一、ETCD备份操作
#获取etc容器id
export ETCD_ID=$(sudo docker ps | grep k8s_etcd_etcd | awk '{print $1}')
#变量,etcd 3.3 ENDPOINTS备份只要一个就可以了
export ENDPOINTS="https://etcdip:2379"
export CACERT="/etc/kubernetes/pki/etcd/ca.crt"
export CERT="/etc/kubernetes/pki/etcd/healthcheck-client.crt"
export KEY="/etc/kubernetes/pki/etcd/healthcheck-client.key"
export ETCDCTL_API=3
export ETCD_BACKUP_DIR=/root/etcd/$(date +"%Y-%m-%d")/$(openssl rand -hex 10)
#拷贝 etcd binary
docker cp ${ETCD_ID}:/usr/local/bin/etcdctl /usr/local/bin/etcdctl && chmod +x /usr/local/bin/etcdctl
docker cp ${ETCD_ID}:/usr/local/bin/etcd /usr/local/bin/etcd && chmod +x /usr/local/bin/etcd
#检测备份目录
mkdir -p ${ETCD_BACKUP_DIR}
# 执行备份命令
/usr/local/bin/etcdctl --cacert=${CACERT} --cert=${CERT} --key=${KEY} --endpoints="https://100.81.122.65:2379" s
napshot save ${ETCD_BACKUP_DIR}/etcd_v3.db
二、ETCD恢复操作
#变量获取apiserver,etcd容器id
export KUBE_APISERVER_ID=$(sudo docker ps -a | grep k8s_etcd_etcd | awk '{print $1}')
export ETCD_ID=$(sudo docker ps | grep k8s_kube-apiserver | awk '{print $1}')
export ETCD_ENDPOINTS=$(docker inspect ${ETCD_ID}|grep 'etcd-servers='|head -n 1|awk -F'=|,|\"' '{print $3","$4","
$5}')
#如何获取master
docker inspect ${ETCD_ID}|grep 'ETCD_INITIAL_CLUSTER=kube-etcd1'
#停止所有 Master 上 kube-apiserver ,etcd服务
docker stop ${KUBE_APISERVER_ID}
docker stop ${ETCD_ID}
# 备份旧etcd数据
mv /home/t4/etcd/data /home/t4/etcd/data-$(date +"%Y-%m-%d")
#把备份etcd_v3.db文件放到所有master的/tmp目录
#在三台master机器上分别执行下面命令,恢复etcd v3的数据,master*-ip 请替换成三台 请替换成三台master机器的 机器的ip
#第一台机器
ETCDCTL_API=3 etcdctl snapshot restore --endpoints=${ETCD_ENDPOINTS} --data-dir /home/etcd/data tmp/etcd_
v3.db \
--name kube-etcd1 \
--initial-cluster kube-etcd1=https://{master1-ip}:2380,kube-etcd2=https://{master2-ip}:2380,kube-etcd3=https://{mas
ter3-ip}:2380 \
--initial-cluster-token ant-k8s \
--initial-advertise-peer-urls https://{master1-ip}:2380
#第二台机器
ETCDCTL_API=3 etcdctl snapshot restore --endpoints=${ETCD_ENDPOINTS} --data-dir /home/etcd/data tmp/etcd_
v3.db \
--name kube-etcd2 \
--initial-cluster kube-etcd1=https://{master1-ip}:2380,kube-etcd2=https://{master2-ip}:2380,kube-etcd3=https://{mas
ter3-ip}:2380 \
--initial-cluster-token ant-k8s \
--initial-advertise-peer-urls https://{master2-ip}:2380
#第三台机器
ETCDCTL_API=3 etcdctl snapshot restore --endpoints=${ETCD_ENDPOINTS} --data-dir /home/etcd/data tmp/etcd_
v3.db \
--name kube-etcd3 \
--initial-cluster kube-etcd1=https://{master1-ip}:2380,kube-etcd2=https://{master2-ip}:2380,kube-etcd3=https://{mas
ter3-ip}:2380 \
--initial-cluster-token ant-k8s \
--initial-advertise-peer-urls https://{master3-ip}:2380
#启动所有 Master 上 kube-apiserver ,etcd服务
docker start ${KUBE_APISERVER_ID}
docker start ${ETCD_ID}
三、ETCD验证操作
ETCDCTL_API=3 etcdctl --cacert=/etc/kubernetes/pki/etcd/ca.crt --cert=/etc/kubernetes/pki/etcd/healthcheck-client.c
rt --key=/etc/kubernetes/pki/etcd/healthcheck-client.key --endpoints=${ETCD_ENDPOINTS} endpoint health
https://master1-ip:2379 is healthy: successfully committed proposal: took = 15.614765ms
https://master2-ip:2379 is healthy: successfully committed proposal: took = 40.200694ms
https://master3-ip:2379 is healthy: successfully committed proposal: took = 230.022141ms