https://www.linuxsysadmins.com/okd-cluster-openshift-installation/
Instalasi OKD Cluster (OpenShift) pada Bare Metal
Daftar isi
Perkenalan
Menginstal kluster OKD menggunakan metode User-Provisioned Infrastructure (UPI) melibatkan pengaturan platform OpenShift berbasis Kubernetes pada mesin virtual atau server bare metal. Pendekatan ini memberi Anda kendali penuh atas infrastruktur yang mendasarinya, yang memungkinkan konfigurasi khusus yang sesuai dengan kebutuhan spesifik Anda. Proses ini biasanya mencakup persiapan perangkat keras atau lingkungan virtual, konfigurasi pengaturan jaringan, dan penginstalan dependensi yang diperlukan. Anda kemudian akan menyebarkan kluster OKD menggunakan skrip instalasi dan berkas konfigurasi yang disediakan oleh OKD, memastikan bahwa setiap node terintegrasi dengan benar ke dalam kluster. Metode ini ideal bagi pengguna yang mencari penyesuaian dan kendali atas lingkungan penyebaran OKD mereka.
Persyaratan Sistem Minimum
Di cluster OKD, kecuali node bastion semua node lainnya akan diinstal dengan Fedora Core OS
| Alamat IP | Nama Server | prosesor | Ingatan | Ukuran Disk |
|---|---|---|---|---|
| Nomor telepon 192.168.11.107 | bootstrap.okdcls.linuxsysadmins.lan | 4 | 16 | 100 GB |
| 192.168.11.11 | bastion.okd.linuxsysadmins.lan | 2 | 4 GB | 50 GB |
| Nomor telepon 192.168.11.201 | kontrol-pesawat1.okdcls.linuxsysadmins.lan | 8 | 16 GB | 200 GB |
| 192.168.11.202 | kontrol-pesawat2.okdcls.linuxsysadmins.lan | 8 | 16 GB | 200 GB |
| 192.168.11.203 | kontrol-pesawat3.okdcls.linuxsysadmins.lan | 8 | 16 GB | 200 GB |
| 192.168.11.204 | komputasi1.okdcls.linuxsysadmins.lan | 8 | 16 GB | 200 GB |
| 192.168.11.205 | komputasi2.okdcls.linuxsysadmins.lan | 8 | 16 GB | 200 GB |
| 192.168.11.206 | komputasi3.okdcls.linuxsysadmins.lan | 8 | 16 GB | 200 GB |
Persyaratan DNS
Jika Anda ingin menyiapkan server DNS untuk Cluster OKD 3 node, lihat URL di bawah ini.
| Komponen | Catatan DNS |
|---|---|
| API Kubernetes | api.okdcls.linuxsysadmins.lan api-int.okdcls.linuxsysadmins.lan |
| Rute | *.aplikasi.okdcls.linuxsysadmins.lan |
| Mesin bootstrap | bootstrap.okdcls.linuxsysadmins.lan |
| Mesin kendali pesawat | bidang kontrol1.okdcls.linuxsysadmins.lan bidang kontrol2.okdcls.linuxsysadmins.lan bidang kontrol3.okdcls.linuxsysadmins.lan |
| Mesin komputasi | komputasi1.okdcls.linuxsysadmins.lan komputasi2.okdcls.linuxsysadmins.lan komputasi3.okdcls.linuxsysadmins.lan |
Persyaratan DHCP
Untuk menetapkan IP bagi node bootstrap, master, dan pekerja selama bootstrapping, kita perlu memiliki server DHCP.
Kami memiliki artikel tentang pengaturan server DHCP untuk kluster node tunggal.
Artikel DHCP terbaru untuk cluster OKD 3 node dapat ditemukan di bawah ini
Persyaratan Penyeimbangan Beban
Kita perlu memiliki LB yang berfungsi untuk mendistribusikan API (6443/TCP, 22623/TCP) dan lalu lintas Ingress aplikasi (443/TCP, 80/TCP), panduan yang ada tentang pengaturan HAProxy tersedia di sini.
Sebelum melanjutkan ke langkah selanjutnya, pastikan untuk memverifikasi semua DNS dapat diatasi.
$ dig +noall +answer 192.168.11.100 api.okdcls.linuxsysadmins.lan
$ dig +noall +answer 192.168.11.100 api-int.okdcls.linuxsysadmins.lan
$ dig +noall +answer 192.168.11.100 console-openshift-console.apps.okdcls.linuxsysadmins.la
$ dig +noall +answer 192.168.11.100 someapp.apps.okdcls.linuxsysadmins.lan
$ dig +noall +answer 192.168.11.107 bootstrap.okdcls.linuxsysadmins.lan
$ dig +noall +answer 192.168.11.100 -x 192.168.11.11
$ dig +noall +answer 192.168.11.100 -x 192.168.11.201
$ dig +noall +answer 192.168.11.100 -x 192.168.11.202
$ dig +noall +answer 192.168.11.100 -x 192.168.11.203
$ dig +noall +answer 192.168.11.100 -x 192.168.11.204Pengecualian URL Instalasi
Persyaratan firewall OKD Cluster adalah daftar yang sangat besar, yang dapat ditemukan di sini .
Autentikasi SSH
Setelah menginstal kluster, jika diperlukan pemecahan masalah, kita perlu mengakses bidang kontrol atau node pekerja melalui SSH. Untuk masuk ke node kluster, kita harus menyalin kunci SSH dari node bastion ke node kluster untuk pengguna coreos. Sementara proses ini ditangani oleh penginstal, penting untuk membuat kunci SSH dan menambahkannya ke berkas konfigurasi yang telah disiapkan.
