1、安装docker,参考docker安装
2、部署rancher
docker run -d --name=rancher-ui --privileged --restart=unless-stopped -e JAVA_OPTS="-Xmx8192m" -p 80:80 -p 443:443 rancher/rancher
3、设置rancher
3、导入集群
在master节点执行curl命令在rancher内导入集群
4、查看rancher内rke-cluster集群的服务
5、把已有namespace添加到项目内
创建项目
导入已有nginx-test namespces到nginx-web项目
faq:
1、rancher-server建议单独部署在一台机器上,建议最小内存和CPU 4核4G
2、离线环境需要在各个node节点内导入rancher-agent镜像
rancher/rancher-agent:v2.5.8
3、证书到期导致无法访问
docker logs -f -t --since="2021-05-18" --tail=20 rancher
-server
2021-05-18T08:17:14.893197775Z E0518 08:17:14.892412 31 reflector.go:126] k8s.io/kubernetes/cmd/kube-scheduler/app/server.go:223: Failed to list *v1.Pod: Get https://localhost:6444/api/v1/pods?fieldSelector=status.phase%21%3DFailed%2Cstatus.phase%21%3DSucceeded&limit=500&resourceVersion=0: x509: certificate has expired or is not yet valid
cd rancher_home/k3s/server/tls
for i in `ls *.crt` ;do openssl x509 -in $i -noout -dates;echo $i;done
解决方法
mv rancher_home/k3s/server/tls rancher_home/k3s/server/tls-bak
docker restart rancher-server #生成新的证书
docker restart rancher-server #加载新的证书