丢爸
丢爸

Linux学习-kubernetes之资源清单定义

资源:对象
  • workload:Pod、ReplicaSet、Deployment、StatefulSet、DaemonSet、Job、Cronjob,…
  • 服务发现及均衡:Service、Ingress
  • 配置及存储:Volume、CSI
    • ConfigMap、Secret
    • DownwardAPI
  • 集群级资源
    • NameSpace、Node、Role、ClusterRole、RoleBinding、ClusterRoleBinding
  • 元数据型资源
    • HPA、PodTemplate、LimitRange
#获取apiServer所支持的apiversion
[root@master ~]# kubectl api-versions
admissionregistration.k8s.io/v1
apiextensions.k8s.io/v1
apiregistration.k8s.io/v1
apps/v1
authentication.k8s.io/v1
authorization.k8s.io/v1
autoscaling/v1
autoscaling/v2beta1
autoscaling/v2beta2
batch/v1
batch/v1beta1
certificates.k8s.io/v1
coordination.k8s.io/v1
discovery.k8s.io/v1
discovery.k8s.io/v1beta1
events.k8s.io/v1
events.k8s.io/v1beta1
flowcontrol.apiserver.k8s.io/v1beta1
networking.k8s.io/v1
node.k8s.io/v1
node.k8s.io/v1beta1
policy/v1
policy/v1beta1
rbac.authorization.k8s.io/v1
scheduling.k8s.io/v1
storage.k8s.io/v1
storage.k8s.io/v1beta1
v1
[root@master ~]# kubectl get pods
NAME                            READY   STATUS             RESTARTS         AGE
client                          0/1     Error              0                23h
client-7c75c79d7c-h9994         0/1     CrashLoopBackOff   19 (2m14s ago)   23h
nginx                           1/1     Running            2 (9m13s ago)    37h
nginx-deploy-7c948bcff4-jclqg   1/1     Running            1 (9m11s ago)    24h
nginx-deploy-7c948bcff4-mczxp   1/1     Running            1 (9m13s ago)    24h
#输出为yaml格式
[root@master ~]# kubectl get pods nginx -o yaml
#版本号,group/版本号,默认group为核心组
apiVersion: v1
#kind表示使用何种资源
kind: Pod
#元数据
metadata:
  creationTimestamp: "2021-11-07T00:16:21Z"
  labels:
    run: nginx
  name: nginx
  namespace: default
  resourceVersion: "17833"
  uid: 8f1cd26f-b981-428f-a156-a92b7dee2cfd
#特性,用于定义目标资源所期望的目标状态(用户定义)
spec:
  containers:
  #容器使用的镜像
  - image: nginx:1.14
    imagePullPolicy: IfNotPresent
    #容器名称
    name: nginx
    ports:
    - containerPort: 80
      protocol: TCP
    resources: {}
    terminationMessagePath: /dev/termination-log
    terminationMessagePolicy: File
    volumeMounts:
    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
      name: kube-api-access-85lz5
      readOnly: true
  dnsPolicy: ClusterFirst
  enableServiceLinks: true
  nodeName: node2
  preemptionPolicy: PreemptLowerPriority
  priority: 0
  restartPolicy: Always
  schedulerName: default-scheduler
  securityContext: {}
  serviceAccount: default
  serviceAccountName: default
  terminationGracePeriodSeconds: 30
  tolerations:
  - effect: NoExecute
    key: node.kubernetes.io/not-ready
    operator: Exists
    tolerationSeconds: 300
  - effect: NoExecute
    key: node.kubernetes.io/unreachable
    operator: Exists
    tolerationSeconds: 300
  volumes:
  - name: kube-api-access-85lz5
    projected:
      defaultMode: 420
      sources:
      - serviceAccountToken:
          expirationSeconds: 3607
          path: token
      - configMap:
          items:
          - key: ca.crt
            path: ca.crt
          name: kube-root-ca.crt
      - downwardAPI:
          items:
          - fieldRef:
              apiVersion: v1
              fieldPath: metadata.namespace
            path: namespace
#当前资源的当前状态(只读)
status:
  conditions:
  - lastProbeTime: null
    lastTransitionTime: "2021-11-07T00:16:21Z"
    status: "True"
    type: Initialized
  - lastProbeTime: null
    lastTransitionTime: "2021-11-08T14:01:53Z"
    status: "True"
    type: Ready
  - lastProbeTime: null
    lastTransitionTime: "2021-11-08T14:01:53Z"
    status: "True"
    type: ContainersReady
  - lastProbeTime: null
    lastTransitionTime: "2021-11-07T00:16:21Z"
    status: "True"
    type: PodScheduled
  containerStatuses:
  - containerID: docker://ef084460d6dc3183abd768dc89dbbbb0d9a0fab5809220d02f97e9230819ddff
    image: nginx:1.14
    imageID: docker-pullable://nginx@sha256:f7988fb6c02e0ce69257d9bd9cf37ae20a60f1df7563c3a2a6abe24160306b8d
    lastState:
      terminated:
        containerID: docker://05be395a286ac086568ec8a80a8ce017c8165a46e0e27e2f7be1e302e1c5c2d2
        exitCode: 255
        finishedAt: "2021-11-08T14:01:16Z"
        reason: Error
        startedAt: "2021-11-07T13:18:48Z"
    name: nginx
    ready: true
    restartCount: 2
    started: true
    state:
      running:
        startedAt: "2021-11-08T14:01:52Z"
  hostIP: 192.168.88.103
  phase: Running
  podIP: 10.244.1.6
  podIPs:
  - ip: 10.244.1.6
  qosClass: BestEffort
  startTime: "2021-11-07T00:16:21Z"

#kubectl proxy命令就可以使API server监听在本地的8001端口上
[root@master ~]# kubectl proxy
Starting to serve on 127.0.0.1:8001
#通过curl访问本地资源,会返回json格式配置信息
[root@master ~]# curl http://localhost:8001/api/v1/namespaces/default/pods/myapp-7b595df7fc-9d92c
创建资源的方法:
  • apiServer仅接收JSON格式的资源定义
  • yaml格式提供配置清单,apiserver自动转化为JSON格式,然后提交
生成资源清单方法
#创建资源时生成yaml,--dry-run即空运行,-o yaml,生成yaml文件
[root@k8s-master ~]# kubectl create deployment web --image=nginx -o yaml --dry-run=client -o yaml
#通过已经创建的资源获得yaml文件
[root@k8s-master ~]# kubectl get deployment nginx -o yaml  >my2.yaml
资源的配置清单
  • apiVersion[group/version]
  • kind:资源类别
  • metadata:元数据
    • name:必须是唯一的(同一类别下)
    • namespace:名称空间
    • labels:标签
    • annotation:注解
    • 每个资源的引用PATH
      • /api/GROUP/version/namespaces/NAMESPACE/TYPE/NAME
    • spec:期望的状态,disired state
    • status:当前状态(current state)本字段由kubernetes集群维护
#通过explain来查看pods资源如何定义
[root@master ~]# kubectl explain pods
KIND:     Pod
VERSION:  v1

DESCRIPTION:
     Pod is a collection of containers that can run on a host. This resource is
     created by clients and scheduled onto hosts.
FIELDS:
   ... ...
   metadata	<Object>
     Standard object's metadata. More info:
     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
   ... ...
#注表示有嵌套二级对象,表示为多个key=value键值对,<[]Object>表示多个对象组成的组
#查看资源二级定义
[root@master ~]# kubectl explain pods.metadata
KIND:     Pod
VERSION:  v1

RESOURCE: metadata 

DESCRIPTION:
     Standard object's metadata. More info:
     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata

     ObjectMeta is metadata that all persisted resources must have, which
     includes all objects users must create.