Dapatkan Rahasia Tarik
Untuk mengakses konten dari registri katalog kontainer, seperti gambar dan operator, diperlukan rahasia penarikan yang valid. Rahasia ini dapat diperoleh melalui konsol cloud Red Hat OpenShift Cluster Manager. Harap perhatikan bahwa rahasia penarikan hanya berlaku selama 12 hingga 24 jam. Misalnya, jika Anda memulai persiapan klaster hari ini dan berencana untuk melanjutkan penginstalan besok pada waktu yang sama, rahasia penarikan baru akan diperlukan; jika tidak, penginstalan mungkin gagal.
https://console.redhat.com/openshift/install/pull-secretMembuat file konfigurasi Instalasi
Siapkan install-config.yaml yang sesuai dengan kebutuhan lingkungan Anda.
- Di sini domain dasar saya adalah linuxsysadmins.lan
- Replika untuk simpul pekerja harus 0, kita perlu memasang simpul pekerja secara manual setelah bidang kendali.
- Dalam kasus saya okdcls adalah nama kluster.
- Semua node cluster okdcls saya akan berada di subnet 192.168.11.0/24
$ cat > install-config.yamlLakukan perubahan yang diperlukan.
Tambahkan kunci SSH yang telah disiapkan dan tarik rahasia dengan tanda kutip tunggal”.
Mempersiapkan Pemasang dan Klien Kluster OKD (OC)
Unduh penginstal OKD Cluster dan paket klien oc dari URL di bawah ini.
Pilih versi yang tepat dari Repo GitHub resmi .
Saat menyiapkan postingan ini, versi yang digunakan adalah 4.15.0-0.okd-2024-03-10-010116
https://github.com/okd-project/okd/releasesTetapkan versi dan arch sebagai variabel
$ OKD_VERSION=4.15.0-0.okd-2024-03-10-010116
$ ARCH=x86_64Unduh file tar klien dan penginstal, atau dapatkan secara manual dengan memilih versi yang cocok dari URL GitHub resmi yang disebutkan di atas.
$ cd ~
$ curl -L https://github.com/okd-project/okd/releases/download/$OKD_VERSION/openshift-client-linux-$OKD_VERSION.tar.gz -o oc.tar.gz
$ curl -L https://github.com/okd-project/okd/releases/download/$OKD_VERSION/openshift-install-linux-$OKD_VERSION.tar.gz -o openshift-install-linux.tar.gzEkstrak paket klien dan pindahkan /usr/local/bin
$ tar xvf openshift-client-linux-4.15.0-0.okd-2024-03-10-010116.tar.gz
$ mv oc kubectl /usr/local/bin/
$ restorecon -RFv /usr/local/bin/*Ekstrak Penginstal Cluster OKD
$ mkdir 3nodecls
$ tar xvf openshift-install-linux-4.15.0-0.okd-2024-03-10-010116.tar.gzMembuat manifest k8s dan file konfigurasi Ignition
Setelah kita selesai dengan semua persyaratan wajib di atas, siapkan file pengapian
$ cp install-config.yaml 3nodecls/Hasilkan manifes k8s dan file konfigurasi pengapian.
$ ./openshift-install create manifests --dir 3nodeclsSetelah menjalankan perintah pengapian, hanya file yang terkait dengan pengapian dan autentikasi yang akan ada di direktori instalasi.
$ ./openshift-install create ignition-configs --dir 3nodeclsHasil akhir akan mirip dengan di atas.
Distribusi file pengapian
Untuk melakukan bootstrap, file pengapian harus tersedia untuk semua node, untuk mendistribusikan file pengapian, kita perlu memiliki server web.
$ dnf install httpd -y
$ systemctl enable httpd --now
$ firewalld-cmd --add-service=http --permanentSalin semua file pengapian ke salah satu server web.
$ scp *.ign root@192.168.0.105:/var/www/html/okd/Pulihkan label SELinux dengan menjalankan $ sudo restorecon -RFv /var/www/html/okd/*
Pastikan untuk mengakses berkas pengapian dari salah satu node dalam subnet yang sama.
$ curl http://192.168.0.105/okd/bootstrap.ign
$ curl http://192.168.0.105/okd/master.ign
$ curl http://192.168.0.105/okd/worker.ignDapatkan Fedora CoreOS ISO
Instalasi Fedora CoreOS pada semua node cluster akan dilakukan menggunakan image ISO, unduh Fedora CoreOS menggunakan perintah di bawah ini
[ansible@bastion ~]$ ./openshift-install coreos print-stream-json | grep '\.iso[^.]'
"location": "https://builds.coreos.fedoraproject.org/prod/streams/stable/builds/39.20231101.3.0/aarch64/fedora-coreos-39.20231101.3.0-live.aarch64.iso",
"location": "https://builds.coreos.fedoraproject.org/prod/streams/stable/builds/39.20231101.3.0/ppc64le/fedora-coreos-39.20231101.3.0-live.ppc64le.iso",
"location": "https://builds.coreos.fedoraproject.org/prod/streams/stable/builds/39.20231101.3.0/s390x/fedora-coreos-39.20231101.3.0-live.s390x.iso",
"location": "https://builds.coreos.fedoraproject.org/prod/streams/stable/builds/39.20231101.3.0/x86_64/fedora-coreos-39.20231101.3.0-live.x86_64.iso",
[ansible@bastion ~]$
Unduh ISO x86_64 menggunakan wget dan salin ke file ISO ke penyimpanan data ISO proxmox.
Bootstrapping Kluster OKD menggunakan FCOS ISO
Pertama, transfer citra ISO dari node Bastion dan unggah ke penyimpanan data ISO Proxmox. Kemudian, lampirkan ISO ke semua node kluster, sesuaikan urutan boot sesuai kebutuhan, dan mulai mesin virtual.
Pertama-tama, jalankan proses bootstrap pada node bootstrap dan node master. Setelah proses booting selesai, Anda akan memiliki akses ke antarmuka baris perintah di bawah pengguna coreos.
Verifikasi bahwa API kami dapat dipecahkan dari shell saat ini. Jika salah satu entri DNS tidak dapat dipecahkan, instalasi akan gagal. Pastikan bahwa masalah pemecahan DNS telah dipecahkan sebelum melanjutkan.
$ curl -v https://api.okdcls.linuxsysadmins.lan:6443Dengan mengarahkan file pengapian dan disk lokal yang tersedia, instal Fedora CoreOS.
$ sudo coreos-installer install --ignition-url=http://192.168.0.105/okd/bootstrap.ign /dev/sda --insecure-ignition
$ sudo coreos-installer install --ignition-url=http://192.168.0.105/okd/master.ign /dev/sda --insecure-ignition
$ sudo coreos-installer install --ignition-url=http://192.168.0.105/okd/worker.ign /dev/sda --insecure-ignitionPastikan Anda menggunakan file pengapian yang benar untuk setiap node secara berurutan. Sementara node master dikonfigurasi, mulailah melakukan bootstrapping pada node pekerja yang tersisa.
Proses instalasi biasanya memakan waktu 2 hingga 3 menit. Setelah instalasi selesai, matikan node, lepaskan ISO dari mesin virtual, dan sesuaikan urutan boot untuk memprioritaskan boot dari disk.
Memantau kemajuan bootstrap OKD Cluster
Dengan menjalankan perintah di bawah ini dari node bastion, kita dapat memantau kemajuan instalasi.
$ ./openshift-install --dir 3nodecls/ wait-for bootstrap-complete --log-level=infoDibutuhkan lebih dari 30 menit dan tergantung pada sumber daya yang ditugaskan.
[ansible@bastion ~]$ ./openshift-install --dir 3nodecls/ wait-for bootstrap-complete --log-level=info
INFO Waiting up to 20m0s (until 5:01PM +04) for the Kubernetes API at https://api.okdcls.linuxsysadmins.lan:6443...
INFO API v1.28.2-3598+6e2789bbd58938-dirty up
INFO Waiting up to 30m0s (until 5:14PM +04) for bootstrapping to complete...
INFO It is now safe to remove the bootstrap resources
INFO Time elapsed: 28m34s
[ansible@bastion ~]$Setelah kita melihat pesan status bootstrap di atas, maka aman untuk mematikan atau menghapus server bootstrap dari kluster. Pastikan untuk menonaktifkan entri DNS, entri DHCP, dan entri LB dari HAProxy.
Memverifikasi Instalasi
Untuk memverifikasi instalasi, masuklah ke kluster menggunakan file kubeconfig yang dibuat selama tahap pembuatan manifes.
[ansible@bastion ~]$ export KUBECONFIG=3nodecls/auth/kubeconfigCetak pengguna yang diautentikasi dan cetak node yang tersedia setelah bootstrapping.
[ansible@bastion ~]$ oc get nodes
NAME STATUS ROLES AGE VERSION
control-plane1.okdcls.linuxsysadmins.lan Ready control-plane,master,worker 28m v1.28.7+6e2789b
control-plane2.okdcls.linuxsysadmins.lan Ready control-plane,master,worker 28m v1.28.7+6e2789b
control-plane3.okdcls.linuxsysadmins.lan Ready control-plane,master,worker 28m v1.28.7+6e2789b
[ansible@bastion ~]$
Di sini kita dapat melihat simpul komputasi yang tidak tercantum. Untuk mengaktifkan simpul komputasi, kita perlu menyetujuinya.
Menyetujui permintaan sertifikat dari node pekerja.
[ansible@bastion ~]$ oc get csr -o go-template='{{range .items}}{{if not .status}}{{.metadata.name}}{{"\n"}}{{end}}{{end}}' | xargs --no-run-if-empty oc adm certificate approve
certificatesigningrequest.certificates.k8s.io/csr-4j486 approved
certificatesigningrequest.certificates.k8s.io/csr-9tv4s approved
certificatesigningrequest.certificates.k8s.io/csr-s4csx approved
[ansible@bastion ~]$ Sekarang kita sudah selesai membuat daftar semua node.
[ansible@bastion ~]$ oc get nodes
NAME STATUS ROLES AGE VERSION
compute1.okdcls.linuxsysadmins.lan Ready worker 5m49s v1.28.7+6e2789b
compute2.okdcls.linuxsysadmins.lan Ready worker 5m34s v1.28.7+6e2789b
compute3.okdcls.linuxsysadmins.lan Ready worker 5m57s v1.28.7+6e2789b
control-plane1.okdcls.linuxsysadmins.lan Ready control-plane,master 36m v1.28.7+6e2789b
control-plane2.okdcls.linuxsysadmins.lan Ready control-plane,master 36m v1.28.7+6e2789b
control-plane3.okdcls.linuxsysadmins.lan Ready control-plane,master 36m v1.28.7+6e2789b
[ansible@bastion ~]$ Daftarkan semua node menggunakan -o wideopsi.
