Shulou(Shulou.com)06/03 Report--

I. Network implementation Topology Diagram

2. Proxy host (master&standby) 1. The mainframe is 10.3.153.211 (test-master) and 10.3.153.212 (test-standby) 2. Install applications: nginx, keepalived, etcd3. Application service role: nginx: provides layer 4 and layer 7 service proxy forwarding to two apiserver 6443 ports respectively. Keepalived: ensure the high availability of NGINX services on two Proxy servers. Etcd: for the entire K8S database (non-relational data), stores the cluster metadata information, the function is similar to ZK and so on. Third, the operation and maintenance mainframe 1. Host: 10.3.153.200 (test-operator) 2. Install applications: harbor, cfssl, docker (docker-compose) 3. Application service role: harbor: provides a private repository for storing images. Cfssl: private self-issued certificates, which are used to provide certificate requirements between master nodes and computing nodes. Docker (docker-compose): used to install the software components provided by harbor. 4. Nodes operation node host 1. Mainframe: 10.3.153.221 (test-nodes1) and 10.3.153.222 (test-nodes2) 2. Install applications: etcd, apiserver, kube-Controller-manager, kube-scheduler, kubelet, kube-proxy, docker (Pod) 3. Application service function: etcd:1, database for the whole K8S (non-relational data), storing cluster metadata information, the function is similar to ZK and so on. Apiserver:1, provides the REST API interface for cluster management (including authentication, data verification and cluster status change). 2. Responsible for the data exchange between other modules and assume the function of communication hub. 3. It is the entrance of resource quota control. 4. Provide a complete cluster security mechanism. Kube-Controller-manager:1, which consists of a series of controllers, monitors the status of the entire cluster through apiserver and ensures that the cluster is working as expected. Kube-scheduler:1, the main function is to receive scheduling Pod to the appropriate computing nodes, such as: budget strategy, optimization strategy. Kubelet:1, to put it simply, the main function of kubelet is to obtain the desired state of pod on the node (what container to run, the number of copies to run, how to configure the temple for network or storage, etc.) from a certain place, and call the corresponding container platform API to achieve this state. 2. Report the status of the current node to apiserver regularly for scheduling. 3. Clean up the image and container to ensure that the image on the node does not occupy full disk space, the exit container does not take up too much resource kube-proxy:1, the network agent running on K8S on each node, the carrier of service resources establishes the relationship between the pod network and the cluster network (clusterip-podip) 2, three commonly used traffic scheduling modes: Userspace\ Iptables\ ipvs (recommended by lvs) 3, responsible for establishing and deleting including updating scheduling rules Notify apiserver of its own updates, or where to get other kube-proxy scheduling rule changes from apiserver to update itself. 5. Data access flow diagram

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.