背景: Terraform体验了腾讯云的CVM的基本操作。正常流程要去体验一下其他基础组件的整合比如数据库redis等基础组件,还有现有资源的导入。配置文件的合理配置等等等….先插播一下kubernetes的体验吧……毕竟我主要的工作环境是Kubernetes!也有tke。其实也可以体验下tke的整合?现在先单独体验下原生的kubernetes吧!
Terraform与Kubernetes的体验
1.关于Docuhttp://192.168.1.1登录mentation的快速导读
扫了一眼官方文档registry.terraform.io阿里云盘/providers/h…。第一眼下去我就找到了我的关注点: Guides(指南,应该包括如何连接kubernetes集群),几个常用的api: apps/v1,core/v1,networking/v1腾讯客服,rbacnginx面试题/v1!

2.terraform 连接kubernetes集群以及简单操作
1. terraform 连阿里云盘接kubernetes集群初始化相关
1. 指定required_providers
看一眼Guides: registry.terraform.io/providers/h… 首先是腾讯视频下载插件版本的指定(截至当前:最新文档是2.9.0,但是没有加版本号下载的版本是2approve.10.0)

2. terraform连接kubernetes集群的两种方式
参照官方文档:renginx是什么意思gistry.terraform.io/providers/h…,看一眼连接terraform kubernetes的两种方式:
- kubeconfig path
- host and tls证书

3. 创建工approve作目录初始化terraform并顺便创建一个namespace
1. 创建工作目录
[root@k8s-master-01 ~]# mkdir terraform-k8s [root@k8s-master-01 ~]# cd terraform-k8s/
2. 创建provider.tf
[root@k8s-master-01 terraform-k8s]# cat provider.tf
terraform { required_providers { kubernetes = { source = "hashicorp/kubernetes" version = ">= 2.10.0" } } } provider "kubernetes" { config_path = "~/.kube/config" config_context = "kubernetes-admin@kubernetes" } resource "kubernetes_namespace" "zhangpeng" { metadata { name = "zhangpeng" } }
3. terraform init
root@k8s-master-01 terraform-k8s]# terraform init

4. teNginxrraform plan and terraform apply
[root@k8s-master-01 terraform-k8s]# terraform plan


5. 验证namespappetiteace的创建
[root@k8s-master-01 terraform-k8s]# kubectl get ns

2. terraform 创建一httpwatch个deployments? and 绑定一个ingr腾讯ess并打印出相关信息?
看了一眼官方文档有点忧伤registry.terraform.io/providers/h…。deplhttp://www.baidu.comoyment有两个相关文档deployment and deployment_v1。目测了一眼只有resource下的区别。现在deployment应application该都是v1吧?就用个v1的配置文件吧!

1. 创建一个nginx的deployment应用
参照官方文档。只增加了namespace的限定! cat nginx.tf
resource "kubernetes_deployment_v1" "example" { metadata { name = "terraform-example" namespace = "zhangpeng" labels = { test = "MyExampleApp" } } spec { replicas = 3 selector { match_labels = { test = "MyExampleApp" } } template { metadata { labels = { test = "MyExampleApp" } } spec { container { image = "nginx:1.21.6" name = "example" resources { limits = { cpu = "0.5" memory = "512Mi" } requests = { cpu = "250m" memory = "50Mi" } } liveness_probe { http_get { path = "/" port = 80 http_header { name = "X-Custom-Header" value = "Awesome" } } initial_delay_seconds = 3 period_seconds = 3 } } } } } }
[root@k8s-master-01 terraform-k8s]# terraform plan

[root@k8s-master-01 terraform-k8s]# terraform apply

[root@k8s-master-01 terraform-k8s]# kubectl get pods -n zhangpeng
恩这一步等了好久 差不nginx怎么读多两分钟具体原因查看livenessProbe initialDelaySeconds periodSeconds相关设置approach!
[root@k8s-master-01 terraform-k8s]# kubectl get all -n zhangpeng NAME READY STATUS RESTARTS AGE pod/terraform-example-78ff4f86d7-bxfwj 1/1 Running 0 6m26s pod/terraform-example-78ff4f86d7-vb2p7 1/1 Running 0 6m26s pod/terraform-example-78ff4f86d7-vqm6b 1/1 Running 0 6m26s NAME READY UP-TO-DATE AVAILABLE AGE deployment.apps/terraform-example 3/3 3 3 6m26s NAME DESIRED CURRENT READY AGE replicaset.apps/terraform-example-78ff4f86d7 3 3 3 6m26s
2. 创建sevnginx是什么意思ice相关配置绑定deployment
service相关文档应该是在core/v1吧?查看一下,搜索栏还是很有用的

resource "kubernetes_service" "terraform-example-service" { metadata { name = "terraform-example-service" namespace = kubernetes_namespace.zhangpeng.metadata.0.name } spec { selector = { test = kubernetes_deployment_v1.example.spec.0.template.0.metadata.0.labels.test } session_affinity = "ClientIP" port { port = 80 target_port = 80 } type = "ClusterIP" } }
注意:标签的匹配:selector的http://www.baidu.com标签,namespace deployment的版本是否带v腾讯体育1。session_affinity还有type都是阿里拍卖kubernetes的基础自行腾讯脑补!type的三种方式按照自己环境需求自行nginx负载均衡设置。 terraform plan and terraform apply
[root@k8s-master-01 terraform-k8s]# terraform plan [root@k8s-master-01 terraform-k8s]# terraform apply


[root@k8s-master-01 terraform-k8s]# kubectl get svc -n zhangpeng
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
terraform-example-service ClusterIP 172.19.253.9 <none> 80/TCP 30s
3. 创建ingress绑定clusterip
对应官方文http://www.baidu.com档: registry.tAPPerraform.io/providehttp://192.168.1.1登录rs/h…

resource "kubernetes_ingress_v1" "nginx_ingress_test" { metadata { name = "nginx-ingress-test" namespace = kubernetes_namespace.zhangpeng.metadata.0.name annotations = { "kubernetes.io/ingress.class" = "traefik" "traefik.ingress.kubernetes.io/router.entrypoints" = "web" } } spec { rule { host = "nginx-ingress-test.xxxx.com" http { path { path = "/" backend { service { name = "terraform-example-service" port { number = 80 } } } } } } } }
强调一下:这里本来想设置pathType,但是设置了就有报错。我想看一下默认的nginx服务器是什么! tappreciateerraform plan and terraform apply
[root@k8s-master-01 terraform-k8s]# terraform plan [root@k8s-master-01 terraform-k8s]# terraform apply




3. 顺便看一下腾讯云的tke的文档
看了一眼tknginx配置e相关文档也没有什腾讯么太深入想看的,比如cbs快存储 clb整合之类的?


总结一下
- terrafapproveorm能完成很多工作,现在的很多主流的平台都能满足
- terraform很多时候并不是最优的,不是万能最佳。管理kubernetes反正我觉得就没有用spinnaker等其他的阿里巴巴股票工具简单
- 只是提前想体验一下kubernetes的整合。后面tHTTPerraform还是停留在管理我的基础设施上面.kubernnginx配置文件etes管理我还是不会用腾讯会议app下载terraform的
评论(0)