[ansible@bastion ~]$ oc get nodes -o wide
NAME STATUS ROLES AGE VERSION INTERNAL-IP EXTERNAL-IP OS-IMAGE KERNEL-VERSION CONTAINER-RUNTIME
compute1.okdcls.linuxsysadmins.lan Ready worker 145m v1.28.7+6e2789b 192.168.11.204 <none> Fedora CoreOS 39.20240210.3.0 6.7.4-200.fc39.x86_64 cri-o://1.28.2
compute2.okdcls.linuxsysadmins.lan Ready worker 145m v1.28.7+6e2789b 192.168.11.205 <none> Fedora CoreOS 39.20240210.3.0 6.7.4-200.fc39.x86_64 cri-o://1.28.2
compute3.okdcls.linuxsysadmins.lan Ready worker 145m v1.28.7+6e2789b 192.168.11.206 <none> Fedora CoreOS 39.20240210.3.0 6.7.4-200.fc39.x86_64 cri-o://1.28.2
control-plane1.okdcls.linuxsysadmins.lan Ready control-plane,master 176m v1.28.7+6e2789b 192.168.11.201 <none> Fedora CoreOS 39.20240210.3.0 6.7.4-200.fc39.x86_64 cri-o://1.28.2
control-plane2.okdcls.linuxsysadmins.lan Ready control-plane,master 176m v1.28.7+6e2789b 192.168.11.202 <none> Fedora CoreOS 39.20240210.3.0 6.7.4-200.fc39.x86_64 cri-o://1.28.2
control-plane3.okdcls.linuxsysadmins.lan Ready control-plane,master 176m v1.28.7+6e2789b 192.168.11.203 <none> Fedora CoreOS 39.20240210.3.0 6.7.4-200.fc39.x86_64 cri-o://1.28.2
[ansible@bastion ~]$Daftarkan semua pod di semua namespace.
[ansible@bastion ~]$ oc get pods -A
NAMESPACE NAME READY STATUS RESTARTS AGE
openshift-apiserver-operator openshift-apiserver-operator-66d44b7798-xqz9n 1/1 Running 1 (27h ago) 27h
openshift-apiserver apiserver-86987b956-ctjlt 2/2 Running 0 27h
openshift-apiserver apiserver-86987b956-nbm9k 2/2 Running 0 27h
openshift-apiserver apiserver-86987b956-qh4nk 2/2 Running 1 (27h ago) 27h
openshift-authentication-operator authentication-operator-766d9779d4-fzd7k 1/1 Running 1 (27h ago) 27h
openshift-authentication oauth-openshift-7bc695c5b7-qv85w 1/1 Running 1 (27h ago) 27h
openshift-authentication oauth-openshift-7bc695c5b7-t9mxb 1/1 Running 0 27h
openshift-authentication oauth-openshift-7bc695c5b7-w2qwf 1/1 Running 0 27h
openshift-cloud-controller-manager-operator cluster-cloud-controller-manager-operator-66b4887675-pbm6j 3/3 Running 6 (27h ago) 27h
openshift-cloud-credential-operator cloud-credential-operator-5db944c458-gx9ww 2/2 Running 0 27h
openshift-cluster-machine-approver machine-approver-77b9fcf5c7-f5rcj 2/2 Running 1 (27h ago) 27h
openshift-cluster-node-tuning-operator cluster-node-tuning-operator-64c9946fd-jqbd2 1/1 Running 0 27h
openshift-cluster-node-tuning-operator tuned-6m9st 1/1 Running 0 27h
openshift-cluster-node-tuning-operator tuned-bq9bh 1/1 Running 0 27h
openshift-cluster-node-tuning-operator tuned-bshh8 1/1 Running 0 27h
openshift-cluster-node-tuning-operator tuned-nlqhz 1/1 Running 0 27h
openshift-cluster-node-tuning-operator tuned-v7sz9 1/1 Running 0 27h
openshift-cluster-node-tuning-operator tuned-wf2w9 1/1 Running 0 27h
openshift-cluster-samples-operator cluster-samples-operator-54985c54c9-mpt6w 2/2 Running 0 27h
openshift-cluster-storage-operator cluster-storage-operator-7665d759d6-dnh42 1/1 Running 1 (27h ago) 27h
openshift-cluster-storage-operator csi-snapshot-controller-585dd5b969-9rzdl 1/1 Running 0 27h
openshift-cluster-storage-operator csi-snapshot-controller-585dd5b969-h7zz4 1/1 Running 0 27h
openshift-cluster-storage-operator csi-snapshot-controller-operator-7ccf586476-hkk9l 1/1 Running 0 27h
openshift-cluster-storage-operator csi-snapshot-webhook-56c558db8-7p9xq 1/1 Running 0 27h
openshift-cluster-storage-operator csi-snapshot-webhook-56c558db8-tgjz2 1/1 Running 0 27h
openshift-cluster-version cluster-version-operator-7b85459cfd-xrtsq 1/1 Running 0 27h
openshift-config-operator openshift-config-operator-c645b84c6-z5pc5 1/1 Running 1 (27h ago) 27h
openshift-console-operator console-operator-7b9c78dccc-vxw6h 2/2 Running 0 27h
openshift-console console-7cfd466999-bpwph 1/1 Running 10 (25h ago) 25h
openshift-console console-7cfd466999-s8l79 1/1 Running 10 (25h ago) 25h
openshift-console downloads-6d5dc6fc54-8qzxb 1/1 Running 1 (27h ago) 27h
openshift-console downloads-6d5dc6fc54-lds4d 1/1 Running 0 27h
openshift-controller-manager-operator openshift-controller-manager-operator-9f84455b9-pnfps 1/1 Running 1 (27h ago) 27h
openshift-controller-manager controller-manager-64d688f85c-ltkhv 1/1 Running 0 20h
openshift-controller-manager controller-manager-64d688f85c-xld8t 1/1 Running 0 20h
openshift-controller-manager controller-manager-64d688f85c-z6zgg 1/1 Running 0 20h
openshift-dns-operator dns-operator-668f779d47-bx8t4 2/2 Running 0 27h
openshift-dns dns-default-2vxj6 2/2 Running 0 27h
openshift-dns dns-default-5kv8w 2/2 Running 0 27h
openshift-dns dns-default-8sjj6 2/2 Running 0 27h
openshift-dns dns-default-l9xkw 2/2 Running 0 27h
openshift-dns dns-default-tm64d 2/2 Running 0 27h
openshift-dns dns-default-vwz7c 2/2 Running 0 27h
openshift-dns node-resolver-4jkbk 1/1 Running 0 27h
openshift-dns node-resolver-7w4f8 1/1 Running 0 27h
openshift-dns node-resolver-882jj 1/1 Running 0 27h
openshift-dns node-resolver-kvd84 1/1 Running 0 27h
openshift-dns node-resolver-slxn7 1/1 Running 0 27h
openshift-dns node-resolver-wv446 1/1 Running 0 27h
openshift-etcd-operator etcd-operator-64f9b89996-84fmt 1/1 Running 1 (27h ago) 27h
openshift-etcd etcd-control-plane1.okdcls.linuxsysadmins.lan 4/4 Running 0 27h
openshift-etcd etcd-control-plane2.okdcls.linuxsysadmins.lan 4/4 Running 0 27h
openshift-etcd etcd-control-plane3.okdcls.linuxsysadmins.lan 4/4 Running 0 27h