FIELDS:
   annotations	<map[string]string>
     Annotations is an unstructured key value map stored with a resource that
     may be set by external tools to store and retrieve arbitrary metadata. They
     are not queryable and should be preserved when modifying objects. More
     info: http://kubernetes.io/docs/user-guide/annotations


通过yaml创建pod


#yaml文件--注:yaml文件书写时,参数后面记得有空格
#通过kubectl explain查看配置属性,如有列表数据([]objects)书写yaml文件时可以使用[],对象数据使用{}
#通过kubectl explain查看配置属性,参数后面加【-required-】表示此参数为必须项
apiVersion: v1
kind: Pod
metadata:
  name: pod-demo
  namespace: default
  labels:
    app: myapp
    tier: frontend
spec:
  containers:
  - name: nginx-new
    image: nginx:1.14
  - name: busybox
    image: busybox:latest
    command:
    - "/bin/sh"
    - "-c"
    - "sleep 3600"
#通过yaml创建pod
[root@master manifests]# kubectl create -f nginx.yaml
pod/pod-demo created
[root@master manifests]# kubectl get pods
NAME                            READY   STATUS      RESTARTS         AGE
client                          0/1     Error       0                24h
client-7c75c79d7c-h9994         0/1     Completed   32 (5m25s ago)   24h
nginx                           1/1     Running     2 (73m ago)      38h
nginx-deploy-7c948bcff4-jclqg   1/1     Running     1 (73m ago)      25h
nginx-deploy-7c948bcff4-mczxp   1/1     Running     1 (73m ago)      25h
pod-demo                        2/2     Running     0                8s
#删除pod第一种方法
[root@master manifests]# kubectl delete -f nginx.yaml 
pod "pod-demo" deleted
#删除pod第二种方法
[root@master manifests]# kubectl delete pod-demo
#查看日志
[root@master manifests]# kubectl logs pod-demo busybox
/bin/sh: can't create /usr/share/nginx/html/index.html: nonexistent directory
#-l 或 --selector 标签过滤,获取对应标签的资源列表
[root@master ~]# kubectl get pods --selector app=nginx-deploy
NAME                            READY   STATUS    RESTARTS      AGE
nginx-deploy-7c948bcff4-jclqg   1/1     Running   2 (46m ago)   2d
nginx-deploy-7c948bcff4-mczxp   1/1     Running   2 (46m ago)   2d
#-L显示多个标签的值
[root@master ~]# kubectl get pods -L app,run
NAME                            READY   STATUS             RESTARTS       AGE     APP            RUN
client                          0/1     Error              0              47h                    client
client-7c75c79d7c-h9994         0/1     CrashLoopBackOff   47 (20s ago)   47h     client         
nginx                           1/1     Running            3 (48m ago)    2d14h                  nginx
nginx-deploy-7c948bcff4-jclqg   1/1     Running            2 (48m ago)    2d      nginx-deploy   
nginx-deploy-7c948bcff4-mczxp   1/1     Running            2 (48m ago)    2d      nginx-deploy 
#kubectl label给指定的资源打标签
[root@master ~]# kubectl label pods nginx release=tye
pod/nginx labeled
# 查看标签设置情况
[root@master ~]# kubectl get pods -l release --show-labels
NAME    READY   STATUS    RESTARTS      AGE     LABELS
nginx   1/1     Running   3 (52m ago)   2d14h   release=tye,run=nginx
#如果设置标签时,标签已经存在值,需要使用--overwrite参数,否则不能进行修改
[root@master ~]# kubectl label pods nginx release=edison
error: 'release' already has a value (tye), and --overwrite is false
[root@master ~]# kubectl label pods nginx release=edison --overwrite
pod/nginx labeled
[root@master ~]# kubectl get pods -l release --show-labels
NAME    READY   STATUS    RESTARTS      AGE     LABELS
nginx   1/1     Running   3 (54m ago)   2d14h   release=edison,run=nginx
[root@master ~]# kubectl label pods nginx-deploy-7c948bcff4-jclqg release=tye
pod/nginx-deploy-7c948bcff4-jclqg labeled
[root@master ~]# kubectl get pods -l release
NAME                            READY   STATUS    RESTARTS      AGE
nginx                           1/1     Running   3 (61m ago)   2d14h
nginx-deploy-7c948bcff4-jclqg   1/1     Running   2 (61m ago)   2d
[root@master ~]# kubectl get pods -l release --show-labels
NAME                            READY   STATUS    RESTARTS      AGE     LABELS
nginx                           1/1     Running   3 (61m ago)   2d14h   release=edison,run=nginx
nginx-deploy-7c948bcff4-jclqg   1/1     Running   2 (61m ago)   2d      app=nginx-deploy,pod-template-hash=7c948bcff4,release=tye
[root@master ~]# kubectl get pods -l release,app --show-labels
NAME                            READY   STATUS    RESTARTS      AGE   LABELS
nginx-deploy-7c948bcff4-jclqg   1/1     Running   2 (62m ago)   2d    app=nginx-deploy,pod-template-hash=7c948bcff4,release=tye
[root@master ~]# kubectl get pods -l release=edison,run=nginx --show-labels
NAME    READY   STATUS    RESTARTS      AGE     LABELS
nginx   1/1     Running   3 (62m ago)   2d14h   release=edison,run=nginx
[root@master ~]# kubectl get pods -l release!=edison --show-labels
NAME                            READY   STATUS             RESTARTS         AGE   LABELS
client                          0/1     Error              0                47h   run=client
client-7c75c79d7c-h9994         0/1     CrashLoopBackOff   49 (4m54s ago)   47h   app=client,pod-template-hash=7c75c79d7c
nginx-deploy-7c948bcff4-jclqg   1/1     Running            2 (63m ago)      2d    app=nginx-deploy,pod-template-hash=7c948bcff4,release=tye
nginx-deploy-7c948bcff4-mczxp   1/1     Running            2 (63m ago)      2d    app=nginx-deploy,pod-template-hash=7c948bcff4
#查找标签release为edison或tye的pod
[root@master ~]# kubectl get pods -l " release in (edison,tye)" --show-labels
NAME                            READY   STATUS    RESTARTS      AGE     LABELS
nginx                           1/1     Running   3 (76m ago)   2d14h   release=edison,run=nginx
nginx-deploy-7c948bcff4-jclqg   1/1     Running   2 (76m ago)   2d      app=nginx-deploy,pod-template-hash=7c948bcff4,release=tye
#查找标签release非edison和tye的pod
[root@master ~]# kubectl get pods -l " release notin (edison,tye)" --show-labels
NAME                            READY   STATUS             RESTARTS        AGE   LABELS
client                          0/1     Error              0               2d    run=client
client-7c75c79d7c-h9994         0/1     CrashLoopBackOff   52 (4m5s ago)   2d    app=client,pod-template-hash=7c75c79d7c
nginx-deploy-7c948bcff4-mczxp   1/1     Running            2 (77m ago)     2d    app=nginx-deploy,pod-template-hash=7c948bcff4,release=dizzy
#查看node列表并显示标签
[root@master ~]# kubectl get node --show-labels
NAME     STATUS   ROLES                  AGE     VERSION   LABELS
master   Ready    control-plane,master   2d23h   v1.22.3   beta.kubernetes.io/arch=amd64,beta.kubernetes.io/os=linux,kubernetes.io/arch=amd64,kubernetes.io/hostname=master,kubernetes.io/os=linux,node-role.kubernetes.io/control-plane=,node-role.kubernetes.io/master=,node.kubernetes.io/exclude-from-external-load-balancers=
node1    Ready    <none>                 2d23h   v1.22.3   beta.kubernetes.io/arch=amd64,beta.kubernetes.io/os=linux,kubernetes.io/arch=amd64,kubernetes.io/hostname=node1,kubernetes.io/os=linux
node2    Ready    <none>                 2d23h   v1.22.3   beta.kubernetes.io/arch=amd64,beta.kubernetes.io/os=linux,kubernetes.io/arch=amd64,kubernetes.io/hostname=node2,kubernetes.io/os=linux




资源配置清单


自主式Pod资源


Pod资源:
 spec.containers <[]Object>
 - name 
 image 
 imagePullPolicy 
 Always:总是下载,不管本地是否已存在镜像,如果镜像标签【:latest】,默认使用此项
 Never:总是不下载,需要用户手动下载镜像
 IfNotPresent:如果镜像不使用latest,则默认使用此项,如果本地存在则不下载,不存在则从registry下载。
 command:
 labels:
 key = value
 key:字母、数字、_、-、.
 value:可以为空,字母,数字开头及结尾,中间可使用字母,数字,下划线
 标签选择器:
 等值关系:=,==,!=
 集合关系:
 key in (value1,value2…)
 key not in (value1,value2…)
 key
 !key不存在此键
 许多资源支持内嵌字段定义标签选择器
 matchLabels:直接给定键值
 matchExpressions:基于给定的表达式来定义使用标签选择器,{key:“key”,operator:“operator”,values:[value1,value2…]}
 操作符:
 in,notin:values字段必须为非空列表
 Exists,NotExists:values字段的值必须为空列表



[root@master ~]# kubectl explain pods.spec | grep nodeSelector
   nodeSelector	<map[string]string>




节点标签选择器:资源运行于指定的node节点上
 nodeSelector 
 NodeSelector is a selector which must be true for the pod to fit on a node.
 Selector which must match a node’s labels for the pod to be scheduled on
 that node. More info:
 https://kubernetes.io/docs/concepts/configuration/assign-pod-node/


