Skip to content

Latest commit

 

History

History
 
 

k3s

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
metallb.yml
metallb.yml
 
 
nginx-ingress.yml
nginx-ingress.yml
 
 
pod.yaml
pod.yaml
 
 
pvc.yaml
pvc.yaml
 
 
registries.yml
registries.yml
 
 
web-app.yml
web-app.yml
 
 
web-app2.yml
web-app2.yml
 
 

README.md

Deploy a Kubernetes Cluster with K3S

Please check out the official K3S Doccumentation for more detailed instructions

Install the server

Login to the server node and install K3S

$ ssh root@node1

# Make sure your nodes have unique hostnames, set the hostname if your nodes are all named localhost or something

$ hostnamectl set-hostname node1
$ echo node1 > /etc/hostname

# Install K3S using the install script
$ curl -sfL https://get.k3s.io | sh -

Verify the installation

# Make sure you have the /usr/local/bin directory in your path to directly access the installed binaries

$ export PATH=/usr/local/bin:$PATH
$ k3s kubectl get nodes

$ kubectl get nodes
$ kubectl get pods -A

Deploy test app

$ kubectl apply -f web-app.yml

# Verify
$ kubectl get pods,svc
$ kubectl -n kube-system get ds
$ kubectl -n kube-system get pods

Customise the server configuration

# Create the configuration file
$ cat <<EOF > /etc/rancher/k3s/config.yaml
cluster-init: true
EOF
# Restart k3s
$ systemctl restart k3s
$ kubectl get nodes

Install MetalLB

Disable Service LB

# Edit the configuration file
$ cat /etc/rancher/k3s/config.yaml
cluster-init: true
disable: servicelb


# Restart k3s
$ systemctl restart k3s

Create the metallb manifest

$ cat <<EOF > /var/lib/rancher/k3s/server/manifests/metallb.yaml
apiVersion: v1
kind: Namespace
metadata:
  name: metallb-system
---
apiVersion: helm.cattle.io/v1
kind: HelmChart
metadata:
  name: metallb
  namespace: metallb-system
spec:
  repo: https://metallb.github.io/metallb
  chart: metallb
  targetNamespace: metallb-system

---
apiVersion: metallb.io/v1beta1
kind: IPAddressPool
metadata:
  name: pool-1
  namespace: metallb-system
spec:
  addresses:
  - 172.20.0.181-172.20.0.185

---
apiVersion: metallb.io/v1beta1
kind: L2Advertisement
metadata:
  name: k3s-l2
  namespace: metallb-system
spec:
  ipAddressPools:
  - pool-1
EOF

#Verify
$ kubectl -n metallb-system get pods

Delete and re-create web-app service

$ kubectl delete svc web-app
$ kubectl apply -f web-app.yml

# Verify metallb externalIP
$ kubectl get svc
$ curl 172.20.0.182

Install NGINX Ingress Controller

Disable Traefik Ingress Controller

# Edit the configuration file
$ cat /etc/rancher/k3s/config.yaml
cluster-init: true
disable: servicelb
disable: traefik


# Restart k3s
$ systemctl restart k3s

Create the nginx ingress manifest

$ cat <<EOF > /var/lib/rancher/k3s/server/manifests/nginx-ingress.yaml
apiVersion: v1
kind: Namespace
metadata:
  name: ingress-nginx
---
apiVersion: helm.cattle.io/v1
kind: HelmChart
metadata:
  name: ingress-nginx
  namespace: ingress-nginx
spec:
  repo: https://kubernetes.github.io/ingress-nginx
  chart: ingress-nginx
  targetNamespace: ingress-nginx
  valuesContent: |-
    controller:
      image:
        tag: "v1.8.1"
      service:
        type: LoadBalancer
EOF

#Verify
$ kubectl -n ingress-nginx get pods

Configure a Private Registry

Create the registries configuration

# Create the registries.yaml file
$ cat <<EOF > /etc/rancher/k3s/registries.yaml
mirrors:
  registry.home-k8s.lab:
    endpoint:
      - "https://registry.home-k8s.lab"

configs:
  "registry.home-k8s.lab":
    auth:
      username: admin
      password: Harbor12345
    tls:
      insecure_skip_verify: true
EOF

# Restart k3s
$ systemctl restart k3s

Deploy test app to use the private registry

$ kubectl apply -f web-app2.yml

# Verify
$ kubectl get pods,svc
$ kubectl describe pod web-app2-k25r8

Configure default storage

Refer to the local-path-provisioner docs for more configuration options.

Set the default local storage path

# Edit the configuration file
$ cat /etc/rancher/k3s/config.yaml
cluster-init: true
disable: servicelb
disable: traefik
default-local-storage-path: /mnt/disk1

# Restart k3s
$ systemctl restart k3s

Set additional configurations

# Edit the local-path-config configmap
$ kubectl -n kube-system edit configmap local-path-config

# Restart the local-path-provisioner deployment
$ kubectl -n kube-system rollout restart deploy local-path-provisioner

Test the storage

# Apply the example pvc and pod manifests
$ kubectl create -f pvc.yaml
$ kubectl create -f pod.yaml

#Verify
$ kubectl get pod
$ kubectl get pv
$ kubectl get pvc

Adding a control plane node

Retrieve token from etcd capable server node

$ cat /var/lib/rancher/k3s/server/token

Login to new server node and install K3S

$ ssh root@node2


$ curl -fL https://get.k3s.io | sh -s - server --token <token> --disable-etcd --server https://node1:6443

Persist the configuration by creating a config.yaml file

# Create the configuration file
$ cat <<EOF > /etc/rancher/k3s/config.yaml
disable: servicelb
disable: traefik
default-local-storage-path: /mnt/disk1
disable: etcd
EOF

# Restart k3s
$ systemctl restart k3s

Verify that the new node was added to the cluster

# Run kubectl get nodes on any server node
$ kubectl get nodes

Adding an agent node

Retrieve token from etcd capable server node

$ cat /var/lib/rancher/k3s/server/token

Login to new server node and install K3S

$ ssh root@node3


$ curl -sfL https://get.k3s.io | K3S_URL=https://node1:6443 K3S_TOKEN=node1token sh -

Persist the configuration by creating a config.yaml file

# Create the configuration file
$ cat <<EOF > /etc/rancher/k3s/config.yaml
disable: servicelb
disable: traefik
default-local-storage-path: /mnt/disk1
EOF

# Restart k3s
$ systemctl restart k3s-agent

Verify that the new node was added to the cluster

# Run kubectl get nodes on any server node
$ kubectl get nodes

Uninstalling K3S

Retrieve token from etcd capable server node

# On server nodes
$ /usr/local/bin/k3s-uninstall.sh

# On agent nodes
$ /usr/local/bin/k3s-agent-uninstall.sh