IP | 主机名 | 节点 |
---|---|---|
192.168.117.14 | master | swarm集群manage节点 |
192.168.117.15 | node | swarm集群node节点 |
192.168.117.16 | compose | compose节点 |
环境准备(所有节点)
- 取消Swap分区挂载
[root@master ~]# swapoff -a
[root@master ~]# sed -i 's@\(.*a2f8.*\)@\#\1@g' /etc/fstab // 注意替换为自己的swap分区UUID
- 开启路由转发
[root@master ~]# cat >> /etc/sysctl.conf << EOF
> net.ipv4.ip_forward=1
> net.bridge.bridge-nf-call-ip6tables=1
> net.bridge.bridge-nf-call-iptables=1
> EOF
[root@master ~]# modprobe br_netfilter
[root@master ~]# sysctl -p
- 添加阿里云Yum源
[root@master ~]# wget -O /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-7.repo
[root@master ~]# wget -O /etc/yum.repos.d/docker-ce.repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
[root@master ~]# yum clean all
[root@master ~]# yum makecache
- 安装依赖包
[root@master ~]# yum install -y yum-utils device-mapper-persistent-data
- 安装docker-ce并启动
[root@master ~]# yum install -y docker-ce docker-ce-cli containerd.io
[root@master ~]# systemctl daemon-reload
[root@master ~]# systemctl restart docker
[root@master ~]# systemctl enable docker
案例实施
- 在master和node分别配置主机映射
[root@master ~]# vim /etc/hosts
192.168.117.14 master
192.168.117.15 node
- 在master和node分别配置开启Docker API
[root@master ~]# vim /lib/systemd/system/docker.service
ExecStart=/usr/bin/dockerd -H tcp://0.0.0.0:2375 -H unix:///var/run/docker.sock
[root@master ~]# systemctl daemon-reload
[root@master ~]# systemctl restart docker
- 在所有节点上拉取Swarm镜像
[root@master ~]# docker pull swarm
[root@master ~]# docker images
- 在master节点创建Swarm集群
[root@master ~]# docker swarm init --advertise-addr 192.168.117.14
Swarm initialized: current node (cr7po3z1rsmy5vcqswvv9p058) is now a manager.
To add a worker to this swarm, run the following command:
docker swarm join --token SWMTKN-1-5p0ff28m7pt56op37zspcp0welm06vdaq742seh8m96pyy68ut-3l9puoyrkvzj43f5oi6bpuhor 192.168.117.14:2377
To add a manager to this swarm, run 'docker swarm join-token manager' and follow the instructions.
- node节点加入集群
[root@node ~]# docker swarm join --token SWMTKN-1-5p0ff28m7pt56op37zspcp0welm06vdaq742seh8m96pyy68ut-3l9puoyrkvzj43f5oi6bpuhor 192.168.117.14:2377
- 在master节点上,安装Portainer
[root@master ~]# docker volume create portainer_data
[root@master ~]# docker service create --name portainer --publish 9000:9000 --replicas=1 --constraint 'node.role == manager' --mount type=bind,src=//var/run/docker.sock,dst=/var/run/docker.sock --mount type=volume,src=portainer_data,dst=/data portainer/portainer -H unix:///var/run/docker.sock
-
浏览器访问http://192.168.117.14:9000,可以看到portainer的登录界面。首次登录需要设置用户名和密码。
-
运行service
[root@master ~]# docker service create --name web --replicas 2 nginx
- service伸缩
[root@master ~]# docker service scale web=5
- 查看副本的详细信息,可以看大5个副本分布在了Swarm各个节点上
[root@master ~]# docker service ps web
ID NAME IMAGE NODE DESIRED STATE CURRENT STATE ERROR PORTS
or7rx5pd0tef web.1 nginx:latest node Running Running 3 minutes ago
ggy4cuzdvu6n web.2 nginx:latest master Running Running 3 minutes ago
nxv7zc7ou6bp web.3 nginx:latest node Running Running 45 seconds ago
vdoxuiffb7ox web.4 nginx:latest master Running Running 32 seconds ago
33v48ourwgzm web.5 nginx:latest node Running Running 47 seconds ago
- 设置不在master上运行service
[root@master ~]# docker node update --availability drain master
[root@master ~]# docker node ls
ID HOSTNAME STATUS AVAILABILITY MANAGER STATUS ENGINE VERSION
cr7po3z1rsmy5vcqswvv9p058 * master Ready Drain Leader 19.03.11
rldr8n0u5nkom85ia095v8g9v node Ready Active 19.03.11
[root@master ~]# docker service ps web
ID NAME IMAGE NODE DESIRED STATE CURRENT STATE ERROR PORTS
or7rx5pd0tef web.1 nginx:latest node Running Running 7 minutes ago
79lwmfuh3bgs web.2 nginx:latest node Running Running 38 seconds ago