#先给node1节点打上标签
[root@master yaml]# kubectl label nodes node1 disktype=ssd
node/node1 labeled
#修改yaml文件,添加nodeSelector属性
apiVersion: v1
kind: Pod
metadata:
  name: pod-demo
  namespace: default
  labels:
    app: myapp
    tier: frontend
spec:
  containers:
  - name: myapp
    image: ikubernetes/myapp:v1
  - name: busybox
    image: busybox:latest
    command: ["/bin/sh","-c","sleep 3600"]
  nodeSelector:
    disktype: ssd
#删除原有名称pod-demo的pod,并重新创建
[root@master yaml]# kubectl delete pods pod-demo
pod "pod-demo" deleted
[root@master yaml]# kubectl apply -f nginx.yaml 
pod/pod-demo created
#查看pod-demo的运行情况,Node选择了node1
[root@master yaml]# kubectl get pods -o wide
NAME                            READY   STATUS    RESTARTS   AGE     IP            NODE    NOMINATED NODE   READINESS GATES
client                          1/1     Running   4          47h     10.244.2.20   node1   <none>           <none>
myapp-7b595df7fc-8rchf          1/1     Running   4          47h     10.244.2.19   node1   <none>           <none>
myapp-7b595df7fc-9d92c          1/1     Running   4          47h     10.244.1.21   node2   <none>           <none>
nginx-deploy-6895496777-4d4nd   1/1     Running   5          2d13h   10.244.1.20   node2   <none>           <none>
pod-demo                        2/2     Running   0          30s     10.244.2.21   node1   <none>           <none>



#----------------------------
指定node运行资源
nodeName	<string>
     NodeName is a request to schedule this pod onto a specific node. If it is
     non-empty, the scheduler simply schedules this pod onto that node, assuming
     that it fits resource requirements.
annotations:
  与label不同的地方,它不能用于挑选资源对象,仅用于为对象提供“元数据”
#----------------------------
#在yaml文件的metadata中添加以下行
  annotations:
    tye.com/createby: cluster admin
[root@master manifests]# kubectl describe pods pod-demo
Name:         pod-demo
Namespace:    default
Priority:     0
Node:         node2/192.168.88.103
Start Time:   Tue, 09 Nov 2021 10:07:07 -0500
Labels:       app=myapp
              tier=frontend
Annotations:  tye.com/createby: cluster admin



Pod的生命周期:


状态:


    

  • Pending:调试尚未完成
    • 

  • Running:运行状态
    • 

  • Failed:失败
    • 

  • Successed:成功
    • 

  • Unknown:未知
     注:主节点apiServer与node节点上的kubelet通信获取Pod信息
     创建Pod:先将创建pod的指令提交至apiServer,apiServer将请求的目标状态存储在etcd中,apiServer请求调度器(Scheduler)调度资源,调度成功后,apiServer将调度信息存储至etcd的Pod资源状态中,node节点获取调度信息后,node节点上的kubelet通过master节点apiserver获取用户提交的用户清单,根据清单创建Pod,创建后将状态(成功或失败)通知至master节点的apiServer,master节点的apiServer再次更新etcd状态。
    • 



Pod生命周期重要行为:


    

  • 初使化容器
    • 

  • 容器探测

      

    • liveness【存活性探测】:判断主容器是否处于存活状态

        

      • failureThreshold :
        • 

      • exec :command探针
        • 

      • httpGet :http探针
        • 

      • tcpSocket :tcp探针
        • 

      • initialDelaySeconds :延迟探测时间,即在容器启动多少秒后再进行存活性探测,默认容器一启动即进行探测
        • 

      • periodSeconds :探针的操作频率(默认为10秒,最小1秒)
        • 

      • timeoutSeconds :探针的超时时间,默认1秒
        • 

       
      • 

    • readiness【就绪性探测】:判断容器主进程是否已经就绪,可以对外提供服务
      • 

    • 容器启动后钩子(poststart)、容器结束前钩子(prestop)
      • 

     
    • 



RestartPolicy:重启策略


    

  • Always:自动重启
    • 

  • OnFailure:只有状态为错误时重启
    • 

  • Never:不重启
    • 

  • Default to Always:
     https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy
    • 



探针类型


    

  • ExecAction
    • 

  • TCPSocketAction
    • 

  • HTTPGetAction
    • 



#Exec探针yaml文件,判断目录是否存在
apiVersion: v1
kind: Pod
metadata:
  name: liveness-exec-pod
  namespace: default
spec:
  containers:
  - name: liveness-exec-container
    image: busybox:latest
    imagePullPolicy: IfNotPresent
    command: ["/bin/sh","-c","touch /tmp/healty;sleep 30;rm -rf /tmp/healty;sleep 3600"]
    livenessProbe:
      exec:
        command: ["test","-e","/tmp/healty"]
      initialDelaySeconds: 2
      periodSeconds: 3
#查看pod信息
[root@master manifests]# kubectl describe pod liveness-exec-pod
Name:         liveness-exec-pod
Namespace:    default
Priority:     0
Node:         node1/192.168.88.102
Start Time:   Wed, 10 Nov 2021 08:51:30 -0500
Labels:       <none>
Annotations:  <none>
Status:       Running
IP:           10.244.3.14
IPs:
  IP:  10.244.3.14
Containers:
  liveness-exec-container:
    Container ID:  docker://09cfbe11120e3ff96c0cacfc5f83569a599dcfad1486581ce3215f3bc36d6343
    Image:         busybox:latest
    Image ID:      docker-pullable://busybox@sha256:139abcf41943b8bcd4bc5c42ee71ddc9402c7ad69ad9e177b0a9bc4541f14924
    Port:          <none>
    Host Port:     <none>
    Command:
      /bin/sh
      -c
      touch /tmp/healty;sleep 30;rm -rf /tmp/healty;sleep 3600
    State:          Running
      Started:      Wed, 10 Nov 2021 08:53:48 -0500
    Last State:     Terminated
      Reason:       Error
      Exit Code:    137
      Started:      Wed, 10 Nov 2021 08:52:39 -0500
      Finished:     Wed, 10 Nov 2021 08:53:48 -0500
    Ready:          True
    Restart Count:  2
    Liveness:       exec [test -e /tmp/healty] delay=2s timeout=1s period=3s #success=1 #failure=3
    Environment:    <none>
    Mounts:
      /var/run/secrets/kubernetes.io/serviceaccount from kube-api-access-t76fk (ro)
Conditions:
  Type              Status
  Initialized       True 
  Ready             True 
  ContainersReady   True 
  PodScheduled      True 
Volumes:
  kube-api-access-t76fk:
    Type:                    Projected (a volume that contains injected data from multiple sources)
    TokenExpirationSeconds:  3607
    ConfigMapName:           kube-root-ca.crt
    ConfigMapOptional:       <nil>
    DownwardAPI:             true
QoS Class:                   BestEffort
Node-Selectors:              <none>
Tolerations:                 node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
                             node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
Events:
  Type     Reason     Age                  From               Message
  ----     ------     ----                 ----               -------
  Normal   Scheduled  2m44s                default-scheduler  Successfully assigned default/liveness-exec-pod to node1
  Warning  Unhealthy  56s (x6 over 2m11s)  kubelet            Liveness probe failed:
  Normal   Killing    56s (x2 over 2m5s)   kubelet            Container liveness-exec-container failed liveness probe, will be restarted
  Normal   Pulled     26s (x3 over 2m44s)  kubelet            Container image "busybox:latest" already present on machine
  Normal   Created    26s (x3 over 2m44s)  kubelet            Created container liveness-exec-container
  Normal   Started    26s (x3 over 2m44s)  kubelet            Started container liveness-exec-container
#-------------------httpGet探测
apiVersion: v1
kind: Pod
metadata:
  name: liveness-httpget-pod
  namespace: default
spec:
  containers:
  - name: liveness-httpget-container
    image: nginx:1.14
    imagePullPolicy: IfNotPresent
    ports:
    - name: http
      containerPort: 80
    livenessProbe:
      httpGet:
        port: http
        path: /index.html
      initialDelaySeconds: 2
      periodSeconds: 3
#通过kubectl exec连接至容器内,删除index.html会触发httpGet探针生效,容器重新启动
[root@master ~]# kubectl exec liveness-httpget-pod -it -- /bin/sh
# rm -rf /usr/share/nginx/html/index.html
#查看Pod状态信息
[root@master yaml]# kubectl describe pods liveness-httpget-pod
Name:         liveness-httpget-pod
Namespace:    default
Priority:     0
Node:         node1/192.168.88.102
Start Time:   Tue, 23 Nov 2021 08:32:48 -0500
Labels:       <none>
Annotations:  <none>
Status:       Running
IP:           10.244.2.25
IPs:          <none>
Containers:
  liveness-httpget-container:
    Container ID:   docker://570a4d84b6056fbeb9d06a278c75843f860e7cb76ff5ad9935c5fc74f304c979
    Image:          nginx:1.14
    Image ID:       docker-pullable://nginx@sha256:f7988fb6c02e0ce69257d9bd9cf37ae20a60f1df7563c3a2a6abe24160306b8d
    Port:           80/TCP
    Host Port:      0/TCP
    State:          Running
      Started:      Tue, 23 Nov 2021 08:34:39 -0500
    Last State:     Terminated
      Reason:       Completed
      Exit Code:    0
      Started:      Tue, 23 Nov 2021 08:33:12 -0500
      Finished:     Tue, 23 Nov 2021 08:34:39 -0500
    Ready:          True
    Restart Count:  1
    Liveness:       http-get http://:http/index.html delay=2s timeout=1s period=3s #success=1 #failure=3
    Environment:    <none>
    Mounts:
      /var/run/secrets/kubernetes.io/serviceaccount from default-token-hdqt6 (ro)
Conditions:
  Type              Status
  Initialized       True 
  Ready             True 
  ContainersReady   True 
  PodScheduled      True 
Volumes:
  default-token-hdqt6:
    Type:        Secret (a volume populated by a Secret)
    SecretName:  default-token-hdqt6
    Optional:    false
QoS Class:       BestEffort
Node-Selectors:  <none>
Tolerations:     node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
                 node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
Events:
  Type     Reason     Age                 From               Message
  ----     ------     ----                ----               -------
  Normal   Scheduled  2m11s               default-scheduler  Successfully assigned default/liveness-httpget-pod to node1
  Normal   Pulling    2m10s               kubelet            Pulling image "nginx:1.14"
  Normal   Pulled     108s                kubelet            Successfully pulled image "nginx:1.14"
  Normal   Created    20s (x2 over 107s)  kubelet            Created container liveness-httpget-container
  Normal   Started    20s (x2 over 107s)  kubelet            Started container liveness-httpget-container
  Warning  Unhealthy  20s (x3 over 26s)   kubelet            Liveness probe failed: **HTTP probe failed with statuscode: 404**
  Normal   Killing    20s                 kubelet            Container liveness-httpget-container failed liveness probe, will be restarted
  Normal   Pulled     20s                 kubelet            Container image "nginx:1.14" already present on machine




readiness


#readiness-yaml文件
apiVersion: v1
kind: Pod
metadata:
  name: readiness-httpget-pod
  namespace: default
spec:
  containers:
  - name: readiness-httpget-container
    image: ikubernetes/myapp:v1
    imagePullPolicy: IfNotPresent
    ports:
    - name: http
      containerPort: 80
    readinessProbe:
      httpGet:
        port: http
        path: /index.html
      initialDelaySeconds: 2
      periodSeconds: 3
[root@master yaml]# kubectl apply -f readiness-httpget-pod.yaml 
pod/readiness-httpget-pod created
#连接至readiness-httpget-pod中的容器,并删除index.html
[root@master yaml]# kubectl exec readiness-httpget-pod -it -- /bin/sh 
/ # cd /usr/share/nginx/html/
/usr/share/nginx/html # rm -rf index.html
#查看Pod列表,发现readiness-httpget-pod处于运行状态,但Ready状态显示有问题
[root@master yaml]# kubectl get pods
NAME                            READY   STATUS    RESTARTS   AGE
client                          1/1     Running   5          3d
liveness-httpget-pod            1/1     Running   1          20m
myapp-7b595df7fc-8rchf          1/1     Running   5          2d23h
myapp-7b595df7fc-9d92c          1/1     Running   5          2d23h
nginx-deploy-6895496777-4d4nd   1/1     Running   6          3d14h
pod-demo                        1/2     Running   2          24h
readiness-httpget-pod           0/1     Running   0          86s
[root@master yaml]# kubectl describe pods readiness-httpget-pod
Name:         readiness-httpget-pod
Namespace:    default
Priority:     0
Node:         node1/192.168.88.102
Start Time:   Tue, 23 Nov 2021 08:51:27 -0500
Labels:       <none>
Annotations:  <none>
Status:       Running
IP:           10.244.2.26
IPs:          <none>
Containers:
  readiness-httpget-container:
    Container ID:   docker://b1441f1ad2006ce217f8020ba216f2c4f20c42a8fcaa3439af6571579c0c803b
    Image:          ikubernetes/myapp:v1
    Image ID:       docker-pullable://ikubernetes/myapp@sha256:9c3dc30b5219788b2b8a4b065f548b922a34479577befb54b03330999d30d513
    Port:           80/TCP
    Host Port:      0/TCP
    State:          Running
      Started:      Tue, 23 Nov 2021 08:51:28 -0500
    Ready:          False
    Restart Count:  0
    Readiness:      http-get http://:http/index.html delay=2s timeout=1s period=3s #success=1 #failure=3
    Environment:    <none>
    Mounts:
      /var/run/secrets/kubernetes.io/serviceaccount from default-token-hdqt6 (ro)
Conditions:
  Type              Status
  Initialized       True 
  Ready             False 
  ContainersReady   False 
  PodScheduled      True 
Volumes:
  default-token-hdqt6:
    Type:        Secret (a volume populated by a Secret)
    SecretName:  default-token-hdqt6
    Optional:    false
QoS Class:       BestEffort
Node-Selectors:  <none>
Tolerations:     node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
                 node.kubernetes.io/unreachable:NoExecute op=Exists for 300s
Events:
  Type     Reason     Age                 From               Message
  ----     ------     ----                ----               -------
  Normal   Scheduled  2m35s               default-scheduler  Successfully assigned default/readiness-httpget-pod to node1
  Normal   Pulled     2m35s               kubelet            Container image "ikubernetes/myapp:v1" already present on machine
  Normal   Created    2m35s               kubelet            Created container readiness-httpget-container
  Normal   Started    2m34s               kubelet            Started container readiness-httpget-container
  Warning  Unhealthy  21s (x22 over 84s)  kubelet            Readiness probe failed: HTTP probe failed with statuscode: 404
# 重新在容器中创建index.html文件
/usr/share/nginx/html # echo "Hi kubernetes!!" > index.html
#再次查看Pod状态正常
[root@master yaml]# kubectl get pods
NAME                            READY   STATUS    RESTARTS   AGE
client                          1/1     Running   5          3d
liveness-httpget-pod            1/1     Running   1          22m
myapp-7b595df7fc-8rchf          1/1     Running   5          2d23h
myapp-7b595df7fc-9d92c          1/1     Running   5          2d23h
nginx-deploy-6895496777-4d4nd   1/1     Running   6          3d14h
pod-demo                        2/2     Running   3          24h
readiness-httpget-pod           1/1     Running   0          4m12s



lifecycle


    

  • poststart
    • 

  • prestop
    • 



#容器启动后,修改nginx服务器上的index.html页面
apiVersion: v1
kind: Pod
metadata:
  name: lifecycle-poststart-pod
  namespace: default
spec:
  containers:
  - name: nginx-httpd
    image: nginx:1.14
    imagePullPolicy: IfNotPresent
    lifecycle:
      postStart:
        exec:
          command: ["/bin/sh","-c","echo 'Home Page' > /usr/share/nginx/html/index.html"]
[root@master yaml]# kubectl create -f lifecycle-poststart-pod.yaml 
pod/lifecycle-poststart-pod created
[root@master yaml]# kubectl get pods -o wide
NAME                            READY   STATUS    RESTARTS   AGE     IP            NODE    NOMINATED NODE   READINESS GATES
client                          1/1     Running   5          3d      10.244.2.23   node1   <none>           <none>
lifecycle-poststart-pod         1/1     Running   0          13s     10.244.2.27   node1   <none>           <none>
#查看运行结果
[root@master yaml]# curl 10.244.2.27
Home Page




Pod控制器


ReplicaSet:管理无状态的Pod副本


    

  • 用户期望的Pod副本数
    • 

  • 标签选择器, 以便服务和管理Pod资源
    • 

  • Pod模板:
     Deployment:控制ReplicaSet
     DaemonSet:
     Job:一次性作业
     CronJob:
     StatefulSet:
     TPR(Third Party Resources)
     CDR(Custom Defined Resources)
    • 



Operator:


Helm:


通过yaml文件创建ReplicaSet


apiVersion: apps/v1
kind: ReplicaSet
metadata:
  name: myapp
  namespace: default
spec:
  replicas: 2
  selector:
    matchLabels:
      app: myapp
      release: tye
  template:
    metadata:
      name: myapp-pod
      labels:
        app: myapp
        release: tye
        enviroment: qa
    spec:
      containers:
      - name: myapp-container
        image: nginx:1.14
        ports:
        - name: http
          containerPort: 80
          
[root@master manifests]# kubectl create -f rs-demo.yaml 
replicaset.apps/myapp created
#查看ReplicaSet
[root@master manifests]# kubectl get rs
NAME                      DESIRED   CURRENT   READY   AGE
client-7c75c79d7c         1         1         0       3d
myapp                     2         2         2       5s
nginx-deploy-7c948bcff4   2         2         2       3d1h
[root@master manifests]# kubectl get pods
NAME                            READY   STATUS             RESTARTS         AGE
myapp-5v76c                     1/1     Running            0                8m16s
myapp-ftfnd                     1/1     Running            0                8m16s
#RS扩容
#通过kubectl edit rs [rsname]接修改replicas = [num]数量即可



