[TOC] ## **一、准备条件** #### **1.1 系统与内核** * 系统：centos-7.6 * 内核：4.19.12 #### **1.2 系统参数** 创建文件`/etc/sysctl.d/k8s.conf`，内容如下： ``` net.bridge.bridge-nf-call-ip6tables = 1 net.bridge.bridge-nf-call-iptables = 1 net.ipv4.ip_forward = 1 net.ipv4.conf.all.rp_filter = 1 ``` 然后执行命令`sudo sysctl --system` #### **1.3 其他设置** * 配置基础yum源 * 关闭swap ``` $ sudo swapoff -a ``` * 关闭selinux ``` $ sudo setenforce 0 $ sudo sed -i "s#SELINUX=enforcing#SELINUX=disabled#g" /etc/selinux/config ``` * 关闭firewalld ## **二、安装docker或Containerd** docker与containerd安装一个即可，对于k8s>=1.24的版本，只能使用containerd。本次我们安装k8s-1.25，只能使用containerd 配置yum源文件，创建`/etc/yum.repos.d/aliyun-base.repo`，内容如下： ``` [aliyun-base] name=aliyun-base baseurl=https://mirrors.aliyun.com/centos/$releasever/os/$basearch/ gpgcheck=0 enabled=0 [aliyun-updates] name=aliyun-updates baseurl=https://mirrors.aliyun.com/centos/$releasever/updates/$basearch/ gpgcheck=0 enabled=0 [aliyun-extras] name=aliyun-extras baseurl=https://mirrors.aliyun.com/centos/$releasever/extras/$basearch/ gpgcheck=0 enabled=0 ``` 创建`/etc/yum.repos.d/aliyun-docker.repo`，内容如下： ``` [aliyun-docker] name=aliyun-docker baseurl=http://mirrors.aliyun.com/docker-ce/linux/centos/$releasever/$basearch/stable/ enabled=0 gpgcheck=0 ``` #### **2.1 安装containerd** ``` $ yum -y install containerd.io --enablerepo=aliyun* ``` 然后生成默认的配置文件： ``` $ containerd config default > /etc/containerd/config.toml ``` 并把里面的pause镜像，改成阿里云镜像，否则会拉不下来 ``` sandbox_image = "registry.aliyuncs.com/google_containers/pause:3.6" ``` 然后启动 ``` $ systemctl daemon-reload $ systemctl start containerd $ systemctl enable containerd ``` #### **2.2 安装docker（本次我们使用k8s-1.25，此步骤可忽略）** 执行以下命令安装 ``` $ yum -y install docker-ce docker-ce-cli --enablerepo=aliyun* ``` 创建目录`/etc/docker`，然后创建配置文件`/etc/docker/daemon.json`，内容如下；这里特别要注意的是第一行的cgroupdriver设置为systemd，参考 [k8s文档](https://v1-25.docs.kubernetes.io/docs/setup/production-environment/container-runtimes/#cgroup-drivers) 的解释 ``` { "exec-opts": ["native.cgroupdriver=systemd"], "storage-driver" : "overlay2", "data-root" : "/dcos/data/docker", "insecure-registries" : [], "log-driver": "json-file", "log-opts": { "max-size": "1g" } } ``` 执行以下命令启动docker ``` $ sudo systemctl daemon-reload $ sudo systemctl start docker ``` ## **三、安装kubeadm、kubelet、kubectl** 创建配置文件`/etc/yum.repos.d/aliyun-kubernetes.repo`，内容如下： ``` [aliyun-kubernetes] name=aliyun-kubernetes baseurl=http://mirrors.aliyun.com/kubernetes/yum/repos/kubernetes-el7-x86_64/ gpgcheck=0 enabled=0 ``` 安装 ``` $ yum -y install kubelet-1.25.5 kubeadm-1.25.5 kubectl-1.25.5 --enablerepo=aliyun* ``` 启动kubelet ``` $ sudo systemctl daemon-reload $ sudo systemctl enable kubelet && sudo systemctl start kubelet ``` 然后，kubelet会不断重启，直到kubeadm安装好集群。注意：此时如果用命令`systemctl status kubelet`查看kubelet的状态，并不是active，没有关系。 ## **Referencce** * https://v1-25.docs.kubernetes.io/docs/setup/production-environment/container-runtimes * https://v1-25.docs.kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm