奥飞火千万电 发表于 2018-9-15 12:16:40

Kubernetes Dashboard 与DNS部署

apiVersion: v1  kind: ServiceAccount
  metadata:
  name: coredns
  namespace: kube-system
  labels:
  kubernetes.io/cluster-service: "true"
  addonmanager.kubernetes.io/mode: Reconcile
  ---
  apiVersion: rbac.authorization.k8s.io/v1
  kind: ClusterRole
  metadata:
  labels:
  kubernetes.io/bootstrapping: rbac-defaults
  addonmanager.kubernetes.io/mode: Reconcile
  name: system:coredns
  rules:
  - apiGroups:
  - ""
  resources:
  - endpoints
  - services
  - pods
  - namespaces
  verbs:
  - list
  - watch
  ---
  apiVersion: rbac.authorization.k8s.io/v1
  kind: ClusterRoleBinding
  metadata:
  annotations:
  rbac.authorization.kubernetes.io/autoupdate: "true"
  labels:
  kubernetes.io/bootstrapping: rbac-defaults
  addonmanager.kubernetes.io/mode: EnsureExists
  name: system:coredns
  roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: system:coredns
  subjects:
  - kind: ServiceAccount
  name: coredns
  namespace: kube-system
  ---
  apiVersion: v1
  kind: ConfigMap
  metadata:
  name: coredns
  namespace: kube-system
  labels:
  addonmanager.kubernetes.io/mode: EnsureExists
  data:
  Corefile: |
  .:53 {
  errors
  health
  kubernetes cluster.local. in-addr.arpa ip6.arpa {
  pods insecure
  upstream
  fallthrough in-addr.arpa ip6.arpa
  }
  prometheus :9153
  proxy . /etc/resolv.conf
  cache 30
  }
  ---
  apiVersion: extensions/v1beta1
  kind: Deployment
  metadata:
  name: coredns
  namespace: kube-system
  labels:
  k8s-app: coredns
  kubernetes.io/cluster-service: "true"
  addonmanager.kubernetes.io/mode: Reconcile
  kubernetes.io/name: "CoreDNS"
  spec:
  replicas: 2
  strategy:
  type: RollingUpdate
  rollingUpdate:
  maxUnavailable: 1
  selector:
  matchLabels:
  k8s-app: coredns
  template:
  metadata:
  labels:
  k8s-app: coredns
  spec:
  serviceAccountName: coredns
  tolerations:
  - key: node-role.kubernetes.io/master
  effect: NoSchedule
  - key: "CriticalAddonsOnly"
  operator: "Exists"
  containers:
  - name: coredns
  image: coredns/coredns:1.0.6
  imagePullPolicy: IfNotPresent
  resources:
  limits:
  memory: 170Mi
  requests:
  cpu: 100m
  memory: 70Mi
  args: [ "-conf", "/etc/coredns/Corefile" ]
  volumeMounts:
  - name: config-volume
  mountPath: /etc/coredns
  ports:
  - containerPort: 53
  name: dns
  protocol: UDP
  - containerPort: 53
  name: dns-tcp
  protocol: TCP
  livenessProbe:
  httpGet:
  path: /health
  port: 8080
  scheme: HTTP
  initialDelaySeconds: 60
  timeoutSeconds: 5
  successThreshold: 1
  failureThreshold: 5
  dnsPolicy: Default
  volumes:
  - name: config-volume
  configMap:
  name: coredns
  items:
  - key: Corefile
  path: Corefile
  ---
  apiVersion: v1
  kind: Service
  metadata:
  name: coredns
  namespace: kube-system
  labels:
  k8s-app: coredns
  kubernetes.io/cluster-service: "true"
  addonmanager.kubernetes.io/mode: Reconcile
  kubernetes.io/name: "CoreDNS"
  spec:
  selector:
  k8s-app: coredns
  clusterIP: 10.222.0.100
  ports:
  - name: dns
  port: 53
  protocol: UDP
  - name: dns-tcp
  port: 53
  protocol: TCP

页: [1]
查看完整版本: Kubernetes Dashboard 与DNS部署