ggy4cuzdvu6n \_ web.2 nginx:latest master Shutdown Shutdown 46 seconds ago
nxv7zc7ou6bp web.3 nginx:latest node Running Running 4 minutes ago
p6hd372wx605 web.4 nginx:latest node Running Running 42 seconds ago
vdoxuiffb7ox \_ web.4 nginx:latest master Shutdown Shutdown 46 seconds ago
33v48ourwgzm web.5 nginx:latest node Running Running 4 minutes ago
- 将service暴露到外部
[root@master ~]# docker service update --publish-add 8080:80 web
- 也可以在新建service时,就直接使用–publish参数映射端口
[root@master ~]# docker service create --name web_server --publish 8080:80 --replicas=2 httpd
- 进入compose节点,安装Docker-Compose
[root@compose ~]# curl -L https://github.com/docker/compose/releases/download/1.25.0-rc2/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose
[root@compose ~]# chmod +x /usr/local/bin/docker-compose
[root@compose ~]# docker-compose --version
docker-compose version 1.25.0-rc2, build 661ac20e
- 创建项目目录
[root@compose ~]# mkdir composetest
[root@compose ~]# cd composetest/
- 创建app.py文件
[root@compose composetest]# vim app.py
import time
import redis
from flask import Flask
app = Flask(__name__)
cache = redis.Redis(host='redis',port=6379)
def get_hit_count():
retries = 5
while True:
try:
return cache.incr('hits')
except redis.exceptions.ConnectionError as exc:
if retries == 0:
raise exc
retries -= 1
time.sleep(0.5)
@app.route('/')
def hello():
count = get_hit_count()
return 'Hello World!I have been seen {} times.\n'.format(count)
if __name__ == "__main__":
app.run(host="0.0.0.0",debug=True)
- 创建requirements.txt文件
[root@compose composetest]# vim requirements.txt
flask
redis
- 创建Dockerfile
[root@compose composetest]# vim Dockerfile
FROM python:3.4-alpine
ADD . /code
WORKDIR /code
RUN pip install -r requirements.txt
CMD ["python","app.py"]
- 创建docker-compose文件
[root@compose composetest]# vim docker-compose.yml
version: '3'
services:
web:
build: .
ports:
- "5000:5000"
redis:
image: "redis:alpine"
- 更新python版本
[root@compose composetest]# yum update -y python
- 启动应用
[root@compose composetest]# docker-compose up
……
redis_1 | 1:M 04 Jun 2020 13:11:41.640 * Ready to accept connections
web_1 | * Serving Flask app "app" (lazy loading)
web_1 | * Environment: production
web_1 | WARNING: This is a development server. Do not use it in a production deployment.
web_1 | Use a production WSGI server instead.
web_1 | * Debug mode: on
web_1 | * Running on http://0.0.0.0:5000/ (Press CTRL+C to quit)
web_1 | * Restarting with stat
web_1 | * Debugger is active!
web_1 | * Debugger PIN: 244-887-182
- 验证服务
[root@compose composetest]# curl 127.0.0.1:5000
Hello World!I have been seen 1 times.
[root@compose composetest]# curl 127.0.0.1:5000
Hello World!I have been seen 2 times.
- 停止服务
[root@compose composetest]# docker-compose down
Stopping composetest_web_1 ... done
Stopping composetest_redis_1 ... done
Removing composetest_web_1 ... done
Removing composetest_redis_1 ... done
Removing network composetest_default
- 更新服务文件,将容器中的/code路径与当前路径挂载到一起
[root@compose composetest]# vim docker-compose.yml
version: '3'
services:
web:
build: .
ports:
- "5000:5000"
volumes:
- .:/code
redis:
image: "redis:alpine"
- 重建服务
[root@compose composetest]# docker-compose up -d
- 测试服务
[root@compose composetest]# curl 127.0.0.1:5000
Hello World!I have been seen 1 times.
[root@compose composetest]# curl 127.0.0.1:5000
Hello World!I have been seen 2 times.
- 更新服务,将Hello World改为Hello Docker,不必重新生成镜像
[root@compose composetest]# vim app.py
return 'Hello Docker!I have been seen {} times.\n'.format(count)
- 验证服务
[root@compose composetest]# curl 127.0.0.1:5000
Hello Docker!I have been seen 3 times.
[root@compose composetest]# curl 127.0.0.1:5000
Hello Docker!I have been seen 4 times.
[root@compose composetest]# curl 127.0.0.1:5000
Hello Docker!I have been seen 5 times.