【云原生 | Kubernetes 系列】----污点与容忍
2024-05-18 08:57:44
污点与容忍
- 污点(taints),用于node节点排斥Pod调度.与亲和效果相反.即taint的node排斥Pod的创建.
- 容忍(toleration),用于Pod容忍Node节点的污点信息.即node节点有污点,也将新的Pod创建到该Node上.
1 污点配置方法1
加污点
root@k8s-master-01:~# kubectl cordon 192.168.31.114
node/192.168.31.114 cordoned
root@k8s-master-01:~# kubectl get node
NAME STATUS ROLES AGE VERSION
192.168.31.101 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.102 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.103 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.111 Ready node 121d v1.22.5
192.168.31.112 Ready node 121d v1.22.5
192.168.31.113 Ready node 24d v1.22.5
192.168.31.114 Ready,SchedulingDisabled node 22h v1.22.5
root@k8s-master-01:~# kubectl cordon 192.168.31.114
node/192.168.31.114 cordoned
root@k8s-master-01:~# kubectl describe node 192.168.31.114
Taints: node.kubernetes.io/unschedulable:NoSchedule
去污点
root@k8s-master-01:~# kubectl uncordon 192.168.31.114
node/192.168.31.114 uncordoned
root@k8s-master-01:~# kubectl get node
NAME STATUS ROLES AGE VERSION
192.168.31.101 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.102 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.103 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.111 Ready node 121d v1.22.5
192.168.31.112 Ready node 121d v1.22.5
192.168.31.113 Ready node 24d v1.22.5
192.168.31.114 Ready node 22h v1.22.5root@k8s-master-01:~# kubectl describe node 192.168.31.114
Taints: <none>
2 污点配置方法2
加污点
- NoSchedule:硬限制,不将新创建的Pod调度到具有该污点的Node上.
- PreferNoSchedule:软限制.避免k8s将尽量避免将Pod调度到具有该污点的Node上.
- NoExecute:表示K8s将不会将Pod调度到具有该污点的Node上,同时会将Node上已经存在的Pod强制驱逐出去.
root@k8s-master-01:~# kubectl taint node 192.168.31.114 key1=value1:NoSchedule
node/192.168.31.114 tainted
root@k8s-master-01:~# kubectl get node
NAME STATUS ROLES AGE VERSION
192.168.31.101 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.102 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.103 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.111 Ready node 121d v1.22.5
192.168.31.112 Ready node 121d v1.22.5
192.168.31.113 Ready node 24d v1.22.5
192.168.31.114 Ready node 22h v1.22.5root@k8s-master-01:~# kubectl describe node 192.168.31.114
Taints: key1=value1:NoScheduleNormal NodeSchedulable 12m (x2 over 14m) kubelet Node 192.168.31.114 status is now: NodeSchedulable
去污点
root@k8s-master-01:~# kubectl taint node 192.168.31.114 key1:NoSchedule-
node/192.168.31.114 untaintedroot@k8s-master-01:~# kubectl describe node 192.168.31.114
Taints: <none>Normal NodeSchedulable 13m (x2 over 16m) kubelet Node 192.168.31.114 status is now: NodeSchedulable
3 容忍
定义Pod的容忍度,可以调度至含有污点的Node.
容忍基于operator的匹配污点:
如果operator是Exists,则容忍度不需要value而是直接匹配污点类型.
如果operator是Equal,则需要指定value并且value的值需要等于tolerations的key.
3.1 节点打污点
将114设置为cordon,111打上NoSchedule
root@k8s-master-01:~# kubectl cordon 192.168.31.114
node/192.168.31.114 cordoned
root@k8s-master-01:~# kubectl taint nodes 192.168.31.111 key1=value1:NoSchedule
node/192.168.31.111 tainted
root@k8s-master-01:~# kubectl get node
NAME STATUS ROLES AGE VERSION
192.168.31.101 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.102 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.103 Ready,SchedulingDisabled master 121d v1.22.5
192.168.31.111 Ready node 121d v1.22.5
192.168.31.112 Ready node 121d v1.22.5
192.168.31.113 Ready node 24d v1.22.5
192.168.31.114 Ready,SchedulingDisabled node 24h v1.22.5
root@k8s-master-01:~# kubectl describe node 192.168.31.111 |grep Taint
Taints: key1=value1:NoSchedule
此时部署pod,会避开111和114两台服务器
root@k8s-master-01:/opt/k8s-data/yaml/wework/affinit/Affinit-case# kubectl get pods -n wework -o wide|grep app1
