.kubernetes.io/unreachable
    operator: Exists
    tolerationSeconds: 300
  volumes:
  - name: default-token-7p2m9
    secret:
      defaultMode: 420
      secretName: default-token-7p2m9
status:
  conditions:
  - lastProbeTime: null
    lastTransitionTime: "2021-08-22T15:05:29Z"
    status: "True"
    type: Initialized
  - lastProbeTime: null
    lastTransitionTime: "2021-08-22T15:05:58Z"
    status: "True"
    type: Ready
  - lastProbeTime: null
    lastTransitionTime: "2021-08-22T15:05:58Z"
    status: "True"
    type: ContainersReady
  - lastProbeTime: null
    lastTransitionTime: "2021-08-24T02:45:43Z"
    status: "True"
    type: PodScheduled
  containerStatuses:
  - containerID: docker://373799e5b51d33bb086ca63936be2193b95e2161c3b6f570abdda2e663172e85
    image: ikubernetes/demoapp:v1.0
    imageID: docker-pullable://ikubernetes/demoapp@sha256:6698b205eb18fb0171398927f3a35fe27676c6bf5757ef57a35a4b055badf2c3
    lastState: {}
    name: demo
    ready: true
    restartCount: 0
    started: true
    state:
      running:
        startedAt: "2021-08-22T15:05:57Z"
  hostIP: 192.168.3.22
  phase: Running
  podIP: 10.244.2.10
  podIPs:
  - ip: 10.244.2.10
  qosClass: BestEffort
  startTime: "2021-08-22T15:05:29Z"

annotations可以在資源建立時由metadata.annotations欄位指定,也可以隨時在資源上使用命令kubectl annotate 進行新增(和標籤使用方法差不多)。如下例項:

[root@k8s-master01 yaml]# kubectl annotate pod/pod-demo-with-cmd-and-args -n dev ilinux.io/created-by="cluster admin"
pod/pod-demo-with-cmd-and-args annotated

[root@k8s-master01 yaml]# kubectl annotate pod/pod-demo-with-cmd-and-args -n dev ilinux.io/created-by-
pod/pod-demo-with-cmd-and-args annotated
[root@k8s-master01 yaml]#

相關推薦

kubernetes配置清單知識點

資源及其在API中的組織形式 1 [root@k8s-master01 ~]# kubectl api-versions 2 admissionregistration.k8s.io/v1

04 . kubernetes資源清單YAML入門

YAML 通過k8s操作yaml配置檔案在node上建立資源,yaml配置檔案就像船垛,用來操控docker這艘大船

kubernetes配置imagePullSecrets祕鑰來拉取映象

背景說明: imagePullSecret資源將Secret提供的密碼傳遞給kubelet從而在拉取映象前完成必要的認證過程,簡單說就是你的映象倉庫是私有的,每次拉取是需要認證的。

蓋州kubernetes資源清單之Service資源190714

一、Service簡介 Service為Pod提供固定服務端點 Service的本質是一條iptables或者ipvs的轉發規則

kubernetes配置glusterfs作為後端動態儲存

原文轉載於:https://www.cnblogs.com/yuhaohao/p/10281392.html GlusterFS分散式檔案系統 一.簡單介紹

容器編排系統之Pod資源配置清單基礎

  前文我們瞭解了k8s上的叢集管理工具kubectl的基礎操作以及相關資源的管理,回顧請參考https://www.cnblogs.com/qiuhom-1874/p/14130540.html;今天我們來聊一下pod資源配置清單的相關話題;

vite2.0配置清單

vite 簡介 vite 是 vue 作者尤雨溪基於 esm 實現本地腳手架工具,最大的特點是速度快,但是不相容 IE 11。

kubernetes 配置示例 - 資源限制

1. 資源限制 apiVersion: v1 kind: Pod metadata: name: backend spec: containers: - name: db image: mysql resources:

ansible2:配置清單詳解

目錄說明普通組巢狀組別名     說明   ansible配置清單(inventory)可以使用ini或者yaml語法編寫,yaml編寫方式略微麻煩,但不能因為麻煩就不去學習,因為後續的ansible-playbook只能用yaml格式編寫,下面進行

Nginx 常用配置清單

偵聽埠: server{#StandardHTTPProtocollisten80;#StandardHTTPSProtocollisten443ssl;#Forhttp2listen443sslhttp2;#Listenon80usingIPv6listen[::]:80;#ListenonlyonusingIPv6listen[::]:80ipv6only=on;}

Nginx 配置清單(一篇夠用)

Nginx 是一個高效能的 HTTP 和反向代理 web 伺服器,同時也提供了 IMAP/POP3/SMTP 服務,其因豐富的功能集、穩定性、示例配置檔案和低系統資源的消耗受到了開發者的歡迎。

nginx之日誌路徑配置知識點

1:在nginx的conf檔案中配置了日誌的格式 main或者logstash_json,但是在子配置檔案中一直報錯無效的格式

Kubernetes配置管理

Kubernetes配置管理 ConfigMap 對於應用的可變配置Kubernetes 中是通過一個 ConfigMap 資源物件來實現的,許多應用經常會有從配置檔案、命令列引數或者環境變數中讀取一些配置資訊的需求,這些配置資訊我們肯定不

kubernetes 配置示例 - liveness 和 Readiness

liveness 探針是讓使用者自定義判斷容器是否健康的條件,如果探測失敗,Kubernetes 會重啟容器。

kubernetes配置使用ceph動態儲存

在k8s叢集中配置ceph 3.1、使用cephfs (1) 在ceph叢集建立cephfs #以下操作在ceph叢集的admin或者mon節點上執行

kubernetes配置後端儲存 rook-ceph

一 Rook概述 1.1 Ceph簡介 Ceph是一種高度可擴充套件的分散式儲存解決方案,提供物件、檔案和塊儲存。在每個儲存節點上,將找到Ceph儲存物件的檔案系統和Ceph OSD(物件儲存守護程式)程序。在Ceph叢集上,還存在Ce

12.Kubernetes配置管理

1.Secret Secret的主要作用就是加密資料,然後存在etcd裡面,讓Pod容器以掛載Volume方式進行訪問

|NO.Z.00042|——————————|^^ 部署 ^^|——|KuberNetes&二進位制部署.V20|5臺Server|---------------------------------------|kubernetes配置|生產環境關鍵性配置|

[CloudNative:KuberNetes&二進位制部署.V20]                                                            [Applications.KuberNetes]

|NO.Z.00066|——————————|^^ 部署 ^^|——|KuberNetes&二進位制部署.V19|3臺Server|---------------------------------------|kubernetes配置|生產環境關鍵性配置|

[CloudNative:KuberNetes&二進位制部署.V19]                                                            [Applications.KuberNetes]

|NO.Z.00085|——————————|^^ 部署 ^^|——|KuberNetes&kubeadm.V14|5臺Server|---------------------------------------|kubernetes配置|配置更改|

[CloudNative:KuberNetes&kubeadm.V14]                                                               [Applications.KuberNetes]