给所有master taint ,禁止所有pod 运行在master 节点。
kubectl taint nodes dl-demo-k8s-master-01 node.kubernetes.io=unschedulable:NoSchedule
kubectl taint nodes dl-demo-k8s-master-02 node.kubernetes.io=unschedulable:NoSchedule
kubectl taint nodes dl-demo-k8s-master-03 node.kubernetes.io=unschedulable:NoSchedule
master
kubectl taint nodes k8s-master03.ali.jccfc.io node-role.kubernetes.io/master=unschedulable:NoSchedule
删除 taint 规则
kubectl taint node --all node.kubernetes.io:NoSchedule-
给一个 Deployment 添加 tolerations 策略允许 在污染节点创建pod.
spec:
tolerations:
- key: "node.kubernetes.io"
effect: "NoSchedule"
value: "unschedulable"
operator: "Equal"
[参考链接:Kubernetes之Taints与Tolerations 污点和容忍](https://cloud.tencent.com/info/21f27eb131873f979d6275f085dfabdc.html)
- 方案设计
- 使用kubespray部署k8s集群
- 使用ingress 访问dashboard v1.8.3
- 在 Kubernetes 中配置私有 DNS 和上游域名服务器(coredns forward)
- master 节点添加taint
- limitrang
- 配置私有仓库
- 利用NFS动态提供Kubernetes后端存储卷
- ingress 添加https 客户端双向认证
- 应用日采集
- eureka 迁移 k8s 集群
- 镜像下载地址
- helm install
- Install istio
- zookeeper 集群部署
- 基于prometheus自定义rabbitmq—exporter指标HPA弹性伸缩
- nacos huaweicloud