wework-tomcat-app1-deployment-7f64c5bbcb-48wbp 1/1 Running 0 16s 172.100.140.114 192.168.31.112 <none> <none>
wework-tomcat-app1-deployment-7f64c5bbcb-g5t8w 1/1 Running 0 16s 172.100.76.184 192.168.31.113 <none> <none>
wework-tomcat-app1-deployment-7f64c5bbcb-lfsqb 1/1 Running 0 16s 172.100.76.181 192.168.31.113 <none> <none>
wework-tomcat-app1-deployment-7f64c5bbcb-vh66k 1/1 Running 0 16s 172.100.140.102 192.168.31.112 <none> <none>
wework-tomcat-app1-deployment-7f64c5bbcb-zp7p6 1/1 Running 0 16s 172.100.76.183 192.168.31.113 <none> <none>
此时打开污点的容忍
tolerations: - key: "key1"operator: "Equal"value: "value1"effect: "NoSchedule"
此时pod也会被在有此标签的111上创建
root@k8s-master-01:/opt/k8s-data/yaml/wework/affinit/Affinit-case# kubectl apply -f case5.1-taint-tolerations.yaml
deployment.apps/wework-tomcat-app1-deployment configured
service/wework-tomcat-app1-service unchanged
root@k8s-master-01:/opt/k8s-data/yaml/wework/affinit/Affinit-case# kubectl get pods -n wework -o wide|grep app1
wework-tomcat-app1-deployment-598d979d5f-2mcvh 1/1 Running 0 36s 172.100.109.80 192.168.31.111 <none> <none>
wework-tomcat-app1-deployment-598d979d5f-nz225 1/1 Running 0 34s 172.100.140.119 192.168.31.112 <none> <none>
wework-tomcat-app1-deployment-598d979d5f-skf42 1/1 Running 0 36s 172.100.76.182 192.168.31.113 <none> <none>
wework-tomcat-app1-deployment-598d979d5f-whjvl 1/1 Running 0 36s 172.100.109.76 192.168.31.111 <none> <none>
wework-tomcat-app1-deployment-598d979d5f-x85vs 1/1 Running 0 33s 172.100.76.185 192.168.31.113 <none> <none>
【云原生 | Kubernetes 系列】----污点与容忍相关推荐
- 【云原生 | Kubernetes 系列】---Skywalking部署和监控
[云原生 | Kubernetes 系列]-Skywalking部署和监控 1. 分布式链路追踪概念 在较大的web集群和微服务环境中,客户端的一次请求可能需要经过多个不同的模块,多个不同中间件,多个 ...
- 【云原生Kubernetes系列第五篇】kubeadm v1.20 部署K8S 集群架构(人生这道选择题,总会有遗憾)
系列文章目录 ??即日起,更新云原生相关知识,喜欢的小伙伴可以给我点个三连喔 ??收录至专栏 云原生 ??[云原生Docker系列第一篇]Docker镜像管理 ??[云原生Docker系列第二篇]Do ...
- 【云原生 | Kubernetes 系列】--持续交付和持续部署GITOPS(上)
1. 持续交付和持续部署 Continuous Integration Continuous Delivery Continuous Deployment Plan Code Build Test R ...
- 【云原生 | Kubernetes 系列】1个POD2个container实现Wordpress K8s部署
1. Wordpress架构 2. 构建wordpress镜像 2.1 构建nginx-base-wordpress镜像 Dockerfile FROM harbor.intra.com/baseim ...
- 【云原生 | Kubernetes 系列】K8s 实战 管理 Secret 详解
kubectl 管理 Secret 前言 一.使用 kubectl 管理 Secret 1.1.创建 Secret 1.2.验证 Secret 1.3.解码 Secret 1.4.清理 二.使用配置文 ...
- 【云原生 | Kubernetes 系列】K8s 实战 一文学会如何从 PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器
PodSecurityPolicy 迁移到内置的 PodSecurity 准入控制器 前言 一.Pod 安全性 二.访问权限 三.标准化 PodSecurityPolicy 3.1.去掉纯粹变更性质的 ...
- 【云原生 | Kubernetes 系列】--Gitops持续交付 Tekton Pipeline使用进阶(pvc和Results)
Tekton Pipeline使用进阶 1. 基于Maven项目构建 主要实现source to package的过程 包含2个Task: fetch-from-source和build 使用pvc实 ...
- 【云原生 | Kubernetes 系列】--Gitops持续交付和持续Tekton Triggers
Tekton Triggers Tekton 几个项目 Tekton Pipelines Task Steps:执行具体操作,在容器中执行的命令或脚本 command script TaskRun 运 ...
- 【云原生 | Kubernetes 系列】---CephFS和OSS
1. CephFS ceph fs即ceph filesystem,可以实现文件系统共享功能,客户端通过ceph协议挂载并使用ceph集群作为数据存储服务器. Ceph FS需要运行Meta Data ...
最新文章
- Visual Studio中的TabControl控件的用法
- Mybatis 配置文件
- 生成条形码、印章、邮件地址(玩玩)
- 《Windows Forms编程》,真正的好书!
- Oracle 数据恢复指导具体解释
- divmod数字处理函数
- HihoCoder - 1174 拓扑排序·一
- python所有变量更新_python更新全局变量
- PLSA隐变量主题模型的公式推导解惑
- linux如何查看端口被哪个进程占用?
- C++重载箭头操作符的理解--c++primer这里有错误
- Es6 类class的关键 super、static、constructor、new.target
- 《Java语言程序设计》(基础篇原书第10版)第四章复习题答案
- win10 python ffmpeg推流到b站
- 查找计算机所有图片文件夹,win10系统搜索电脑里的所有图片的操作方法
- css——样式化区块——背景
- Python学习笔记 | 编码和文件读写
- python绘制线段_使用matplotlib绘制线段线
- 【愚公系列】2023年06月 网络安全(交通银行杯)-疑惑的汉字
- graphpad如何检测方差齐_SPSS和GraphPad如何比较组内和组间差异「杏花开生物医药统计」...