平台安装默认K8S集群,地址池为:172.20.0.0/16,本文将按照新的网络规划,将地址池网络段修改为:172.17.0.0/24
-
修改k8s相关配置
- kube-apiserver: --pod-network-cidr
- kube-proxy: --cluster-cidr
- kube-controller-manager: --cluster-cidr
-
修改calico IP pool
配置calico连接etcd:
calicoctl get ippool -o wide --config /etc/calico/calicoctl.cfg
返回结果:
apiVersion: projectcalico.org/v3
kind: CalicoAPIConfig
metadata:
spec:
etcdEndpoints: https://192.168.0.5:2379,https://192.168.0.6:2379,https://192.168.0.7:2379
etcdKeyFile: /etc/calico/certs/key.pem
etcdCertFile: /etc/calico/certs/cert.crt
etcdCACertFile: /etc/calico/certs/ca_cert.crt-
增加新的 ip pool(k8s组件中设置的--pod-network-cidr --cluster-cidr):
calicoctl create -f -<<EOF
apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
name: new-pool
spec:
cidr: 172.17.0.0/24
ipipMode: Always
natOutgoing: true
EOF-
禁用旧的 IP pool
导出旧的IP pool的配置yaml文件
calicoctl get ippool -o yaml --config /etc/calico/calicoctl.cfg > pool.yaml在旧的ip pool的spec中增加一个字段:disabled: true
apiVersion: projectcalico.org/v3
items:
- apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
creationTimestamp: 2018-12-07T13:17:31Z
name: default-pool
resourceVersion: "3807"
uid: 73fd5867-fa22-11e8-b0e7-5254c80ff311
spec:
blockSize: 26
cidr: 10.233.64.0/18
ipipMode: Always
natOutgoing: true
nodeSelector: all()
disabled:true# new add
- apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
creationTimestamp: 2019-10-20T07:45:14Z
name: new-pool
resourceVersion: "704829464"
uid: 8d40e24e-f30d-11e9-a071-5254c80ff311
spec:
blockSize: 26
cidr: 172.17.0.0/24
ipipMode: Always
natOutgoing: true
nodeSelector: all()
vxlanMode: Never
kind: IPPoolList
metadata:
resourceVersion: "704836168"部署使新配置生效
calicoctl apply -f pool.yaml
calicoctl get ippool -o wide-
重置k8s集群节点 podCIDR
获取节点yaml文件
# 获取节点yaml文件
kubectl get node node名称 -o yaml > node1.yaml修改yaml文件中spec.podCIDR字段,按照规划的CIDR地址块进行修改
# 修改yaml文件中spec.podCIDR字段
# 按照规划的CIDR地址块进行修改
spec:
podCIDR: 172.17.0.0/24修改yaml文件后,由于node对象不能直接覆盖创建,需要先删除节点,再重新创建
# 修改yaml文件后,由于node对象不能直接覆盖创建,需要先删除节点,再重新创建
kubectl delete nodes node名称
kubectl create -f node1.yaml