這里是k8s節點篇的搭建，如果需要搭建master，請看 Centos7 K8S Master搭建

一、禁用SELINUX：

setenforce 0

vi /etc/selinux/config?

SELINUX=disabled?

二、創建/etc/sysctl.d/k8s.conf文件，添加如下內容：

net.bridge.bridge-nf-call-ip6tables = 1

net.bridge.bridge-nf-call-iptables = 1

net.ipv4.ip_forward = 1

執行命令使修改生效。

modprobe br_netfilter

sysctl -p /etc/sysctl.d/k8s.conf

三、安裝Docker

1、設置docker的yum源（采用阿里云）:

yum install -y yum-utils device-mapper-persistent-data lvm2

yum-config-manager? --add-repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo

2、下載docker-ce，這里采用18.06.1.ce版本

yum makecache fast

yum install -y --setopt=obsoletes=0? ?docker-ce-18.06.1.ce-3.el7

3、啟動docker

systemctl start docker

systemctl enable docker

4、確認一下iptables filter表中FOWARD鏈的默認策略(pllicy)為ACCEPT

iptables -nvL

Chain INPUT (policy ACCEPT 263 packets, 19209 bytes) pkts bytes target prot opt in???out source destination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)?

pkts bytes target prot opt in out source destination

如果不是ACCEPT，則修改

iptables? -P?FORWARD??ACCEPT

四、使用kubeadm部署Kubernetes

1、安裝kubeadm和kubelet（這里也采用阿里云鏡像）

cat <<EOF > /etc/yum.repos.d/kubernetes.repo

[kubernetes]

name=Kubernetes

baseurl=http://mirrors.aliyun.com/kubernetes/yum/repos/kubernetes-el7-x86_64

enabled=1

gpgcheck=1

repo_gpgcheck=1

gpgkey=http://mirrors.aliyun.com/kubernetes/yum/doc/yum-key.gpg

? ? ? ? http://mirrors.aliyun.com/kubernetes/yum/doc/rpm-package-key.gpg

EOF

yum makecache fast && yum install -y kubelet kubeadm kubectl

這里會從google下載鏡像，如果無法翻墻請執行下面命令后在執行上面名

docker pull mirrorgooglecontainers/kube-apiserver-amd64:v1.12.2

docker pull mirrorgooglecontainers/kube-controller-manager-amd64:v1.12.2

docker pull mirrorgooglecontainers/kube-scheduler-amd64:v1.12.2

docker pull mirrorgooglecontainers/kube-proxy-amd64:v1.12.2

docker pull mirrorgooglecontainers/pause:3.1

docker pull mirrorgooglecontainers/etcd-amd64:3.2.24

docker pull coredns/coredns:1.2.2

docker tag docker.io/mirrorgooglecontainers/kube-proxy-amd64:v1.12.2 k8s.gcr.io/kube-proxy:v1.12.2

docker tag docker.io/mirrorgooglecontainers/kube-scheduler-amd64:v1.12.2 k8s.gcr.io/kube-scheduler:v1.12.2

docker tag docker.io/mirrorgooglecontainers/kube-apiserver-amd64:v1.12.2 k8s.gcr.io/kube-apiserver:v1.12.2

docker tag docker.io/mirrorgooglecontainers/kube-controller-manager-amd64:v1.12.2 k8s.gcr.io/kube-controller-manager:v1.12.2

docker tag docker.io/mirrorgooglecontainers/etcd-amd64:3.2.24? k8s.gcr.io/etcd:3.2.24

docker tag docker.io/mirrorgooglecontainers/pause:3.1? k8s.gcr.io/pause:3.1

docker tag docker.io/coredns/coredns:1.2.2? k8s.gcr.io/coredns:1.2.2

Kubernetes 1.8開始要求關閉系統的Swap，默認配置下kubelet將無法啟動。

swapoff -a

修改/etc/sysctl.d/k8s.conf，增加下面一行。然后執行sysctl -p /etc/sysctl.d/k8s.conf使修改生效。

vm.swappiness=0

sysctl -p /etc/sysctl.d/k8s.conf

修改/etc/sysconfig/kubelet，增加--fail-swap-on=false

KUBELET_EXTRA_ARGS=--fail-swap-on=false

2 使用kubeadm init初始化集群

在各節點開機啟動kubelet服務：

systemctl enable kubelet.service

四、安裝pod

mkdir -p ~/k8s/ && cd ~/k8s

五、用命令加入集群

在master生成的join命令后面加入?--ignore-preflight-errors=Swap

kubeadm join 172.20.38.10:6443 --token m6fr83.uo3449ytbzyg73r6 --discovery-token-ca-cert-hash sha256:e9dc2bc1461e75a74638759f2609f3ea6166c894743b572cd07c06c3f45ebc13 --ignore-preflight-errors=Swap

查看集群成功了結果：kubectl get nodes

NAME? ? ? ? ? ? ? ? ? ? ? ? STATUS? ROLES? ? AGE? ? VERSION

test-chentianhui--devms--1? Ready? ? master? 6h43m? v1.12.2

test-chentianhui--devms--2? Ready? ? <none>? 128m? ? v1.12.2

test-chentianhui--devms--3? Ready? ? <none>? 84m? ? v1.12.2

test-chentianhui--devms--4? Ready? ? <none>? 72s? ? v1.12.2