openshift-etcd etcd-guard-control-plane1.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-etcd etcd-guard-control-plane2.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-etcd etcd-guard-control-plane3.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-etcd installer-4-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-6-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-6-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-8-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-8-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-8-retry-1-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-9-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-9-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd installer-9-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd revision-pruner-8-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd revision-pruner-8-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd revision-pruner-8-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd revision-pruner-9-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd revision-pruner-9-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-etcd revision-pruner-9-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-image-registry cluster-image-registry-operator-58ff44549-gj52d 1/1 Running 0 27h
openshift-image-registry image-pruner-28715040-vhxt7 0/1 Completed 0 16h
openshift-image-registry node-ca-27b4x 1/1 Running 0 27h
openshift-image-registry node-ca-dvr4w 1/1 Running 0 27h
openshift-image-registry node-ca-lm8mc 1/1 Running 0 27h
openshift-image-registry node-ca-mskfg 1/1 Running 0 27h
openshift-image-registry node-ca-qqg7j 1/1 Running 0 27h
openshift-image-registry node-ca-s59h4 1/1 Running 0 27h
openshift-ingress-canary ingress-canary-5rdst 1/1 Running 0 27h
openshift-ingress-canary ingress-canary-6vpj4 1/1 Running 0 27h
openshift-ingress-canary ingress-canary-8ftfp 1/1 Running 0 27h
openshift-ingress-canary ingress-canary-9sm8q 1/1 Running 0 27h
openshift-ingress-canary ingress-canary-rfkqm 1/1 Running 0 27h
openshift-ingress-canary ingress-canary-rl8tr 1/1 Running 0 27h
openshift-ingress-operator ingress-operator-6d9c9b9d7c-4bxrw 2/2 Running 2 (27h ago) 27h
openshift-ingress router-default-68d4d5649d-g7ljq 1/1 Running 0 25h
openshift-ingress router-default-68d4d5649d-pvmbf 1/1 Running 0 25h
openshift-insights insights-operator-79458b87cc-kjmr4 1/1 Running 1 (27h ago) 27h
openshift-kube-apiserver-operator kube-apiserver-operator-5c5b686ff9-d8jtq 1/1 Running 1 (27h ago) 27h
openshift-kube-apiserver installer-10-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 25h
openshift-kube-apiserver installer-10-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 25h
openshift-kube-apiserver installer-10-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 25h
openshift-kube-apiserver installer-11-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver installer-11-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver installer-11-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver installer-12-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver installer-12-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver installer-12-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver installer-13-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 21h
openshift-kube-apiserver installer-13-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 21h
openshift-kube-apiserver installer-13-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 21h
openshift-kube-apiserver installer-14-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 20h
openshift-kube-apiserver installer-14-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 20h
openshift-kube-apiserver installer-14-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 20h
openshift-kube-apiserver kube-apiserver-control-plane1.okdcls.linuxsysadmins.lan 5/5 Running 0 20h
openshift-kube-apiserver kube-apiserver-control-plane2.okdcls.linuxsysadmins.lan 5/5 Running 0 20h
openshift-kube-apiserver kube-apiserver-control-plane3.okdcls.linuxsysadmins.lan 5/5 Running 0 20h
openshift-kube-apiserver kube-apiserver-guard-control-plane1.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-apiserver kube-apiserver-guard-control-plane2.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-apiserver kube-apiserver-guard-control-plane3.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-apiserver revision-pruner-10-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 25h
openshift-kube-apiserver revision-pruner-10-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 25h
openshift-kube-apiserver revision-pruner-10-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 25h
openshift-kube-apiserver revision-pruner-11-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver revision-pruner-11-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver revision-pruner-11-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver revision-pruner-12-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver revision-pruner-12-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver revision-pruner-12-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 22h
openshift-kube-apiserver revision-pruner-13-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 21h
