heptio scanner 是一款k8s 集群状态的诊断工具,还是很方便的,但是有一点就是需要使用google 的镜像

参考地址

https://scanner.heptio.com/

部署

  • kubectl 部署说明
kubectl apply -f https://scanner.heptio.com/b5a7e2f93898098672771fb7d5877576/yaml/?rbac=no

yaml 定义文件

  • RBAC 模式
---

apiVersion: v1

kind: Namespace

metadata:

  name: heptio-sonobuoy

---

apiVersion: v1

kind: ServiceAccount

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-serviceaccount

  namespace: heptio-sonobuoy

---

apiVersion: rbac.authorization.k8s.io/v1

kind: ClusterRoleBinding

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-serviceaccount-heptio-sonobuoy

roleRef:

  apiGroup: rbac.authorization.k8s.io

  kind: ClusterRole

  name: sonobuoy-serviceaccount

subjects:

- kind: ServiceAccount

  name: sonobuoy-serviceaccount

  namespace: heptio-sonobuoy

---

apiVersion: rbac.authorization.k8s.io/v1

kind: ClusterRole

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-serviceaccount

rules:

- apiGroups:

  - '*'

  resources:

  - '*'

  verbs:

  - '*'

---

apiVersion: v1

data:

  config.json: |

    {

      "Description": "sonobuoy run for scanner.heptio.com",

      "Version": "v0.11.4",

      "ResultsDir": "/tmp/sonobuoy",

      "Resources": [

        "Nodes",

        "ServerVersion"

      ],

      "Filters": {

        "Namespaces": ".*",

        "LabelSelector": ""

      },

      "Server": {

        "bindaddress":"0.0.0.0",

        "bindport":8080,

        "advertiseaddress":"",

        "timeoutseconds":8000

      },

      "Plugins": [

        {

          "name":"e2e"

        }

      ],

      "WorkerImage":"gcr.io/heptio-images/sonobuoy:latest",

      "ImagePullPolicy":"Always"

    }

kind: ConfigMap

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-config-cm

  namespace: heptio-sonobuoy

---

apiVersion: v1

data:

  e2e.yaml: |

    sonobuoy-config:

      driver: Job

      plugin-name: e2e

      result-type: e2e

    spec:

      env:

      - name: E2E_FOCUS

        value: '\[Conformance\]'

      command: ["/run_e2e.sh"]

      image: gcr.io/heptio-images/kube-conformance:latest

      imagePullPolicy: Always

      name: e2e

      volumeMounts:

      - mountPath: /tmp/results

        name: results

        readOnly: false

kind: ConfigMap

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-plugins-cm

  namespace: heptio-sonobuoy

---

apiVersion: v1

kind: Pod

metadata:

  labels:

    component: sonobuoy

    run: sonobuoy-master

    tier: analysis

  name: sonobuoy

  namespace: heptio-sonobuoy

spec:

  containers:

  - env:

    - name: SONOBUOY_ADVERTISE_IP

      valueFrom:

        fieldRef:

          fieldPath: status.podIP

    image: gcr.io/heptio-images/sonobuoy:v0.11.4

    imagePullPolicy: Always

    name: kube-sonobuoy

    volumeMounts:

    - mountPath: /etc/sonobuoy

      name: sonobuoy-config-volume

    - mountPath: /plugins.d

      name: sonobuoy-plugins-volume

    - mountPath: /tmp/sonobuoy

      name: sonobuoy-output

  - env:

    - name: READ_RESULTS_DIR

      value: /tmp/sonobuoy

    - name: WRITE_RESULTS_DIR

      value: /tmp/forwarder

    - name: HEPTIO_TOKEN

      value: "b5a7e2f93898098672771fb7d5877576"

    - name: CLOUD_URL

      value: https://scanner.heptio.com

    image: gcr.io/heptio-images/scanner-forwarder:v0.0.4

    imagePullPolicy: Always

    name: forwarder

    volumeMounts:

    - mountPath: /tmp/sonobuoy

      name: sonobuoy-output

    - mountPath: /tmp/forwarder

      name: forwarder-output

  - env:

