| 知乎专栏 |
https://helm.sh
CURL 安装
curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
二进制安装
cd /usr/local/src/ wget https://get.helm.sh/helm-v3.9.4-linux-amd64.tar.gz tar zxvf helm-v3.9.4-linux-amd64.tar.gz mv linux-amd64 /srv/helm-v3.9.4 alternatives --install /usr/local/bin/helm helm /srv/helm-v3.9.4/helm 10
[root@netkiller ~]# dnf install -y snapd [root@netkiller ~]# ln -s /var/lib/snapd/snap /snap [root@netkiller ~]# systemctl enable --now snapd.socket [root@netkiller ~]# systemctl start --now snapd.socket [root@netkiller ~]# snap install helm --classic
cat >> /etc/profile.d/snap.sh <<EOF export PATH=$PATH:/snap/bin EOF source /etc/profile.d/snap.sh
# 初始化本地,并将 Tiller 安装到 Kubernetes cluster $ helm init # 更新本地 charts repo $ helm repo update # 安装 mysql chart $ helm install --name my-mysql stable/mysql # 删除 mysql $ helm delete my-mysql # 删除 mysql 并释放该名字以便后续使用 $ helm delete --purge my-mysql
neo@MacBook-Pro ~ % helm init Creating /Users/neo/.helm Creating /Users/neo/.helm/repository Creating /Users/neo/.helm/repository/cache Creating /Users/neo/.helm/repository/local Creating /Users/neo/.helm/plugins Creating /Users/neo/.helm/starters Creating /Users/neo/.helm/cache/archive Creating /Users/neo/.helm/repository/repositories.yaml Adding stable repo with URL: https://kubernetes-charts.storage.googleapis.com Adding local repo with URL: http://127.0.0.1:8879/charts $HELM_HOME has been configured at /Users/neo/.helm. Warning: Tiller is already installed in the cluster. (Use --client-only to suppress this message, or --upgrade to upgrade Tiller to the current version.) Happy Helming!
查看当前的 Charts 包仓库
neo@MacBook-Pro ~ % helm repo list NAME URL stable https://kubernetes-charts.storage.googleapis.com local http://127.0.0.1:8879/charts
更新仓库
neo@MacBook-Pro ~ % helm repo update Hang tight while we grab the latest from your chart repositories... ...Skip local chart repository ...Unable to get an update from the "stable" chart repository (https://kubernetes-charts.storage.googleapis.com): unexpected EOF Update Complete. ⎈ Happy Helming!⎈
在stable仓库搜索 redis应用
neo@MacBook-Pro ~ % helm search stable/redis NAME CHART VERSION APP VERSION DESCRIPTION stable/redis 6.4.3 4.0.14 Open source, advanced key-value store. It is often referr... stable/redis-ha 3.3.3 5.0.3 Highly available Kubernetes implementation of Redis
$ helm install stable/redis $ helm install --name=redis stable/redis
neo@MacBook-Pro ~ % helm install stable/redis
NAME: vested-termite
LAST DEPLOYED: Sun Mar 31 17:46:02 2019
NAMESPACE: default
STATUS: DEPLOYED
RESOURCES:
==> v1/ConfigMap
NAME DATA AGE
vested-termite-redis 3 0s
vested-termite-redis-health 3 0s
==> v1/Pod(related)
NAME READY STATUS RESTARTS AGE
vested-termite-redis-master-0 0/1 Pending 0 0s
vested-termite-redis-slave-57584f877-8njkc 0/1 ContainerCreating 0 0s
==> v1/Secret
NAME TYPE DATA AGE
vested-termite-redis Opaque 1 0s
==> v1/Service
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
vested-termite-redis-master ClusterIP 10.98.194.187 <none> 6379/TCP 0s
vested-termite-redis-slave ClusterIP 10.111.85.208 <none> 6379/TCP 0s
==> v1beta1/Deployment
NAME READY UP-TO-DATE AVAILABLE AGE
vested-termite-redis-slave 0/1 1 0 0s
==> v1beta2/StatefulSet
NAME READY AGE
vested-termite-redis-master 0/1 0s
NOTES:
** Please be patient while the chart is being deployed **
Redis can be accessed via port 6379 on the following DNS names from within your cluster:
vested-termite-redis-master.default.svc.cluster.local for read/write operations
vested-termite-redis-slave.default.svc.cluster.local for read-only operations
