不到1分鐘，從零完成k3s Kubeconfig配置！

K3s是由Rancher Labs於今年年初發布的一款開源、極輕量的Kubernetes發行版，完美適用於在資源有限的環境中運行Kubernetes。K3s一經發布就獲得了業界的高度關注和承認，發佈半年以來已在GitHub上擁有近8500顆Star。

最初k3s只是一個用於本地Kubernetes開發的POC項目，而現在已有不少企業用戶在生產環境中使用它。

官方GitRepo:

https://github.com/rancher/k3s

官方定義：k3s是徹底符合標準的生產級Kubernetes發行版，具備如下四個方面的主要變化：

• 刪除舊的、非必須的代碼：K3s不包括任何默認禁用的Alpha功能或者過期的功能，原有的API組件目前仍運行於標準部署當中。除此以外，Rancher還刪除了全部非默認許可控制器，in- tree雲提供商和存儲驅動程序，但容許用戶添加任何他們須要的驅動程序。

• 整合正在運行的打包進程：爲了節省RAM，Rancher將一般在Kubernetes管理服務器上運行的多流程合併爲單個流程。Rancher還將在工做節點上運行的kubelet、kubeproxy和flannel代理進程組合成一個進程。

• 使用containerd代替Docker做爲運行時的容器引擎：經過用containderd替換Docker，Rancher可以顯著減小運行時佔用空間，刪除libnetwork、swarm、Docker存儲驅動程序和其餘插件等功能。

• 除了 etcd 以外，引入 SQLite 做爲可選的數據存儲：Rancher在k3s中添加了SQLite做爲可選的數據存儲，從而爲etcd提供了一個輕量級的替代方案。該方案不只佔用了較少的內存，並且大幅簡化了操做。

鑑於k3s受到極高的關注度以及普遍的應用，大量的開源社區用戶開始搭建有關k3s的項目，本文將分享如何使用其中一個項目——k3sup，來實現一分鐘內從零到徹底配置k3s Kubeconfig。

K3sup：1分鐘以內，從零到徹底配置Kubeconfig

K3sup：https://github.com/alexellis/k3sup

K3sup是由Alex Ellis建立的一個開源項目，這使得k3s的安裝和kubeconfig文件的生成變得快速和方便。這一工具能以極快的速度自動化安裝k3s、將SAN地址更新爲公共IP、下載k3s配置文件而後使用VM的公共IP地址將其更新，以即可以使用kubectl鏈接它。

如下步驟使用Amazon EC2實例說明了此過程：

步驟1：啓動Amazon EC2實例，讓安全組打開端口並經過ssh登陸。

• 登陸亞馬遜控制檯並單擊EC2

• 在EC2 Dashboard上，點擊啓動實例

• 選擇 Amazon Linux 2 AMI 鏡像

• 選擇實例類型（咱們將使用t2.medium）

• 選擇VPC/Subnet/IAM等而且啓用自動分配公共IP（一切都保持默認）

• 添加存儲（使用默認配置）

• 添加標籤（若是須要的話）

• 配置安全組以容許不一樣端口上的流量（本demo中啓用全部流量）

• 選擇一個密鑰對而且啓動實例

步驟2：下載k3sup的二進制文件

curl -sLS https://raw.githubusercontent.com/alexellis/k3sup/master/get.sh | sh
[root@ip-172-31-33-136 ec2-user]# curl -sLS https://raw.githubusercontent.com/alexellis/k3sup/master/get.sh | sh
which: no k3sup in (/sbin:/bin:/usr/sbin:/usr/bin)
x86_64
Downloading package https://github.com/alexellis/k3sup/releases/download/0.2.0/k3sup as /tmp/k3sup
Download complete.

Running as root - Attempting to move k3sup to /usr/local/bin
New version of k3sup installed to /usr/local/bin

