k8s 容器编排（高级版） k8s

* k8s ：容器编排控制平面： API Server :6443 用户认证：双向认证 Scheduler Controller Node： kube-proxy （node启动pod生成一个iptables规则，用kube-proxy代替） Pod，Pod Controller，Service Pod Controller： Deployment -> nginx-deploy -> ngin Pod Service -> nginx-svc

[root@k8s1 kubernetes]# kubectl get pods -n kube-system-o wide NAMEREADYSTATUSRESTARTSAGEIPNODENOMINATED NODEREADINESS GATES coredns-5c98db65d4-hzzqj1/1Running02d17h10.244.0.3k8s1 coredns-5c98db65d4-w9wqz1/1Running02d17h10.244.0.2k8s1 etcd-k8s11/1Running02d17h172.31.100.20k8s1 kube-apiserver-k8s11/1Running02d17h172.31.100.20k8s1 kube-controller-manager-k8s11/1Running22d17h172.31.100.20k8s1 kube-flannel-ds-amd64-6sh241/1Running02d17h172.31.100.21k8s2 kube-flannel-ds-amd64-7zv5k1/1Running02d17h172.31.100.20k8s1 kube-proxy-667hw1/1Running02d17h172.31.100.20k8s1 kube-proxy-dgshk1/1Running02d17h172.31.100.21k8s2 kube-scheduler-k8s11/1Running12d17h172.31.100.20k8s1 kubernetes-dashboard-5c7687cf8-mqkmb1/1Running02d17h10.244.1.2k8s2

[root@k8s1 kubernetes]# kubectl api-resources NAMESHORTNAMESAPIGROUPNAMESPACEDKIND bindingstrueBinding componentstatusescsfalseComponentStatus configmapscmtrueConfigMap endpointseptrueEndpoints eventsevtrueEvent limitrangeslimitstrueLimitRange namespacesnsfalseNamespace nodesnofalseNode persistentvolumeclaimspvctruePersistentVolumeClaim persistentvolumespvfalsePersistentVolume podspotruePod podtemplatestruePodTemplate replicationcontrollersrctrueReplicationController resourcequotasquotatrueResourceQuota secretstrueSecret serviceaccountssatrueServiceAccount servicessvctrueService mutatingwebhookconfigurationsadmissionregistration.k8s.iofalseMutatingWebhookConfiguration validatingwebhookconfigurationsadmissionregistration.k8s.iofalseValidatingWebhookConfiguration customresourcedefinitionscrd,crdsapiextensions.k8s.iofalseCustomResourceDefinition apiservicesapiregistration.k8s.iofalseAPIService controllerrevisionsappstrueControllerRevision daemonsetsdsappstrueDaemonSet deploymentsdeployappstrueDeployment replicasetsrsappstrueReplicaSet statefulsetsstsappstrueStatefulSet tokenreviewsauthentication.k8s.iofalseTokenReview localsubjectaccessreviewsauthorization.k8s.iotrueLocalSubjectAccessReview selfsubjectaccessreviewsauthorization.k8s.iofalseSelfSubjectAccessReview selfsubjectrulesreviewsauthorization.k8s.iofalseSelfSubjectRulesReview subjectaccessreviewsauthorization.k8s.iofalseSubjectAccessReview horizontalpodautoscalershpaautoscalingtrueHorizontalPodAutoscaler cronjobscjbatchtrueCronJob jobsbatchtrueJob certificatesigningrequestscsrcertificates.k8s.iofalseCertificateSigningRequest leasescoordination.k8s.iotrueLease eventsevevents.k8s.iotrueEvent daemonsetsdsextensionstrueDaemonSet deploymentsdeployextensionstrueDeployment ingressesingextensionstrueIngress networkpoliciesnetpolextensionstrueNetworkPolicy podsecuritypoliciespspextensionsfalsePodSecurityPolicy replicasetsrsextensionstrueReplicaSet ingressesingnetworking.k8s.iotrueIngress networkpoliciesnetpolnetworking.k8s.iotrueNetworkPolicy runtimeclassesnode.k8s.iofalseRuntimeClass poddisruptionbudgetspdbpolicytruePodDisruptionBudget podsecuritypoliciespsppolicyfalsePodSecurityPolicy clusterrolebindingsrbac.authorization.k8s.iofalseClusterRoleBinding clusterrolesrbac.authorization.k8s.iofalseClusterRole rolebindingsrbac.authorization.k8s.iotrueRoleBinding rolesrbac.authorization.k8s.iotrueRole priorityclassespcscheduling.k8s.iofalsePriorityClass csidriversstorage.k8s.iofalseCSIDriver csinodesstorage.k8s.iofalseCSINode storageclassesscstorage.k8s.iofalseStorageClass volumeattachmentsstorage.k8s.iofalseVolumeAttachment

[root@k8s1 kubernetes]# kubectl get deploy No resources found. [root@k8s1 kubernetes]# kubectl get deploy -n kube-system NAMEREADYUP-TO-DATEAVAILABLEAGE coredns2/2222d18h kubernetes-dashboard1/1112d17h

[root@k8s1 kubernetes]# kubectl get ns/default -o yaml apiVersion: v1 kind: Namespace metadata: creationTimestamp: "2020-04-27T09:17:03Z" name: default resourceVersion: "150" selfLink: /api/v1/namespaces/default uid: c89814ba-d6c1-41ff-8635-e08840686dd5 spec: finalizers: - kubernetes status: phase: Active