Howto k0s: Difference between revisions
Jump to navigation
Jump to search
Mandulete1 (talk | contribs) No edit summary |
Mandulete1 (talk | contribs) |
||
| (7 intermediate revisions by the same user not shown) | |||
| Line 8: | Line 8: | ||
k0s default-config > ./k0s.yaml | k0s default-config > ./k0s.yaml | ||
edit the following settings: | edit the following settings: | ||
kind: ClusterConfig | kind: ClusterConfig | ||
metadata: | metadata: | ||
| Line 26: | Line 25: | ||
- name: ingress-nginx | - name: ingress-nginx | ||
url: https://kubernetes.github.io/ingress-nginx | url: https://kubernetes.github.io/ingress-nginx | ||
- name: traefik | |||
url: https://traefik.github.io/charts | |||
- name: bitnami | - name: bitnami | ||
url: https://charts.bitnami.com/bitnami | url: https://charts.bitnami.com/bitnami | ||
charts: | charts: | ||
- name: ingress-nginx | - name: ingress-nginx | ||
chartname: ingress-nginx/ingress-nginx | chartname: ingress-nginx/ingress-nginx | ||
namespace: kube-system | |||
- name: traefik | |||
chartname: traefik/traefik | |||
namespace: kube-system | namespace: kube-system | ||
- name: metallb | - name: metallb | ||
chartname: | chartname: bitnami/metallb | ||
namespace: kube-system | namespace: kube-system | ||
values: | | values: | | ||
configInline: | configInline: | ||
address-pools: | address-pools: | ||
| Line 101: | Line 99: | ||
telemetry: | telemetry: | ||
enabled: true | enabled: true | ||
= install single node cluster = | = install single node cluster = | ||
iniciate installation: | iniciate installation: | ||
| Line 109: | Line 108: | ||
verify node status: | verify node status: | ||
k0s kubectl get nodes | k0s kubectl get nodes | ||
watch container creation: | |||
watch k0s kubectl get po -A | |||
copy kube admin credentials: | copy kube admin credentials: | ||
mkdir ~/.kube/ && cp /var/lib/k0s/pki/admin.conf ~/.kube/config | mkdir ~/.kube/ && cp /var/lib/k0s/pki/admin.conf ~/.kube/config | ||
verify cluster pods status: | verify cluster pods status: | ||
kubectl get po -A | kubectl get po -A | ||
= uninstall = | |||
stop cluster: | |||
k0s stop | |||
reset configuration: | |||
k0s reset | |||
= troubleshooting = | |||
if got the following error trying to create ingress rule: | |||
"Internal error occurred: failed calling webhook \"validate.nginx.ingress.kubernetes.io\": failed to call webhook: Post \"https://nginx-ingress-ingress-nginx-controller-admission.default.svc:443/networking/v1/ingresses?timeout=10s\": x509: certificate signed by unknown authority" | |||
do the following: | |||
CA=$(oc get secrets -n kube-system ingress-nginx-admission -o jsonpath='{.data.ca}') | |||
oc patch validatingwebhookconfigurations ingress-nginx-admission --type='json' -p='[{"op": "add", "path": "/webhooks/0/clientConfig/caBundle", "value":"'$CA'"}]' | |||
= references = | |||
* https://k0sproject.io | |||
Latest revision as of 16:04, 29 August 2024
installation
on archlinux use yay:
yay -S k0s-bin
on other distros:
curl -sSLf https://get.k0s.sh | sudo sh
edit config
export default config to file:
k0s default-config > ./k0s.yaml
edit the following settings:
kind: ClusterConfig
metadata:
creationTimestamp: null
name: k0s
spec:
api:
address: 192.168.75.2
k0sApiPort: 9443
port: 6443
sans:
- 192.168.75.2
controllerManager: {}
extensions:
helm:
repositories:
- name: ingress-nginx
url: https://kubernetes.github.io/ingress-nginx
- name: traefik
url: https://traefik.github.io/charts
- name: bitnami
url: https://charts.bitnami.com/bitnami
charts:
- name: ingress-nginx
chartname: ingress-nginx/ingress-nginx
namespace: kube-system
- name: traefik
chartname: traefik/traefik
namespace: kube-system
- name: metallb
chartname: bitnami/metallb
namespace: kube-system
values: |
configInline:
address-pools:
- name: generic-cluster-pool
protocol: layer2
addresses:
- 192.168.75.20-192.168.75.25
storage:
create_default_storage_class: false
type: external_storage
installConfig:
users:
etcdUser: etcd
kineUser: kube-apiserver
konnectivityUser: konnectivity-server
kubeAPIserverUser: kube-apiserver
kubeSchedulerUser: kube-scheduler
konnectivity:
adminPort: 8133
agentPort: 8132
network:
calico: null
clusterDomain: cluster.local
dualStack: {}
kubeProxy:
iptables:
minSyncPeriod: 0s
syncPeriod: 0s
ipvs:
minSyncPeriod: 0s
syncPeriod: 0s
tcpFinTimeout: 0s
tcpTimeout: 0s
udpTimeout: 0s
metricsBindAddress: 0.0.0.0:10249
mode: iptables
kuberouter:
autoMTU: true
hairpin: Enabled
ipMasq: false
metricsPort: 8080
mtu: 0
peerRouterASNs: ""
peerRouterIPs: ""
nodeLocalLoadBalancing:
envoyProxy:
apiServerBindPort: 7443
konnectivityServerBindPort: 7132
type: EnvoyProxy
podCIDR: 10.244.0.0/16
provider: calico
serviceCIDR: 10.96.0.0/12
scheduler: {}
storage:
etcd:
externalCluster: null
peerAddress: 192.168.75.2
type: etcd
telemetry:
enabled: true
install single node cluster
iniciate installation:
k0s install controller -c k0s.yaml --single --no-taints k0s start
verify status:
k0s status
verify node status:
k0s kubectl get nodes
watch container creation:
watch k0s kubectl get po -A
copy kube admin credentials:
mkdir ~/.kube/ && cp /var/lib/k0s/pki/admin.conf ~/.kube/config
verify cluster pods status:
kubectl get po -A
uninstall
stop cluster:
k0s stop
reset configuration:
k0s reset
troubleshooting
if got the following error trying to create ingress rule:
"Internal error occurred: failed calling webhook \"validate.nginx.ingress.kubernetes.io\": failed to call webhook: Post \"https://nginx-ingress-ingress-nginx-controller-admission.default.svc:443/networking/v1/ingresses?timeout=10s\": x509: certificate signed by unknown authority"
do the following:
CA=$(oc get secrets -n kube-system ingress-nginx-admission -o jsonpath='{.data.ca}')
oc patch validatingwebhookconfigurations ingress-nginx-admission --type='json' -p='[{"op": "add", "path": "/webhooks/0/clientConfig/caBundle", "value":"'$CA'"}]'