[size=large]1. 查看机器节点[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8233/e5a96a24-e165-3387-b9d9-5969489f9787.png[/img]
[size=large]2. 用命令启动一个nginx[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8235/8213890f-c773-3539-8455-301c6b0b1d49.png[/img]
[size=large]3. 暴露服务[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8237/10d0ecd7-5c31-38da-bacf-836b3a9be050.png[/img]
参数说明
--port 容器的端口
--container-port和target-port是一个意思,指的是宿主机转发的端口,可以随意指定一个,也可以不指定
--external-ip 对外暴露的ip地址,一般用公网IP地址,执行那个命令过后,我们就可以在公网上访问了,但是这里有个问题就是这个IP地址必须是安装了k8s的机器的IP,如果你随便用一个IP是不能访问的,这里也给应用上造成了不便
--type=LoadBalancer
[size=large]4. 查看pod[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8239/45b9a047-7440-3a01-8da6-245dde8d920a.png[/img]
[size=large]5. 查看service[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8241/87df139f-8d91-3f49-8312-876cb352e607.png[/img]
# kubectl get service my-nginx
[img]http://dl2.iteye.com/upload/attachment/0119/8243/66cef4b0-ba98-3093-acbd-a3b591eff5fd.png[/img]
[size=large]6. 删除[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8245/de354439-4fd7-33cb-89d3-a0fd851cee1a.png[/img]
[size=large]7. 查看子网[/size]
通过etcdctl查看node机器的子网分配情况
[img]http://dl2.iteye.com/upload/attachment/0119/8247/7b45fb50-8a15-3fb2-887d-39fab34c8dd3.png[/img]
[size=large]8. 查询pod明细[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8249/b86d83ec-d7ff-30af-bd3e-1a37531ce042.png[/img]
初次创建要下载镜像,可能等待的时间比较长
Pod分配到了kube-node-1,容器的ip:10.0.64.2
那么我们在kube-node-1上,测试nginx是否正常启动
[img]http://dl2.iteye.com/upload/attachment/0119/8251/83ad6f9b-311a-35e7-b9c6-4c3c46369cde.png[/img]
至此,nginx已成功启动
[size=large]9. 查看service明细[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8253/a48f1aa5-a1fa-334b-9caa-68bc5e0c4c68.png[/img]
10.254.242.11是Service的虚拟IP地址,对该虚拟地址的8080端口访问会被重定向到两个 Endpoints中的一个;这两个Endpoints就是上面创建的两个Pods.
Kubernetes中的Service使用了虚拟ip地址;该地址无法ping通过,但访问8080端口时,可以访问到对应的资源
[img]http://dl2.iteye.com/upload/attachment/0119/8255/51fb69f0-9f4d-344b-a2c0-cb30427d860a.png[/img]
[size=large]10. 查看iptables的规则[/size]
[img]http://dl2.iteye.com/upload/attachment/0119/8257/b95340a7-69d0-3244-8cb2-1cb214370ea2.png[/img]
访问10.254.242.11/32 8080端口的请求会被重定向到10.0.64.2/32或10.0.101.2/32的80端口。这些规则是由kube-proxy生成;如果需要某台机器可以访问Service,则需要在该主机启动kube-proxy
[size=large]11. 用文件启动一个nginx[/size]
编辑nginx-pod.yaml
[size=large]12. 用文件配置一个Service[/size]
参考:[url]http://kubernetes.io/docs/user-guide/quick-start/[/url]
# kubectl get node
[img]http://dl2.iteye.com/upload/attachment/0119/8233/e5a96a24-e165-3387-b9d9-5969489f9787.png[/img]
[size=large]2. 用命令启动一个nginx[/size]
#kubectl run my-nginx --image=nginx --replicas=2 --port=80
[img]http://dl2.iteye.com/upload/attachment/0119/8235/8213890f-c773-3539-8455-301c6b0b1d49.png[/img]
[size=large]3. 暴露服务[/size]
# kubectl expose deployment my-nginx --port=8080 --target-port=80 --external-ip=x.x.x.168
[img]http://dl2.iteye.com/upload/attachment/0119/8237/10d0ecd7-5c31-38da-bacf-836b3a9be050.png[/img]