#deploy-pod.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
  name: myapp-deploy
  namespace: default
spec:
  replicas: 3
  selector:
    matchLabels:
      app: myapp
      release: tye
  template:
    metadata:
      labels:
        app: myapp
        release: tye
    spec:
      containers:
      - name: myapp
        image: ikubernetes/myapp:v2
        ports:
        - name: http
          containerPort: 80
#应用一个配置至资源上,如果资源不存在则创建,如果存在则更新
[root@master manifests]# kubectl apply -f deploy-pod.yaml

#kubectl patch打补丁
[root@master ~]# kubectl patch deploy myapp-deploy -p '{"spec":{"replicas":5}}'
deployment.apps/myapp-deploy patched
[root@master ~]# kubectl get pods
NAME                            READY   STATUS    RESTARTS      AGE
myapp-deploy-545b89888c-6gd2h   1/1     Running   0             11m
myapp-deploy-545b89888c-r49rk   1/1     Running   0             10m
myapp-deploy-545b89888c-svswl   1/1     Running   0             4s
myapp-deploy-545b89888c-vz967   1/1     Running   0             4s
myapp-deploy-545b89888c-zxcr5   1/1     Running   0             10m

[root@master manifests]# kubectl patch deployment myapp-deploy -p '{"spec":{"strategy":{"rollingUpdate":{"maxSurge":1,"maxUnavailable":0}}}}'
deployment.apps/myapp-deploy patched
[root@master manifests]# kubectl describe deploy myapp-deploy
Name:                   myapp-deploy
Namespace:              default
CreationTimestamp:      Thu, 11 Nov 2021 08:57:29 -0500
Labels:                 <none>
Annotations:            deployment.kubernetes.io/revision: 2
Selector:               app=myapp,release=tye
Replicas:               5 desired | 5 updated | 5 total | 5 available | 0 unavailable
StrategyType:           RollingUpdate
MinReadySeconds:        0
RollingUpdateStrategy:  0 max unavailable, 1 max surge
[root@master manifests]# kubectl set image deployment myapp-deploy myapp=ikubernetes/myapp:v3 && kubectl rollout pause deployment myapp-deploy
deployment.apps/myapp-deploy image updated
deployment.apps/myapp-deploy paused


[root@master ~]# kubectl get pods -l app=myapp -w
NAME                            READY   STATUS    RESTARTS   AGE
myapp-deploy-545b89888c-6gd2h   1/1     Running   0          21m
myapp-deploy-545b89888c-r49rk   1/1     Running   0          20m
myapp-deploy-545b89888c-svswl   1/1     Running   0          10m
myapp-deploy-545b89888c-vz967   1/1     Running   0          10m
myapp-deploy-545b89888c-zxcr5   1/1     Running   0          20m
myapp-deploy-fbd4c499b-m9258    0/1     Pending   0          0s
myapp-deploy-fbd4c499b-m9258    0/1     Pending   0          0s
myapp-deploy-fbd4c499b-m9258    0/1     ContainerCreating   0          0s
myapp-deploy-fbd4c499b-m9258    1/1     Running             0          18s
#继续更新
[root@master manifests]# kubectl rollout resume deployment myapp-deploy
deployment.apps/myapp-deploy resumed

#监视deployment
[root@master manifests]# kubectl rollout status deployment myapp-deploy
Waiting for deployment "myapp-deploy" rollout to finish: 1 out of 5 new replicas have been updated...
[root@master manifests]# kubectl get rs -o wide
NAME                      DESIRED   CURRENT   READY   AGE     CONTAINERS   IMAGES                 SELECTOR
myapp-deploy-545b89888c   0         0         0       28m     myapp        ikubernetes/myapp:v2   app=myapp,pod-template-hash=545b89888c,release=tye
myapp-deploy-7dfc7b4f66   0         0         0       52m     myapp        ikubernetes/myapp:v1   app=myapp,pod-template-hash=7dfc7b4f66,release=tye
myapp-deploy-fbd4c499b    5         5         5       4m24s   myapp        ikubernetes/myapp:v3   app=myapp,pod-template-hash=fbd4c499b,release=tye
#查看回滚历史版本
[root@master manifests]# kubectl rollout history deployment myapp-deploy
deployment.apps/myapp-deploy 
REVISION  CHANGE-CAUSE
1         <none>
2         <none>
3         <none>
#回滚至第1版
[root@master manifests]# kubectl rollout undo deployment myapp-deploy --to-revision=1
deployment.apps/myapp-deploy rolled back
[root@master manifests]# kubectl rollout history deployment myapp-deploy
deployment.apps/myapp-deploy 
REVISION  CHANGE-CAUSE
2         <none>
3         <none>
4         <none>
#查看当前正在工作的deployment是v1版
[root@master manifests]# kubectl get rs -o wide
NAME                      DESIRED   CURRENT   READY   AGE   CONTAINERS   IMAGES                 SELECTOR
myapp-deploy-545b89888c   0         0         0       34m   myapp        ikubernetes/myapp:v2   app=myapp,pod-template-hash=545b89888c,release=tye
myapp-deploy-7dfc7b4f66   5         5         5       58m   myapp        ikubernetes/myapp:v1   app=myapp,pod-template-hash=7dfc7b4f66,release=tye
myapp-deploy-fbd4c499b    0         0         0       10m   myapp        ikubernetes/myapp:v3   app=myapp,pod-template-hash=fbd4c499b,release=tye




DeamonSet


[root@node1 ~]# docker pull ikubernetes/filebeat:5.6.5-alpine
5.6.5-alpine: Pulling from ikubernetes/filebeat
e6faa08065ed: Pull complete 
1956334c4aa9: Pull complete 
f3f537aca9dd: Pull complete 
Digest: sha256:530f31ebf9194b0400303320579cafe21da890bd06446746fcedc2b65875e4eb
Status: Downloaded newer image for ikubernetes/filebeat:5.6.5-alpine
docker.io/ikubernetes/filebeat:5.6.5-alpine
# DaemonSet的yaml文件
apiVersion: apps/v1
kind: Deployment
metadata:
  name: redis
  namespace: default
spec:
  replicas: 1
  selector:
    matchLabels:
      app: redis
      role: logstor
  template:
    metadata:
      labels:
        app: redis
        role: logstor
    spec:
      containers:
        - name: redis
          image: redis:4.0-alpine
          ports:
          - name: redis
            containerPort: 6379
---
apiVersion: apps/v1
kind: DaemonSet
metadata:
  name: myapp-ds
  namespace: default
spec:
  selector:
    matchLabels:
      app: filebeat
      release: stable
  template:
    metadata:
      labels:
        app: filebeat
        release: stable
    spec:
      containers:
      - name: myapp
        image: ikubernetes/filebeat:5.6.5-alpine
        env:
        - name: REDIS_HOST
          value: redis.default.svc.cluster.local
        - name: REDIS_LOG_LEVEL
          value: info
[root@master manifests]# kubectl apply -f ds-demo.yaml 
daemonset.apps/myapp-ds created


























你可能感兴趣的:(Linux,linux,kubernetes,docker)






    

  • 浪潮 M5系列服务器IPMI无法监控存储RAID卡问题.
Songxwn
硬件服务器服务器运维

    简介浪潮的M5代服务器,可能有WebBMC无法查看存储RAID/SAS卡状态的情况,可以通过以下方式修改。修改完成后重启BMC即可生效。ESXiIPMITools使用:https://songxwn.com/ESXi8_IPMI/(Linux也可以直接使用)Linux/ESXiIPMITool下载:https://songxwn.com/file/ipmitoolWindows下载:https:/
    

    • 

  • unblock with ‘mysqladmin flush-hosts‘ 解决方法
祈祷平安,加油
数据库常见问题oracle数据库

    MySqlHostisblockedbecauseofmanyconnectionerrors;unblockwith'mysqladminflush-hosts'解决方法环境:linux,mysql5.5.21错误:Hostisblockedbecauseofmanyconnectionerrors;unblockwith'mysqladminflush-hosts'原因:同一个ip在短时间内产
    

    • 

  • 1.计算机处理器架构+嵌入式处理器架构及知识
vv 啊
arm-linux学习linux系统架构

    目录一:x86-64处理器架构二:Intel80386处理器(i386)1.i3862.i686三:嵌入式Linux知识:1.MinGW2.GNU计划2.1GNU工具链概述此次只分享英特尔和ADM处理器有关于x86的架构,至于嵌入式处理器架构请查看https://en.wikipedia.org/wiki/List_of_ARM_processors一:x86-64处理器架构x86-64,也称为x
    