openshift-kube-apiserver revision-pruner-13-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 21h
openshift-kube-apiserver revision-pruner-13-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 21h
openshift-kube-apiserver revision-pruner-14-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 20h
openshift-kube-apiserver revision-pruner-14-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 20h
openshift-kube-apiserver revision-pruner-14-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 20h
openshift-kube-controller-manager-operator kube-controller-manager-operator-58f696cbbf-cb2f8 1/1 Running 1 (27h ago) 27h
openshift-kube-controller-manager installer-4-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager installer-4-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager installer-5-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager installer-5-retry-1-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager installer-6-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager installer-6-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager installer-6-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-controller-manager kube-controller-manager-control-plane1.okdcls.linuxsysadmins.lan 4/4 Running 1 (27h ago) 27h
openshift-kube-controller-manager kube-controller-manager-control-plane2.okdcls.linuxsysadmins.lan 4/4 Running 0 27h
openshift-kube-controller-manager kube-controller-manager-control-plane3.okdcls.linuxsysadmins.lan 4/4 Running 1 (27h ago) 27h
openshift-kube-controller-manager kube-controller-manager-guard-control-plane1.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-controller-manager kube-controller-manager-guard-control-plane2.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-controller-manager kube-controller-manager-guard-control-plane3.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-scheduler-operator openshift-kube-scheduler-operator-dc89c89fc-m7w2w 1/1 Running 1 (27h ago) 27h
openshift-kube-scheduler installer-6-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler installer-6-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler installer-7-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler installer-7-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler installer-7-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler openshift-kube-scheduler-control-plane1.okdcls.linuxsysadmins.lan 3/3 Running 0 27h
openshift-kube-scheduler openshift-kube-scheduler-control-plane2.okdcls.linuxsysadmins.lan 3/3 Running 0 27h
openshift-kube-scheduler openshift-kube-scheduler-control-plane3.okdcls.linuxsysadmins.lan 3/3 Running 0 27h
openshift-kube-scheduler openshift-kube-scheduler-guard-control-plane1.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-scheduler openshift-kube-scheduler-guard-control-plane2.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-scheduler openshift-kube-scheduler-guard-control-plane3.okdcls.linuxsysadmins.lan 1/1 Running 0 27h
openshift-kube-scheduler revision-pruner-7-control-plane1.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler revision-pruner-7-control-plane2.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-scheduler revision-pruner-7-control-plane3.okdcls.linuxsysadmins.lan 0/1 Completed 0 27h
openshift-kube-storage-version-migrator-operator kube-storage-version-migrator-operator-7df68c455f-zn6fz 1/1 Running 1 (27h ago) 27h
openshift-kube-storage-version-migrator migrator-7dc4b56b9c-jgq26 1/1 Running 0 27h
openshift-machine-api cluster-autoscaler-operator-64759f8bc6-5vb8x 2/2 Running 0 27h
openshift-machine-api cluster-baremetal-operator-5785c4dd4d-b9prf 2/2 Running 0 27h
openshift-machine-api control-plane-machine-set-operator-7fbb586545-mvc28 1/1 Running 0 27h
openshift-machine-api machine-api-operator-6599bd4cbd-ps57l 2/2 Running 0 27h
openshift-machine-config-operator machine-config-controller-84c8d5686b-qxbfs 2/2 Running 0 27h
openshift-machine-config-operator machine-config-daemon-4czg7 2/2 Running 0 27h
openshift-machine-config-operator machine-config-daemon-5zxh8 2/2 Running 0 27h
openshift-machine-config-operator machine-config-daemon-bb6qm 2/2 Running 0 27h
openshift-machine-config-operator machine-config-daemon-nchk6 2/2 Running 0 27h
openshift-machine-config-operator machine-config-daemon-trb44 2/2 Running 0 27h
openshift-machine-config-operator machine-config-daemon-x2t7m 2/2 Running 0 27h
openshift-machine-config-operator machine-config-operator-5974f7756-pw455 2/2 Running 0 27h
openshift-machine-config-operator machine-config-server-27vsk 1/1 Running 0 27h
openshift-machine-config-operator machine-config-server-nhmv8 1/1 Running 0 27h
openshift-machine-config-operator machine-config-server-xzfsq 1/1 Running 0 27h
openshift-marketplace community-operators-82fpz 1/1 Running 0 27h
openshift-marketplace marketplace-operator-6cccff5dfc-t6nhc 1/1 Running 0 27h
openshift-monitoring alertmanager-main-0 6/6 Running 0 27h
openshift-monitoring alertmanager-main-1 6/6 Running 0 27h
openshift-monitoring cluster-monitoring-operator-76dd7766d8-wcwm7 1/1 Running 0 27h
openshift-monitoring kube-state-metrics-64d7486765-5v5mw 3/3 Running 0 27h
openshift-monitoring monitoring-plugin-59464d9c55-pk5m2 1/1 Running 0 27h
openshift-monitoring monitoring-plugin-59464d9c55-pz4qm 1/1 Running 0 27h
openshift-monitoring node-exporter-5bn4p 2/2 Running 0 27h