参数说明
--port 容器的端口
--container-port和target-port是一个意思,指的是宿主机转发的端口,可以随意指定一个,也可以不指定
--external-ip 对外暴露的ip地址,一般用公网IP地址,执行那个命令过后,我们就可以在公网上访问了,但是这里有个问题就是这个IP地址必须是安装了k8s的机器的IP,如果你随便用一个IP是不能访问的,这里也给应用上造成了不便
--type=LoadBalancer
[size=large]4. 查看pod[/size]
# kubectl get po
[img]http://dl2.iteye.com/upload/attachment/0119/8239/45b9a047-7440-3a01-8da6-245dde8d920a.png[/img]
[size=large]5. 查看service[/size]
# kubectl get svc
[img]http://dl2.iteye.com/upload/attachment/0119/8241/87df139f-8d91-3f49-8312-876cb352e607.png[/img]
# kubectl get service my-nginx
[img]http://dl2.iteye.com/upload/attachment/0119/8243/66cef4b0-ba98-3093-acbd-a3b591eff5fd.png[/img]
[size=large]6. 删除[/size]
# kubectl delete deployment,service my-nginx
[img]http://dl2.iteye.com/upload/attachment/0119/8245/de354439-4fd7-33cb-89d3-a0fd851cee1a.png[/img]
[size=large]7. 查看子网[/size]
通过etcdctl查看node机器的子网分配情况
# etcdctl ls -r |grep subnets
# etcdctl get /coreos.com/network/subnets/10.0.101.0-24
[img]http://dl2.iteye.com/upload/attachment/0119/8247/7b45fb50-8a15-3fb2-887d-39fab34c8dd3.png[/img]
[size=large]8. 查询pod明细[/size]
# kubectl describe po my-nginx-2494149703-2m6sc
[img]http://dl2.iteye.com/upload/attachment/0119/8249/b86d83ec-d7ff-30af-bd3e-1a37531ce042.png[/img]
初次创建要下载镜像,可能等待的时间比较长
Pod分配到了kube-node-1,容器的ip:10.0.64.2
那么我们在kube-node-1上,测试nginx是否正常启动
# curl http://10.0.64.2
[img]http://dl2.iteye.com/upload/attachment/0119/8251/83ad6f9b-311a-35e7-b9c6-4c3c46369cde.png[/img]
至此,nginx已成功启动
[size=large]9. 查看service明细[/size]
#kubectl describe service/my-nginx
[img]http://dl2.iteye.com/upload/attachment/0119/8253/a48f1aa5-a1fa-334b-9caa-68bc5e0c4c68.png[/img]
10.254.242.11是Service的虚拟IP地址,对该虚拟地址的8080端口访问会被重定向到两个 Endpoints中的一个;这两个Endpoints就是上面创建的两个Pods.
Kubernetes中的Service使用了虚拟ip地址;该地址无法ping通过,但访问8080端口时,可以访问到对应的资源
# curl http://10.254.242.11:8080
[img]http://dl2.iteye.com/upload/attachment/0119/8255/51fb69f0-9f4d-344b-a2c0-cb30427d860a.png[/img]
[size=large]10. 查看iptables的规则[/size]
# iptables-save | grep default/my-nginx
[img]http://dl2.iteye.com/upload/attachment/0119/8257/b95340a7-69d0-3244-8cb2-1cb214370ea2.png[/img]
访问10.254.242.11/32 8080端口的请求会被重定向到10.0.64.2/32或10.0.101.2/32的80端口。这些规则是由kube-proxy生成;如果需要某台机器可以访问Service,则需要在该主机启动kube-proxy
[size=large]11. 用文件启动一个nginx[/size]
编辑nginx-pod.yaml
# cat nginx-pod.yaml
apiVersion: v1
kind: Pod
metadata:
name: nginx-test
labels:
app: nginx-test
spec:
containers:
- name: nginx-test
image: nginx
ports:
- containerPort: 80
#kubectl create -f nginx-pod.yaml
[size=large]12. 用文件配置一个Service[/size]
# cat nginx_svc.yaml
apiVersion: v1
kind: Service
metadata:
name: nginx-test
labels:
app: nginx-test
spec:
selector:
run: nginx-test
ports:
protocol: TCP
port: 8080
targetPort: 80
# kubectl create -f nginx_svc.yaml
参考:[url]http://kubernetes.io/docs/user-guide/quick-start/[/url]