MCP多云跨集群pod互访
一、需求(requirement) 最近遇到的客户需求:需要在不同的云服务提供商的k8s上运行容器服务,平时server1访问server2时,使用本集群上的服务,但当本集群上的server2出现异常时,cluster1上的server1可以连接cluster2上的server2服……
包含标签 k8s articles
How to migrate an application to k8s
Application knowledge First, you need knowledge about your application. At least one person has to know it very well. If nobody knows the application, you will need a lot of time to answer these questions:
Is it stateless or stateful? A stateful application means it changes depending on users actions. For example, an app storing files that are created by the user’s action in the files System will be stateful.
The impact of the answer is big, the migration of a stateless application is much easier than the migration of a stateful one. In the case of a stateless service, you have to do nothing.
In the other case (stateful application), you need to know which files are stateful and where they are stored on the filesystem. Therefore, someone who has a good knowledge about the application is mandatory.
Then, 2 choices are possible:……
华为云CCE部署moodle程序
moodle程序需要通过k8s容器化部署,这里使用了企业版的k8s — 华为云CCE进行测试。因为moodle和常见的应用程序一样,会涉及两部分数据: 数据库数据:这里使用华为云服务RDS MySQL来承载; 应用数据:也就是moodledata数据,这部分通过使用外部存储来存放,存放的方……
单pod里多prometheus exporter端口监控
一、背景 一同事遇到客户在使用华为云CCE时,在一个pod里运行有多个进程,分别需要使用对应的prometheus exporter监控对应的数据。如:pod里同时运行的有nginx、mysql、php,三者都需要配置prometheus监控,在ECS虚拟机上部署是比较简单的,直接运……
Kubernetes Secrets deploy MySQL
Secrets Use Case: Assume we are planning to deploy a MySQL Pod in the Kubernetes cluster. MySQL requires much sensitive information such as host IP address, database name, username, and password. We can create a Pod for MySQL using the mentioned information as a Kubernetes Deployment definition file. In this scenario, the configuration information such as username, password, database name is tightly coupled with the Pod definition. And they are easily visible to all developers who had access to the Pod definition file. In this approach, we are facing two problems. 1. The sensitive information is tightly coupled with Pod and we can not re-use them( means each time we have to type the credentials separately). And updating the credentials is also a tedious task. Why because we need to change the information in each definition file. This approach is……
企业应用容器化改造方式
应公司要求,我把企业容器化的方式在medium上进行了发布。这里列下最初的原始中文版。 应用容器化改造,一般有以下三种方式: 方式一:单体应用整体容器化,应用代码和架构不做任何改动。 方式二:将应用中升级频繁,或对弹性伸缩要求高的组件拆分出来,将这部分组件容器化。 方式三:将应用做全面的……
gitlab pipeline对接华为云CCE实现CI/CD
Gitlab是一个受众较广的代码托管工具,为了便于进行ci/cd,其增加了通过编辑.gitlab-ci.yml文件来简洁的实现ci/cd功能配置的功能,同时其gitlab-runner可以非常方便的和linux主机、k8s集群进行集成。本篇就结合huaweicloud CCE(商用……
k8s总结之边车模式sidecar
一、什么是边车模式sidecar 边车模式sidecar是在不改变原有container功能的情况下,在同一个pod下增加其他container来增加对应的功能,因为在同一个Pod下的容是共享一个namespace空间的,所以对应的网络、存储等资源也是同一个空间下的,这就可以很方便……
How to use probes in k8s
一、Kubernetes probes三种探针 k8s存在存活(Liveness)、就绪(Readiness)和启动(Startup)三种探针,根据k8s官方的描述如下: kubelet 使用存活探针(Liveness)来确定什么时候要重启容器。 例如,存活探针可以探测到应用死锁(应用程序在运行,但是……
Kubeconfig示例及解析
What is a Kubeconfig file? A Kubeconfig is a YAML file with all the Kubernetes cluster details, certificate, and secret token to authenticate the cluster. You might get this config file directly from the cluster administrator or from a cloud platform if you are using managed Kubernetes cluster. Example Kubeconfig File Here is an example of a Kubeconfig. It needs the following key information to connect to the Kubernetes clusters. certificate-authority-data: Cluster CA server: Cluster endpoint (IP/DNS of master node) name: Cluster name user: name of the user/service account. token: Secret token of the user/service account. 1apiVersion: v1 2clusters: 3- cluster: 4 certificate-authority-data: <ca-data-here> 5 server: https://your-k8s-cluster.com 6 name: <cluster-name> 7contexts: 8- context: 9 cluster: <cluster-name> 10 user: <cluster-name-user> 11 name: <cluster-name> 12current-context: <cluster-name> 13kind: Config 14preferences: {} 15users: 16- name: <cluster-name-user> 17 user: 18 token: <secret-token-here> 19</secret-token-here></cluster-name-user></cluster-name></cluster-name></cluster-name-user></cluster-name></cluster-name></ca-data-here> Different Methods……