步驟3：將ssh密鑰複製到VM中的'vi /root/.ssh/id_rsa'位置，導出IP並使用k3sup安裝k3s

[root@ip-172-31-33-136 ec2-user]# **cd /usr/local/bin**

[root@ip-172-31-33-136 bin]# **export IP=54.159.112.255**

[root@ip-172-31-33-136 bin]# **./k3sup install --ip $IP --user ec2-user**

Public IP: 54.159.112.255
ssh -i /root/.ssh/id_rsa ec2-user@54.159.112.255

ssh: curl -sLS https://get.k3s.io | INSTALL_K3S_EXEC='server --tls-san 54.159.112.255' sh -
[INFO]  Finding latest release
[INFO]  Using v0.8.0 as release
[INFO]  Downloading hash [https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt](https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt)
[INFO]  Downloading binary [https://github.com/rancher/k3s/releases/download/v0.8.0/k3s](https://github.com/rancher/k3s/releases/download/v0.8.0/k3s)
[INFO]  Verifying binary download
[INFO]  Installing k3s to /usr/local/bin/k3s
which: no kubectl in (/usr/local/bin:/usr/bin)
[INFO]  Creating /usr/local/bin/kubectl symlink to k3s
which: no crictl in (/usr/local/bin:/usr/bin)
[INFO]  Creating /usr/local/bin/crictl symlink to k3s
which: no ctr in (/usr/local/bin:/usr/bin)
[INFO]  Creating /usr/local/bin/ctr symlink to k3s
[INFO]  Creating killall script /usr/local/bin/k3s-killall.sh
[INFO]  Creating uninstall script /usr/local/bin/k3s-uninstall.sh
[INFO]  env: Creating environment file /etc/systemd/system/k3s.service.env
[INFO]  systemd: Creating service file /etc/systemd/system/k3s.service
[INFO]  systemd: Enabling k3s unit
Created symlink from /etc/systemd/system/multi-user.target.wants/k3s.service to /etc/systemd/system/k3s.service.
[INFO]  systemd: Starting k3s
Result: [INFO]  Finding latest release
[INFO]  Using v0.8.0 as release
[INFO]  Downloading hash [https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt](https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt)
[INFO]  Downloading binary [https://github.com/rancher/k3s/releases/download/v0.8.0/k3s](https://github.com/rancher/k3s/releases/download/v0.8.0/k3s)
[INFO]  Verifying binary download
[INFO]  Installing k3s to /usr/local/bin/k3s
[INFO]  Creating /usr/local/bin/kubectl symlink to k3s
[INFO]  Creating /usr/local/bin/crictl symlink to k3s
[INFO]  Creating /usr/local/bin/ctr symlink to k3s
[INFO]  Creating killall script /usr/local/bin/k3s-killall.sh
[INFO]  Creating uninstall script /usr/local/bin/k3s-uninstall.sh
[INFO]  env: Creating environment file /etc/systemd/system/k3s.service.env
[INFO]  systemd: Creating service file /etc/systemd/system/k3s.service
[INFO]  systemd: Enabling k3s unit
[INFO]  systemd: Starting k3s
which: no kubectl in (/usr/local/bin:/usr/bin)
which: no crictl in (/usr/local/bin:/usr/bin)
which: no ctr in (/usr/local/bin:/usr/bin)
Created symlink from /etc/systemd/system/multi-user.target.wants/k3s.service to /etc/systemd/system/k3s.service.
ssh: sudo cat /etc/rancher/k3s/k3s.yaml
Saving file to: /usr/local/bin/kubeconfig

它將建立一個kubeconfig文件而且保存在你運行命令的目錄中。

步驟4：導出KUBECONFIG

[root@ip-172-31-33-136 bin]#** export KUBECONFIG=`pwd`/kubeconfig**

步驟5：開始玩轉k3s

[root@ip-172-31-33-136 bin]# **./kubectl get nodes**

NAME                            STATUS   ROLES    AGE   VERSION

ip-172-31-33-136.ec2.internal   Ready    master   24s   v1.14.5-k3s.1


[root@ip-172-31-33-136 bin]# **./kubectl get pods -n kube-system**

NAME                         READY   STATUS      RESTARTS   AGE

coredns-b7464766c-ngf46      1/1     Running     0          4m3s

helm-install-traefik-x6wfj   0/1     Completed   0          4m3s

svclb-traefik-65gw9          2/2     Running     0          3m49s

traefik-56688c4464-5rdss     1/1     Running     0          3m49s

運行一個簡單的服務：

# Create a Deployment
**./kubectl run nginx --image=nginx**

# Create Service
[root@ip-172-31-33-136 bin]# **./kubectl expose deployment nginx --port=80 --target-port=80**

service/nginx exposed

[root@ip-172-31-33-136 bin]# **./kubectl get svc**

NAME         TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)   AGE

kubernetes   ClusterIP   10.43.0.1      <none>        443/TCP   45m

nginx        ClusterIP   10.43.99.179   <none>        80/TCP    5s

[root@ip-172-31-33-136 bin]#  **curl 10.43.99.179**

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
body {
width: 35em;
margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif;
}
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>
<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>
<p><em>Thank you for using nginx.</em></p>
</body>
</html>

加入兩個節點：是否能夠在不登陸節點的狀況下將節點與主節點鏈接？是的，k3sup能夠作到這一點。

在VM上得到k3s設置後，你能夠輕鬆地將節點加入到集羣：

#AGENT_IP is the IP of the VM that you want to add to the cluster that has k3s running
**export AGENT_IP=54.196.113.156**