    • 

  • linux基础命令(一)
运维搬运工
linuxlinux服务器centos

    Linux基础命令1、设置主机名1.1、hostname查看主机名[root@ansible~]#cat/etc/hostnameansible或[root@ansible~]#hostnameansible注意:主机名中不允许使用下划线“_”,可以用短横线“-”1.2、hostname临时修改主机名#临时修改直接修改的是内存中的,重启会失效[root@ansible~]#hostnameansi
    

    • 

  • docker怎么端口映射
Lance_mu
docker容器运维

    1、默认固定的端口#Web服务器:WebApache或Nginx通常使用80端口HTTP:80HTTPS:443#数据库服务器MySQL:3306PostgreSQL:5432MongoDB:27017Redis:6379#邮件服务器SMTP:25POP3:110IMAP:143#其他服务SSH:22FTP:21DNS(域名解析):53代理服务器Squid:3128版本控制系统Git:9418(S
    

    • 

  • docker基础(一)
运维搬运工
容器-dockerdocker容器运维

    相关概念介绍Docker是一个开源的应用容器引擎,让开发者可以打包他们的应用以及依赖到一个可移植的容器中,然后发布到任何流行的linux机器上,也可以实现虚拟化,容器是完全使用沙箱机制,互相之间不会有任何接口。Docker有几个重要概念:dockerfile,配置文件,用来生成dockerimagedockerimage,交付部署的最小单元docker命令与API,定义命令与接口,支持第三方系统集
    

    • 

  • linux安装docker及docker-compose 部署spring boot项目
时而有事儿
dockerlinuxdockerlinuxspringboot

    linux系统环境:centos5.14本篇描述的是在centos系统版本下安装docker,如果是ubuntu版本,请看这篇文章:linuxubuntu20安装docker和docker-compose-CSDN博客正文:安装docker和docker-compose安装docker---------运行命名等待安装完成遇到选择直接输入yyuminstall-yyum-utilsdevice-m
    

    • 

  • 检测usb口HotPlug-netlink
cany1000
linux

    为了完成内核空间与用户空间通信,Linux提供了基于Socket的NetLink通信机制。SELinux,Linux系统的防火墙分为内核态的netfilter和用户态的iptables,netfilter与iptables的数据交换就是通过Netlink机制完成。下面看一个检测usb口的例子:s32InitUsbHotPlug(void){s32nSockFd=0;//套接字地址structsoc
    

    • 

  • Linux学习系列之vim编辑器(一)
llibertyll
linux学习

    vi编辑器的操作模式输入模式—aio等—>命令模式<—:键—末行模式从输入/末行模式切换到命令模式都是需要按ESC键注:a光标后输入,i光标前输入,o直接向下加一行输入,O向上加一行输入在vi编辑器中光标的移动(命令行模式下)键组合(命令)光标的移动$光标移动到当前行的结尾0(零)光标移动到当前行的开始GG光标移动到最后一行gg光标移动到第一行在命令行模式下删除与复制的操作键组合(命令)含义dd删
    

    • 

  • Azkaban各种类型的Job编写
__元昊__

    一、概述原生的Azkaban支持的plugin类型有以下这些:command:Linuxshell命令行任务gobblin:通用数据采集工具hadoopJava:运行hadoopMR任务java:原生java任务hive:支持执行hiveSQLpig:pig脚本任务spark:spark任务hdfsToTeradata:把数据从hdfs导入TeradatateradataToHdfs:把数据从Te
    

    • 

  • Qlib-Server部署
宋志辉
flaskpythonqlib量化

    Qlib-Server部署介绍构建Qlib服务器,用户可以选择:一键部署Qlib服务器逐步部署Qlib服务器一键部署Qlib服务器支持一键部署,用户可以选择以下两种方法之一进行一键部署:使用docker-compose部署在Azure中部署使用docker-compose进行一键部署按照以下步骤使用docker-compose部署Qlib服务器:安装docker,请参考Docker安装。安装doc
    

    • 

  • Linux初学(十)shell脚本
王依硕
Linuxlinux运维服务器

    一、for循环1.1循环的格式for变量in列表do代码代码....done循环的逻辑:将列表中的每个元素逐一赋值给变量每赋值一次,do和done之间的代码就会执行一次1.2列表的生成方式方法1:直接给出列表元素【用空格分隔多个元素】133129hahabaidu方法2:用通配符来生成元素/home/a*方法3:用命令来生成元素ls/etc/方法4:用{}展开的形式生成元素{3..7}{a..e}
    

    • 

  • Ubuntu下安装Chrome浏览器(简单,使用)
Starry-sky(jing)
[linux操作系统笔记]chrome深度学习linux

    下载安装GoogleChrome浏览器deb包极速下载:下载链接32位wgethttps://dl.google.com/linux/direct/google-chrome-stable_current_i386.deb64位wgethttps://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb安装sudodpk
    

    • 

  • 【Linux】PyCharm无法启动报错及解决方法
不是AI
python软件操作Linuxlinuxpycharm运维

    一、问题描述如图,笔者试图在Ubuntu18.04虚拟机上运行PyCharm开发工具(已安装,安装过程可以参考我的博客Ubuntu安装PyCharm),无法启动,报错:CannotconnecttoalreadyrunningIDEinstance.Exception:Process2574isstillrunning.报错截图如下:二、解决方法通过报错信息看出,出于某种原因,进程(PID为257
    

    • 

  • Linux(centos7)部署hive
灯下夜无眠
Linuxlinuxhive运维dbeaverhive客户端

    前提环境:已部署完hadoop(HDFS、MapReduce、YARN)1、安装元数据服务MySQL切换root用户#更新密钥rpm--importhttps://repo.mysql.com/RPM-GPG-KEY-mysqL-2022#安装Mysqlyum库rpm-Uvhhttp://repo.mysql.com//mysql57-community-release-el7-7.noarch.
    

    • 

  • Linux通过Tuned实现动态调优系统性能
星河_赵梓宇
linux运维服务器

    Linux通过Tuned实现动态调优系统性能Tuned简介对于普通用户来说,优化Linux应用环境可能是相当具有挑战性的。它涵盖了各种领域,并且有许多参数需要考虑,比如CPU、存储、缓存策略和内存管理。尽管Linux有默认设置可以处理大多数情况和场景,但是对于高性能、高并发和高可用性系统等特殊场景,需要进行调整。本文讨论的特性是tuned,它是Linux系统中常用的一种调优服务。tuned由两个程
    

    • 

  • 了解什么是Docker
黑风风
DevOps学习dockereureka容器

    了解什么是DockerDocker是一个开源的容器化平台,它使得开发者可以将应用程序及其依赖项打包到一个轻量级的、可移植的容器中。这些容器可以在任何支持Docker的系统上运行,确保了应用程序在不同环境之间的一致性和可移植性。,同时享受隔离性和轻量级的优势。Docker的核心组件Docker引擎Docker引擎是一个客户端-服务器应用程序,包括一个长期运行的守护进程(dockerd)、一个REST
    

    • 

  • vscode配置go远程linux
gdut17
golang

    Toolsenvironment:GOPATH=/root/goInstalling9toolsat/root/go/bininmodulemode.gopkgsgo-outlinegotestsgomodifytagsimplgoplaydlvgolintgoplsInstallinggithub.com/uudashr/gopkgs/v2/cmd/gopkgs(/root/go/bin/gop
    

    • 

  • 部署es集群
liushaojiax
elasticsearchjava大数据

    我们会在单机上利用docker容器运行多个es实例来模拟es集群。不过生产环境推荐大家每一台服务节点仅部署一个es的实例。部署es集群可以直接使用docker-compose来完成,但这要求你的Linux虚拟机至少有4G的内存空间创建es集群首先编写一个docker-compose文件,内容如下:version:'2.2'services:es01:image:elasticsearch:7.12
    

    • 

  • Elasticsearch8 - Docker安装Elasticsearch8.12.2
王谷雨_
ElasticSearchelasticsearchdocker

    前言最近在学习ES,所以需要在服务器上装一个单节点的ES服务器环境:centos7.9安装下载镜像目前最新版本是8.12.2dockerpulldocker.elastic.co/elasticsearch/elasticsearch:8.12.2创建配置新增配置文件elasticsearch.ymlhttp.host:0.0.0.0http.cors.enabled:truehttp.cors.
    