openshift-monitoring node-exporter-8l487 2/2 Running 0 27h
openshift-monitoring node-exporter-cqp7x 2/2 Running 0 27h
openshift-monitoring node-exporter-h2pg4 2/2 Running 0 27h
openshift-monitoring node-exporter-tzcxt 2/2 Running 0 27h
openshift-monitoring node-exporter-w2r97 2/2 Running 0 27h
openshift-monitoring openshift-state-metrics-b7f48f7cf-8hrpl 3/3 Running 0 27h
openshift-monitoring prometheus-adapter-8bb7ddf8d-m8gcq 1/1 Running 0 20h
openshift-monitoring prometheus-adapter-8bb7ddf8d-ncvc6 1/1 Running 0 20h
openshift-monitoring prometheus-k8s-0 6/6 Running 0 27h
openshift-monitoring prometheus-k8s-1 6/6 Running 0 27h
openshift-monitoring prometheus-operator-7c5d9bbff5-txm79 2/2 Running 0 27h
openshift-monitoring prometheus-operator-admission-webhook-7dbd4f5c44-2qxzw 1/1 Running 0 27h
openshift-monitoring prometheus-operator-admission-webhook-7dbd4f5c44-sqgxc 1/1 Running 0 27h
openshift-monitoring telemeter-client-5d69d47bb5-hr54l 3/3 Running 0 27h
openshift-monitoring thanos-querier-5896947ffd-nl5xd 6/6 Running 0 27h
openshift-monitoring thanos-querier-5896947ffd-xjdxg 6/6 Running 0 27h
openshift-multus multus-2wnrl 1/1 Running 1 (27h ago) 27h
openshift-multus multus-9xmx4 1/1 Running 0 27h
openshift-multus multus-9zm2z 1/1 Running 1 (27h ago) 27h
openshift-multus multus-additional-cni-plugins-cgwrg 1/1 Running 0 27h
openshift-multus multus-additional-cni-plugins-hq74h 1/1 Running 0 27h
openshift-multus multus-additional-cni-plugins-lgvkk 1/1 Running 0 27h
openshift-multus multus-additional-cni-plugins-spz27 1/1 Running 0 27h
openshift-multus multus-additional-cni-plugins-thtgf 1/1 Running 0 27h
openshift-multus multus-additional-cni-plugins-x68s4 1/1 Running 0 27h
openshift-multus multus-admission-controller-88ff5469d-g2x92 2/2 Running 0 27h
openshift-multus multus-admission-controller-88ff5469d-qlzw8 2/2 Running 0 27h
openshift-multus multus-f9n6l 1/1 Running 2 (27h ago) 27h
openshift-multus multus-zntl2 1/1 Running 1 (27h ago) 27h
openshift-multus multus-zvg44 1/1 Running 0 27h
openshift-multus network-metrics-daemon-5q59d 2/2 Running 0 27h
openshift-multus network-metrics-daemon-czszz 2/2 Running 0 27h
openshift-multus network-metrics-daemon-hw9dk 2/2 Running 0 27h
openshift-multus network-metrics-daemon-jpxxb 2/2 Running 0 27h
openshift-multus network-metrics-daemon-lfv6r 2/2 Running 0 27h
openshift-multus network-metrics-daemon-vjprt 2/2 Running 0 27h
openshift-network-diagnostics network-check-source-5f9b68d7f8-xz8z6 1/1 Running 0 27h
openshift-network-diagnostics network-check-target-4n65j 1/1 Running 0 27h
openshift-network-diagnostics network-check-target-5fnqx 1/1 Running 0 27h
openshift-network-diagnostics network-check-target-g66w2 1/1 Running 0 27h
openshift-network-diagnostics network-check-target-gk82x 1/1 Running 0 27h
openshift-network-diagnostics network-check-target-qtg9x 1/1 Running 0 27h
openshift-network-diagnostics network-check-target-rqb6c 1/1 Running 0 27h
openshift-network-node-identity network-node-identity-h89ll 2/2 Running 0 27h
openshift-network-node-identity network-node-identity-mzrwl 2/2 Running 0 27h
openshift-network-node-identity network-node-identity-xdf7m 2/2 Running 0 27h
openshift-network-operator network-operator-656d4d696f-4s2cv 1/1 Running 1 (27h ago) 27h
openshift-oauth-apiserver apiserver-7df57cbfff-wz2dz 1/1 Running 0 27h
openshift-oauth-apiserver apiserver-7df57cbfff-z7t29 1/1 Running 0 27h
openshift-oauth-apiserver apiserver-7df57cbfff-zghjw 1/1 Running 0 27h
openshift-operator-lifecycle-manager catalog-operator-5db8cc987c-kjqv7 1/1 Running 0 27h
openshift-operator-lifecycle-manager collect-profiles-28716000-wffdw 0/1 Completed 0 43m
openshift-operator-lifecycle-manager collect-profiles-28716015-mvmn8 0/1 Completed 0 28m
openshift-operator-lifecycle-manager collect-profiles-28716030-mpz5w 0/1 Completed 0 13m
openshift-operator-lifecycle-manager olm-operator-65b47cf747-mzk52 1/1 Running 0 27h
openshift-operator-lifecycle-manager package-server-manager-7d888667b7-p5cq4 2/2 Running 1 (27h ago) 27h
openshift-operator-lifecycle-manager packageserver-5569d94df4-jdgvq 1/1 Running 0 27h
openshift-operator-lifecycle-manager packageserver-5569d94df4-qfnt9 1/1 Running 0 27h
openshift-ovn-kubernetes ovnkube-control-plane-68798d4445-8pkbb 2/2 Running 0 27h
openshift-ovn-kubernetes ovnkube-control-plane-68798d4445-wwc5q 2/2 Running 0 27h
openshift-ovn-kubernetes ovnkube-node-455dg 8/8 Running 0 27h
openshift-ovn-kubernetes ovnkube-node-5jtbs 8/8 Running 0 27h
openshift-ovn-kubernetes ovnkube-node-7zh45 8/8 Running 0 27h
openshift-ovn-kubernetes ovnkube-node-d9dkq 8/8 Running 0 27h
openshift-ovn-kubernetes ovnkube-node-ld2ll 8/8 Running 0 27h
openshift-ovn-kubernetes ovnkube-node-s4n6v 8/8 Running 0 27h
openshift-route-controller-manager route-controller-manager-9f595b59d-7tbbc 1/1 Running 0 20h
openshift-route-controller-manager route-controller-manager-9f595b59d-csxw9 1/1 Running 0 20h
openshift-route-controller-manager route-controller-manager-9f595b59d-vn2wr 1/1 Running 0 20h
openshift-service-ca-operator service-ca-operator-5c5d464f8-4g2wj 1/1 Running 1 (27h ago) 27h
openshift-service-ca service-ca-6ff7684868-7qqr8 1/1 Running 0 27h
[ansible@bastion ~]$ Operator daftar
Daftarkan semua operator yang terinstal, karena kita menggunakan tarik rahasia, semua operator yang tersedia harus diinstal.