#SERVER_IP is the IP of the server where k3 is installed 
export SERVER_IP=54.159.112.255
**export USER=ec2-user**

[root@ip-172-31-33-136 bin]# **./k3sup join --ip $AGENT_IP --server-ip $SERVER_IP --user ec2-user
**Server IP: 54.159.112.255
ssh -i /root/.ssh/id_rsa ec2-user@54.159.112.255
ssh: sudo cat /var/lib/rancher/k3s/server/node-token

K1077d707d0868b652aca7adfc21b5f34a1f0357e71b216bf8b3c94a559cd4f93a6::node:014c8ed3f6574d27db73b9c8bf67f617

ssh: curl -sfL https://get.k3s.io/ | K3S_URL="https://54.159.112.255:6443" K3S_TOKEN="K1077d707d0868b652aca7adfc21b5f34a1f0357e71b216bf8b3c94a559cd4f93a6::node:014c8ed3f6574d27db73b9c8bf67f617" sh -

[INFO]  Finding latest release
[INFO]  Using v0.8.0 as release
[INFO]  Downloading hash [https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt](https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt)
[INFO]  Downloading binary [https://github.com/rancher/k3s/releases/download/v0.8.0/k3s](https://github.com/rancher/k3s/releases/download/v0.8.0/k3s)
[INFO]  Verifying binary download
[INFO]  Installing k3s to /usr/local/bin/k3s
which: no kubectl in (/usr/local/bin:/usr/bin)
[INFO]  Creating /usr/local/bin/kubectl symlink to k3s
which: no crictl in (/usr/local/bin:/usr/bin)
[INFO]  Creating /usr/local/bin/crictl symlink to k3s
which: no ctr in (/usr/local/bin:/usr/bin)
[INFO]  Creating /usr/local/bin/ctr symlink to k3s
[INFO]  Creating killall script /usr/local/bin/k3s-killall.sh
[INFO]  Creating uninstall script /usr/local/bin/k3s-agent-uninstall.sh
[INFO]  env: Creating environment file /etc/systemd/system/k3s-agent.service.env
[INFO]  systemd: Creating service file /etc/systemd/system/k3s-agent.service
[INFO]  systemd: Enabling k3s-agent unit
Created symlink from /etc/systemd/system/multi-user.target.wants/k3s-agent.service to /etc/systemd/system/k3s-agent.service.
[INFO]  systemd: Starting k3s-agent
Logs: which: no kubectl in (/usr/local/bin:/usr/bin)
which: no crictl in (/usr/local/bin:/usr/bin)
which: no ctr in (/usr/local/bin:/usr/bin)
Created symlink from /etc/systemd/system/multi-user.target.wants/k3s-agent.service to /etc/systemd/system/k3s-agent.service.
Output: [INFO]  Finding latest release
[INFO]  Using v0.8.0 as release
[INFO]  Downloading hash [https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt](https://github.com/rancher/k3s/releases/download/v0.8.0/sha256sum-amd64.txt)
[INFO]  Downloading binary [https://github.com/rancher/k3s/releases/download/v0.8.0/k3s](https://github.com/rancher/k3s/releases/download/v0.8.0/k3s)
[INFO]  Verifying binary download
[INFO]  Installing k3s to /usr/local/bin/k3s
[INFO]  Creating /usr/local/bin/kubectl symlink to k3s
[INFO]  Creating /usr/local/bin/crictl symlink to k3s
[INFO]  Creating /usr/local/bin/ctr symlink to k3s
[INFO]  Creating killall script /usr/local/bin/k3s-killall.sh
[INFO]  Creating uninstall script /usr/local/bin/k3s-agent-uninstall.sh
[INFO]  env: Creating environment file /etc/systemd/system/k3s-agent.service.env
[INFO]  systemd: Creating service file /etc/systemd/system/k3s-agent.service
[INFO]  systemd: Enabling k3s-agent unit
[INFO]  systemd: Starting k3s-agent



[root@ip-172-31-33-136 bin]# **./kubectl get nodes**

NAME                            STATUS   ROLES    AGE   VERSION

ip-172-31-33-136.ec2.internal   Ready    master   19m   v1.14.5-k3s.1

ip-172-31-37-118.ec2.internal   Ready    worker   11s   v1.14.5-k3s.1

你能夠看到使用k3sup設置k3s集羣並在不到60秒的時間內將其做爲Amazon EC2實例上運行的節點加入VM是如此容易。趕忙上手嘗試吧！