    • 

  • 在 Linux/Ubuntu/Debian 上安装 SQL Server 2019
理工男老K
ubuntulinux运维debiansqlserver

    Microsoft为Linux发行版(包括Ubuntu)提供SQLServer。以下是有关如何执行此操作的基本指南:注册MicrosoftUbuntu存储库并添加公共存储库GPG密钥:sudowget-qO-https://packages.microsoft.com/keys/microsoft.asc|sudoapt-keyadd-sudoadd-apt-repository"$(wget-q
    

    • 

  • 生信星球学习小组第80期 Day3笔记--ZJUSKY
ZJUSKY

    Conda简介Conda是一个开源的软件包管理系统和环境管理系统,用于安装多个版本的软件包及其依赖关系,并在它们之间轻松切换。简单来说Conda就是Linux系统下的应用商店,你可以在通过Conda下载,安装很多软件。这里我们推荐miniconda,它只包含了最基本的内容,python和conda,以及相关的必须依赖项。精简的miniconda足够满足日常生信使用。下载miniconda推荐使用清
    

    • 

  • Linux系统及操作 (04)
3s不会飞
Linux基础常识linux运维服务器

    Linux系统及操作(03)RPM软件包网络下载对应软件包光盘镜像文件,具备软件包Windows系统软件包的管理可以指定安装位置安装是集中安装到一个目录Linux系统与Windows系统相反。常见的软件包(生态)类型电脑入侵99%都是通过软件包的漏洞进行的。window生态Android生态ios生态rpm软件包:扩展名为.rpm,适用于RedHat系统。deb软件包:扩展名为.deb适用于Deb
    

    • 

  • RockyLinux8 & RockyLinux9安装postgresql16-devel开发包
ynzhangyao
postgresql

    1、PG的插件扩展有些需要自行编译,需要安装PG开发包2、RockyLinux8安装#创建用户先useraddpostgressudodnfinstall-yhttps://download.postgresql.org/pub/repos/yum/reporpms/EL-8-x86_64/pgdg-redhat-repo-latest.noarch.rpmsudodnf-qymoduledisa
    

    • 

  • Linux系统定时备份mysql数据库
er_得一
数据库mysqloracle

    1、创建shell脚本mysql_db_backup并赋予执行权限#!/bin/bash#备份目录BACKUP=/data/backup/db#当前时间DATETIME=$(date+%Y-%m-%d_%H%M%S)echo$DATETIME#数据库地址HOST=localhost#数据库用户名DB_USER=root#数据库密码DB_PW=pwd@123#备份的数据库名DATABASE=Apol
    

    • 

  • mineadmin使用docker启动方式
qq_38812523
dockerphp容器

    找个目录,git下来mineadmin代码,在根目录,创建文件名docker-compose.yml然后复制下面代码version:'3'services:#首先下载前端,https://gitee.com/mineadmin/mineadmin-vue#在后端根目录建立mine-ui目录,把前端文件复制过来。#容器内访问宿主机的地址用:host.docker.internal#宿主机也可以在ho
    

    • 

  • Linux中PATH、LIBRARY_PATH、LD_LIBRARY_PATH的作用
zhang-ge
LinuxClinux

    1、PATHPATH是存储可执行文件搜索路径的系统环境变量,它包含了一组由冒号:分隔的目录列表。当运行一个命令时,操作系统会在这些目录中查找相应的可执行文件,并在找到后执行它。例如,在命令行中执行ls命令时,就会依次在PATH变量列出的目录中查找ls命令,如果找到则执行,否则会提示找不到该命令。可以通过以下方式修改PATH环境变量:exportPATH=$PATH:/exe_path/bin永久修
    

    • 

  • RabbitMQ的安装
白泽27
rabbitmq分布式

    典型应用场景:异步处理。把消息放入消息中间件中,等到需要的时候再去处理。流量削峰。例如秒杀活动,在短时间内访问量急剧增加,使用消息队列,当消息队列满了就拒绝响应,跳转到错误页面,这样就可以使得系统不会因为超负载而崩溃Linux下安装#拉取镜像dockerpullrabbitmq:3.8-management#创建容器启动dockerrun-d--restart=always-p5672:5672-
    

    • 

  • linux环境下 python import找不到自定义模块的解决方法
强哥的博客
python

    问题现象:Linux环境中自定义的模块basic,importbasic出错。basic模块在/quoteEastmoney/目录下。两种方法:1.在导入模块之前(每个.py文件都需要加)importsyssys.path.append('/quoteEastmoney/')2.更改环境变量(一次修改永久生效)管理员权限修改:/etc/profile。在最后一行加上exportPYTHONPATH
    

    • 

  • 03-10Linux的文件系统
圆缘1987

    Linux的文件系统:根文件系统(rootfs):rootfilesystemLSB,FHS/boot:引导文件存放目录:内核文件(vmlinuz),引导加载器(bootloader,grub)都存放于此目录/bin:供所有用户使用的基本命令;不能关联至独立分区,OS启动会用到的程序/sbin:管理类的基本命令;不能关联至独立分区,OS启动会用到的程序/lib:基本共享库文件,以及内核模块文件(/
    

    • 

  • 项目中 枚举与注解的结合使用
飞翔的马甲
javaenumannotation

    前言:版本兼容,一直是迭代开发头疼的事,最近新版本加上了支持新题型,如果新创建一份问卷包含了新题型,那旧版本客户端就不支持,如果新创建的问卷不包含新题型,那么新旧客户端都支持。这里面我们通过给问卷类型枚举增加自定义注解的方式完成。顺便巩固下枚举与注解。
一、枚举
1.在创建枚举类的时候,该类已继承java.lang.Enum类,所以自定义枚举类无法继承别的类,但可以实现接口。

    

    • 

  • 【Scala十七】Scala核心十一:下划线_的用法
bit1129
scala

    下划线_在Scala中广泛应用,_的基本含义是作为占位符使用。_在使用时是出问题非常多的地方,本文将不断完善_的使用场景以及所表达的含义
  1. 在高阶函数中使用
scala> val list = List(-3,8,7,9)
list: List[Int] = List(-3, 8, 7, 9)
scala> list.filter(_ > 7)
r
    

    • 

  • web缓存基础:术语、http报头和缓存策略
dalan_123
Web

    对于很多人来说,去访问某一个站点,若是该站点能够提供智能化的内容缓存来提高用户体验,那么最终该站点的访问者将络绎不绝。缓存或者对之前的请求临时存储,是http协议实现中最核心的内容分发策略之一。分发路径中的组件均可以缓存内容来加速后续的请求,这是受控于对该内容所声明的缓存策略。接下来将讨web内容缓存策略的基本概念,具体包括如如何选择缓存策略以保证互联网范围内的缓存能够正确处理的您的内容,并谈论下
    

    • 

  • crontab 问题
周凡杨
linuxcrontabunix

     
一: 0481-079   Reached   a   symbol   that   is   not   expected.
 
背景:
*/5   *   *   *   *  /usr/IBMIHS/rsync.sh  
    

    • 

  • 让tomcat支持2级域名共享session
g21121
session

    tomcat默认情况下是不支持2级域名共享session的,所有有些情况下登陆后从主域名跳转到子域名会发生链接session不相同的情况,但是只需修改几处配置就可以了。
打开tomcat下conf下context.xml文件
找到Context标签,修改为如下内容
如果你的域名是www.test.com
<Context sessionCookiePath="/path&q
    

    • 

  • web报表工具FineReport常用函数的用法总结(数学和三角函数)
老A不折腾
Webfinereport总结

     
ABS
ABS(number):返回指定数字的绝对值。绝对值是指没有正负符号的数值。
Number:需要求出绝对值的任意实数。
示例:
ABS(-1.5)等于1.5。
ABS(0)等于0。
ABS(2.5)等于2.5。
 
ACOS
ACOS(number):返回指定数值的反余弦值。反余弦值为一个角度,返回角度以弧度形式表示。
Number:需要返回角
    

    • 

  • linux 启动java进程 sh文件
墙头上一根草
linuxshelljar

    #!/bin/bash
#初始化服务器的进程PId变量
user_pid=0;
robot_pid=0;
loadlort_pid=0;
gateway_pid=0;
#########
#检查相关服务器是否启动成功
#说明:
#使用JDK自带的JPS命令及grep命令组合,准确查找pid
#jps 加 l 参数,表示显示java的完整包路径
#使用awk,分割出pid 
    

    • 

  • 我的spring学习笔记5-如何使用ApplicationContext替换BeanFactory
aijuans
Spring 3 系列

    如何使用ApplicationContext替换BeanFactory?
package onlyfun.caterpillar.device;
import org.springframework.beans.factory.BeanFactory;
import org.springframework.beans.factory.xml.XmlBeanFactory;
import
    

    • 

  • Linux 内存使用方法详细解析
annan211
linux内存Linux内存解析

    来源 http://blog.jobbole.com/45748/
我是一名程序员,那么我在这里以一个程序员的角度来讲解Linux内存的使用。
一提到内存管理,我们头脑中闪出的两个概念,就是虚拟内存,与物理内存。这两个概念主要来自于linux内核的支持。
Linux在内存管理上份为两级,一级是线性区,类似于00c73000-00c88000,对应于虚拟内存,它实际上不占用
    