To get your password run:
export REDIS_PASSWORD=$(kubectl get secret --namespace default vested-termite-redis -o jsonpath="{.data.redis-password}" | base64 --decode)
To connect to your Redis server:
1. Run a Redis pod that you can use as a client:
kubectl run --namespace default vested-termite-redis-client --rm --tty -i --restart='Never' \
--env REDIS_PASSWORD=$REDIS_PASSWORD \
--image docker.io/bitnami/redis:4.0.14 -- bash
2. Connect using the Redis CLI:
redis-cli -h vested-termite-redis-master -a $REDIS_PASSWORD
redis-cli -h vested-termite-redis-slave -a $REDIS_PASSWORD
To connect to your database from outside the cluster execute the following commands:
kubectl port-forward --namespace default svc/vested-termite-redis 6379:6379 &
redis-cli -h 127.0.0.1 -p 6379 -a $REDIS_PASSWORD
neo@MacBook-Pro ~ % helm list NAME REVISION UPDATED STATUS CHART APP VERSION NAMESPACE vested-termite 1 Sun Mar 31 17:46:02 2019 DEPLOYED redis-6.4.3 4.0.14 default
neo@MacBook-Pro ~ % helm list
NAME REVISION UPDATED STATUS CHART APP VERSION NAMESPACE
vested-termite 1 Sun Mar 31 17:46:02 2019 DEPLOYED redis-6.4.3 4.0.14 default
neo@MacBook-Pro ~ % helm status vested-termite
LAST DEPLOYED: Sun Mar 31 17:46:02 2019
NAMESPACE: default
STATUS: DEPLOYED
RESOURCES:
==> v1/ConfigMap
NAME DATA AGE
vested-termite-redis 3 111m
vested-termite-redis-health 3 111m
==> v1/Pod(related)
NAME READY STATUS RESTARTS AGE
vested-termite-redis-master-0 1/1 Running 0 111m
vested-termite-redis-slave-57584f877-8njkc 1/1 Running 0 111m
==> v1/Secret
NAME TYPE DATA AGE
vested-termite-redis Opaque 1 111m
==> v1/Service
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
vested-termite-redis-master ClusterIP 10.98.194.187 <none> 6379/TCP 111m
vested-termite-redis-slave ClusterIP 10.111.85.208 <none> 6379/TCP 111m
==> v1beta1/Deployment
NAME READY UP-TO-DATE AVAILABLE AGE
vested-termite-redis-slave 1/1 1 1 111m
==> v1beta2/StatefulSet
NAME READY AGE
vested-termite-redis-master 1/1 111m
NOTES:
** Please be patient while the chart is being deployed **
Redis can be accessed via port 6379 on the following DNS names from within your cluster:
vested-termite-redis-master.default.svc.cluster.local for read/write operations
vested-termite-redis-slave.default.svc.cluster.local for read-only operations
To get your password run:
export REDIS_PASSWORD=$(kubectl get secret --namespace default vested-termite-redis -o jsonpath="{.data.redis-password}" | base64 --decode)
To connect to your Redis server:
1. Run a Redis pod that you can use as a client:
kubectl run --namespace default vested-termite-redis-client --rm --tty -i --restart='Never' \
--env REDIS_PASSWORD=$REDIS_PASSWORD \
--image docker.io/bitnami/redis:4.0.14 -- bash
2. Connect using the Redis CLI:
redis-cli -h vested-termite-redis-master -a $REDIS_PASSWORD
redis-cli -h vested-termite-redis-slave -a $REDIS_PASSWORD
To connect to your database from outside the cluster execute the following commands:
kubectl port-forward --namespace default svc/vested-termite-redis 6379:6379 &
redis-cli -h 127.0.0.1 -p 6379 -a $REDIS_PASSWORD
helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx helm repo update
安装 ingress-nginx 并且设置为默认 ingress
helm upgrade --install ingress-nginx ingress-nginx/ingress-nginx \ --namespace ingress-nginx --set controller.service.type=LoadBalancer \ --set controller.ingressClassResource.default=true \ --set controller.watchIngressWithoutClass=true \ --create-namespace
让Nginx获取客户端IP地址,找到spec下的externalTrafficPolicy,把值改为Local。
kubectl edit service/ingress-nginx-controller --namespace ingress-nginx