[ansible@bastion ~]$ oc get clusteroperators
NAME VERSION AVAILABLE PROGRESSING DEGRADED SINCE MESSAGE
authentication 4.15.0-0.okd-2024-03-10-010116 True False False 25h
baremetal 4.15.0-0.okd-2024-03-10-010116 True False False 27h
cloud-controller-manager 4.15.0-0.okd-2024-03-10-010116 True False False 27h
cloud-credential 4.15.0-0.okd-2024-03-10-010116 True False False 27h
cluster-autoscaler 4.15.0-0.okd-2024-03-10-010116 True False False 27h
config-operator 4.15.0-0.okd-2024-03-10-010116 True False False 27h
console 4.15.0-0.okd-2024-03-10-010116 True False False 25h
control-plane-machine-set 4.15.0-0.okd-2024-03-10-010116 True False False 27h
csi-snapshot-controller 4.15.0-0.okd-2024-03-10-010116 True False False 27h
dns 4.15.0-0.okd-2024-03-10-010116 True False False 27h
etcd 4.15.0-0.okd-2024-03-10-010116 True False False 27h
image-registry 4.15.0-0.okd-2024-03-10-010116 True False False 27h
ingress 4.15.0-0.okd-2024-03-10-010116 True False False 27h
insights 4.15.0-0.okd-2024-03-10-010116 True False False 27h
kube-apiserver 4.15.0-0.okd-2024-03-10-010116 True False False 27h
kube-controller-manager 4.15.0-0.okd-2024-03-10-010116 True False False 27h
kube-scheduler 4.15.0-0.okd-2024-03-10-010116 True False False 27h
kube-storage-version-migrator 4.15.0-0.okd-2024-03-10-010116 True False False 27h
machine-api 4.15.0-0.okd-2024-03-10-010116 True False False 27h
machine-approver 4.15.0-0.okd-2024-03-10-010116 True False False 27h
machine-config 4.15.0-0.okd-2024-03-10-010116 True False False 27h
marketplace 4.15.0-0.okd-2024-03-10-010116 True False False 27h
monitoring 4.15.0-0.okd-2024-03-10-010116 True False False 27h
network 4.15.0-0.okd-2024-03-10-010116 True False False 27h
node-tuning 4.15.0-0.okd-2024-03-10-010116 True False False 27h
openshift-apiserver 4.15.0-0.okd-2024-03-10-010116 True False False 27h
openshift-controller-manager 4.15.0-0.okd-2024-03-10-010116 True False False 27h
openshift-samples 4.15.0-0.okd-2024-03-10-010116 True False False 27h
operator-lifecycle-manager 4.15.0-0.okd-2024-03-10-010116 True False False 27h
operator-lifecycle-manager-catalog 4.15.0-0.okd-2024-03-10-010116 True False False 27h
operator-lifecycle-manager-packageserver 4.15.0-0.okd-2024-03-10-010116 True False False 27h
service-ca 4.15.0-0.okd-2024-03-10-010116 True False False 27h
storage 4.15.0-0.okd-2024-03-10-010116 True False False 27h
[ansible@bastion ~]$ Mengakses Konsol Klaster OpenShift / OKD
Untuk mengetahui pengguna yang diautentikasi ke cluster dari CLI
[ansible@bastion ~]$ oc whoami
system:admin
[ansible@bastion ~]$Jika kita perlu mengetahui URL konsol OKD.
[ansible@bastion ~]$ oc whoami --show-console
https://console-openshift-console.apps.okdcls.linuxsysadmins.lan
[ansible@bastion ~]$ Kredensial untuk masuk ke konsol dapat ditemukan di bawah lokasi yang dihasilkan oleh pengapian.
Username: kubeadmin
Password: S5J5x-QPmKu-J2fAK-zEvjt
Itu saja, kita telah selesai menginstal kluster OKD HA di atas mesin virtual.
Tidak ada komentar:
Posting Komentar