    • 

  • 数据库的单表查询常用命令及使用方法(-)
百合不是茶
oracle函数单表查询

     
 
创建数据库;
     
--建表
create table bloguser(username varchar2(20),userage number(10),usersex char(2));
      创建bloguser表,里面有三个字段
 
 
&nbs
    

    • 

  • 多线程基础知识
bijian1013
java多线程threadjava多线程

    一.进程和线程
进程就是一个在内存中独立运行的程序,有自己的地址空间。如正在运行的写字板程序就是一个进程。
“多任务”:指操作系统能同时运行多个进程(程序)。如WINDOWS系统可以同时运行写字板程序、画图程序、WORD、Eclipse等。
线程:是进程内部单一的一个顺序控制流。
线程和进程
a.       每个进程都有独立的
    

    • 

  • fastjson简单使用实例
bijian1013
fastjson

    一.简介
        阿里巴巴fastjson是一个Java语言编写的高性能功能完善的JSON库。它采用一种“假定有序快速匹配”的算法,把JSON Parse的性能提升到极致,是目前Java语言中最快的JSON库;包括“序列化”和“反序列化”两部分,它具备如下特征:     
    

    • 

  • 【RPC框架Burlap】Spring集成Burlap
bit1129
spring

    Burlap和Hessian同属于codehaus的RPC调用框架,但是Burlap已经几年不更新,所以Spring在4.0里已经将Burlap的支持置为Deprecated,所以在选择RPC框架时,不应该考虑Burlap了。
这篇文章还是记录下Burlap的用法吧,主要是复制粘贴了Hessian与Spring集成一文,【RPC框架Hessian四】Hessian与Spring集成
 
    

    • 

  • 【Mahout一】基于Mahout 命令参数含义
bit1129
Mahout

    1. mahout seqdirectory
 
$ mahout seqdirectory
--input (-i) input Path to job input directory(原始文本文件).
--output (-o) output The directory pathna
    

    • 

  • linux使用flock文件锁解决脚本重复执行问题
ronin47
linux lock 重复执行

    linux的crontab命令,可以定时执行操作,最小周期是每分钟执行一次。关于crontab实现每秒执行可参考我之前的文章《linux crontab 实现每秒执行》现在有个问题,如果设定了任务每分钟执行一次,但有可能一分钟内任务并没有执行完成,这时系统会再执行任务。导致两个相同的任务在执行。
例如:
<?
// 
test
.php 
    

    • 

  • java-74-数组中有一个数字出现的次数超过了数组长度的一半,找出这个数字
bylijinnan
java

    
public class OcuppyMoreThanHalf {
/**
* Q74 数组中有一个数字出现的次数超过了数组长度的一半,找出这个数字
* two solutions:
* 1.O(n)
* see <beauty of coding>--每次删除两个不同的数字,不改变数组的特性
* 2.O(nlogn)
* 排序。中间
    

    • 

  • linux 系统相关命令
candiio
linux

    系统参数
cat /proc/cpuinfo  cpu相关参数
cat /proc/meminfo 内存相关参数
cat /proc/loadavg 负载情况
性能参数
1)top
M:按内存使用排序
P:按CPU占用排序
1:显示各CPU的使用情况
k:kill进程
o:更多排序规则
回车:刷新数据
2)ulimit
ulimit -a:显示本用户的系统限制参
    

    • 

  • [经营与资产]保持独立性和稳定性对于软件开发的重要意义
comsci
软件开发

    
     一个软件的架构从诞生到成熟,中间要经过很多次的修正和改造
      如果在这个过程中,外界的其它行业的资本不断的介入这种软件架构的升级过程中
   
      那么软件开发者原有的设计思想和开发路线
    

    • 

  • 在CentOS5.5上编译OpenJDK6
Cwind
linuxOpenJDK

    几番周折终于在自己的CentOS5.5上编译成功了OpenJDK6,将编译过程和遇到的问题作一简要记录,备查。
0. OpenJDK介绍
OpenJDK是Sun(现Oracle)公司发布的基于GPL许可的Java平台的实现。其优点:
1、它的核心代码与同时期Sun(-> Oracle)的产品版基本上是一样的,血统纯正,不用担心性能问题,也基本上没什么兼容性问题;(代码上最主要的差异是
    

    • 

  • java乱码问题
dashuaifu
java乱码问题js中文乱码

    swfupload上传文件参数值为中文传递到后台接收中文乱码     在js中用setPostParams({"tag" : encodeURI( document.getElementByIdx_x("filetag").value,"utf-8")});
然后在servlet中String t
    

    • 

  • cygwin很多命令显示command not found的解决办法
dcj3sjt126com
cygwin

    cygwin很多命令显示command not found的解决办法
 
修改cygwin.BAT文件如下
@echo off
D:
set CYGWIN=tty notitle glob
set PATH=%PATH%;d:\cygwin\bin;d:\cygwin\sbin;d:\cygwin\usr\bin;d:\cygwin\usr\sbin;d:\cygwin\us
    

    • 

  • [介绍]从 Yii 1.1 升级
dcj3sjt126com
PHPyii2

    2.0 版框架是完全重写的,在 1.1 和 2.0 两个版本之间存在相当多差异。因此从 1.1 版升级并不像小版本间的跨越那么简单,通过本指南你将会了解两个版本间主要的不同之处。
如果你之前没有用过 Yii 1.1,可以跳过本章,直接从"入门篇"开始读起。
请注意,Yii 2.0 引入了很多本章并没有涉及到的新功能。强烈建议你通读整部权威指南来了解所有新特性。这样有可能会发
    

    • 

  • Linux SSH免登录配置总结
eksliang
ssh-keygenLinux SSH免登录认证Linux SSH互信

    转载请出自出处:http://eksliang.iteye.com/blog/2187265 一、原理
     我们使用ssh-keygen在ServerA上生成私钥跟公钥,将生成的公钥拷贝到远程机器ServerB上后,就可以使用ssh命令无需密码登录到另外一台机器ServerB上。
     生成公钥与私钥有两种加密方式,第一种是
    

    • 

  • 手势滑动销毁Activity
gundumw100
android

    老是效仿ios,做android的真悲催!
有需求:需要手势滑动销毁一个Activity
怎么办尼?自己写?
不用~,网上先问一下百度。
结果:
http://blog.csdn.net/xiaanming/article/details/20934541
首先将你需要的Activity继承SwipeBackActivity,它会在你的布局根目录新增一层SwipeBackLay
    

    • 

  • JavaScript变换表格边框颜色
ini
JavaScripthtmlWebhtml5css

    效果查看:http://hovertree.com/texiao/js/2.htm代码如下,保存到HTML文件也可以查看效果:
<html>
<head>
<meta charset="utf-8">
<title>表格边框变换颜色代码-何问起</title>
</head>
<body&
    

    • 

  • Kafka Rest : Confluent
kane_xie
kafkaRESTconfluent

    最近拿到一个kafka rest的需求,但kafka暂时还没有提供rest api(应该是有在开发中,毕竟rest这么火),上网搜了一下,找到一个Confluent Platform,本文简单介绍一下安装。
这里插一句,给大家推荐一个九尾搜索,原名叫谷粉SOSO,不想fanqiang谷歌的可以用这个。以前在外企用谷歌用习惯了,出来之后用度娘搜技术问题,那匹配度简直感人。
环境声明:Ubu
    

    • 

  • Calender不是单例
men4661273
单例Calender

             在我们使用Calender的时候,使用过Calendar.getInstance()来获取一个日期类的对象,这种方式跟单例的获取方式一样,那么它到底是不是单例呢,如果是单例的话,一个对象修改内容之后,另外一个线程中的数据不久乱套了吗?从试验以及源码中可以得出,Calendar不是单例。
测试:
Calendar c1 = 
    

    • 

  • 线程内存和主内存之间联系
qifeifei
java thread

    1, java多线程共享主内存中变量的时候,一共会经过几个阶段, 
  lock:将主内存中的变量锁定,为一个线程所独占。
  unclock:将lock加的锁定解除,此时其它的线程可以有机会访问此变量。
  read:将主内存中的变量值读到工作内存当中。
  load:将read读取的值保存到工作内存中的变量副本中。
  
    

    • 

  • schedule和scheduleAtFixedRate
tangqi609567707
javatimerschedule

    原文地址:http://blog.csdn.net/weidan1121/article/details/527307
import java.util.Timer;import java.util.TimerTask;import java.util.Date;
/** * @author vincent */public class TimerTest {
 
    

    • 

  • erlang 部署
wudixiaotie
erlang

    1.如果在启动节点的时候报这个错 :
{"init terminating in do_boot",{'cannot load',elf_format,get_files}}
则需要在reltool.config中加入
{app, hipe, [{incl_cond, exclude}]},
 
 
2.当generate时,遇到:
ERROR
    

    •