    - name: NAMESPACE

      valueFrom:

        fieldRef:

          fieldPath: metadata.namespace

    - name: READ_RESULTS_DIR

      value: /tmp/forwarder

    image: gcr.io/heptio-images/namespace-deleter:v0.0.1

    imagePullPolicy: Always

    name: cleanup

    volumeMounts:

    - mountPath: /tmp/forwarder

      name: forwarder-output

  restartPolicy: Never

  serviceAccountName: sonobuoy-serviceaccount

  volumes:

  - configMap:

      name: sonobuoy-config-cm

    name: sonobuoy-config-volume

  - configMap:

      name: sonobuoy-plugins-cm

    name: sonobuoy-plugins-volume

  - emptyDir: {}

    name: sonobuoy-output

  - emptyDir: {}

    name: forwarder-output

---

apiVersion: v1

kind: Service

metadata:

  labels:

    component: sonobuoy

    run: sonobuoy-master

  name: sonobuoy-master

  namespace: heptio-sonobuoy

spec:

  ports:

  - port: 8080

    protocol: TCP

    targetPort: 8080

  selector:

    run: sonobuoy-master

  type: ClusterIP
  • 非 RBAC模式
---

apiVersion: v1

kind: Namespace

metadata:

  name: heptio-sonobuoy

---

apiVersion: v1

kind: ServiceAccount

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-serviceaccount

  namespace: heptio-sonobuoy

---

apiVersion: v1

data:

  config.json: |

    {

      "Description": "sonobuoy run for scanner.heptio.com",

      "Version": "v0.11.4",

      "ResultsDir": "/tmp/sonobuoy",

      "Resources": [

        "Nodes",

        "ServerVersion"

      ],

      "Filters": {

        "Namespaces": ".*",

        "LabelSelector": ""

      },

      "Server": {

        "bindaddress":"0.0.0.0",

        "bindport":8080,

        "advertiseaddress":"",

        "timeoutseconds":8000

      },

      "Plugins": [

        {

          "name":"e2e"

        }

      ],

      "WorkerImage":"gcr.io/heptio-images/sonobuoy:latest",

      "ImagePullPolicy":"Always"

    }

kind: ConfigMap

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-config-cm

  namespace: heptio-sonobuoy

---

apiVersion: v1

data:

  e2e.yaml: |

    sonobuoy-config:

      driver: Job

      plugin-name: e2e

      result-type: e2e

    spec:

      env:

      - name: E2E_FOCUS

        value: '\[Conformance\]'

      command: ["/run_e2e.sh"]

      image: gcr.io/heptio-images/kube-conformance:latest

      imagePullPolicy: Always

      name: e2e

      volumeMounts:

      - mountPath: /tmp/results

        name: results

        readOnly: false

kind: ConfigMap

metadata:

  labels:

    component: sonobuoy

  name: sonobuoy-plugins-cm

  namespace: heptio-sonobuoy

---

apiVersion: v1

kind: Pod

metadata:

  labels:

    component: sonobuoy

    run: sonobuoy-master

    tier: analysis

  name: sonobuoy

  namespace: heptio-sonobuoy

spec:

  containers:

  - env:

    - name: SONOBUOY_ADVERTISE_IP

      valueFrom:

        fieldRef:

          fieldPath: status.podIP

    image: gcr.io/heptio-images/sonobuoy:v0.11.4

    imagePullPolicy: Always

    name: kube-sonobuoy

    volumeMounts:

    - mountPath: /etc/sonobuoy

      name: sonobuoy-config-volume

    - mountPath: /plugins.d

      name: sonobuoy-plugins-volume

    - mountPath: /tmp/sonobuoy

      name: sonobuoy-output

  - env:

    - name: READ_RESULTS_DIR

      value: /tmp/sonobuoy

    - name: WRITE_RESULTS_DIR

      value: /tmp/forwarder

    - name: HEPTIO_TOKEN

      value: "b5a7e2f93898098672771fb7d5877576"

    - name: CLOUD_URL

      value: https://scanner.heptio.com

    image: gcr.io/heptio-images/scanner-forwarder:v0.0.4

    imagePullPolicy: Always

    name: forwarder

    volumeMounts:

    - mountPath: /tmp/sonobuoy

      name: sonobuoy-output

    - mountPath: /tmp/forwarder

      name: forwarder-output

  - env:

    - name: NAMESPACE

      valueFrom:

        fieldRef:

          fieldPath: metadata.namespace

    - name: READ_RESULTS_DIR

      value: /tmp/forwarder

    image: gcr.io/heptio-images/namespace-deleter:v0.0.1

    imagePullPolicy: Always

    name: cleanup

    volumeMounts:

    - mountPath: /tmp/forwarder

      name: forwarder-output

  restartPolicy: Never

  serviceAccountName: sonobuoy-serviceaccount

  volumes:

  - configMap:

      name: sonobuoy-config-cm

    name: sonobuoy-config-volume

  - configMap:

      name: sonobuoy-plugins-cm

    name: sonobuoy-plugins-volume

  - emptyDir: {}

    name: sonobuoy-output

  - emptyDir: {}

    name: forwarder-output

---

apiVersion: v1

kind: Service

metadata:

  labels:

    component: sonobuoy

    run: sonobuoy-master

  name: sonobuoy-master

  namespace: heptio-sonobuoy

spec:

  ports:

  - port: 8080

    protocol: TCP

    targetPort: 8080

  selector:

    run: sonobuoy-master

  type: ClusterIP
  • 等待诊断结果界面

说明

部署是通过可视化界面,查看诊断结果的,提供的token 就是标识对应的k8s集群,同时运行过程中有点慢

参考资料

https://github.com/heptio/sonobuoy
https://scanner.heptio.com/

 
 
 
 

heptio scanner kubernetes 集群诊断工具部署说明的更多相关文章

  1. kubernetes 集群的安装部署

    本文来自我的github pages博客http://galengao.github.io/ 即www.gaohuirong.cn 摘要: 首先kubernetes得官方文档我自己看着很乱,信息很少, ...

  2. Kubernetes集群管理工具kubectl命令技巧大全

    一. kubectl概述 Kubectl是用于控制Kubernetes集群的命令行工具,通过kubectl能够对集群本身进行管理,并能够在集群上进行容器化应用的安装部署. kubectl命令的语法如下 ...

  3. Kubernetes集群的安装部署

    此文参照https://www.cnblogs.com/zhenyuyaodidiao/p/6500830.html,并根据实操过程略作修改. 1.环境介绍及准备: 1.1 物理机操作系统 物理机操作 ...

  4. K8S从入门到放弃系列-(16)Kubernetes集群Prometheus-operator监控部署

    Prometheus Operator不同于Prometheus,Prometheus Operator是 CoreOS 开源的一套用于管理在 Kubernetes 集群上的 Prometheus 控 ...

  5. kube-liveboard: kubernetes集群可视化工具

    kube-liveboard 随着kubernetes 集群的增大,对于集群数据选取恰当的形式进行展示有助于直观反映集群的状态,方便发现集群的短板,了解集群的瓶颈.因此,笔者做了kube-livebo ...

  6. K8S从入门到放弃系列-(11)kubernetes集群网络Calico部署

    摘要: 前面几个篇幅,已经介绍master与node节点集群组件部署,由于K8S本身不支持网络,当 node 全部启动后,由于网络组件(CNI)未安装会显示为 NotReady 状态,需要借助第三方网 ...

  7. K8S从入门到放弃系列-(9)kubernetes集群之kubelet部署

    摘要: Kubelet组件运行在Node节点上,维持运行中的Pods以及提供kuberntes运行时环境,主要完成以下使命: 1.监视分配给该Node节点的pods 2.挂载pod所需要的volume ...

  8. K8S从入门到放弃系列-(5)kubernetes集群之kube-apiserver部署

    摘要: 1.kube-apiserver为是整个k8s集群中的数据总线和数据中心,提供了对集群的增删改查及watch等HTTP Rest接口 2.kube-apiserver是无状态的,虽然客户端如k ...

  9. Ubuntu下搭建Kubernetes集群(3)--k8s部署

    1. 关闭swap并关闭防火墙 首先,我们需要先关闭swap和防火墙,否则在安装Kubernetes时会导致不成功: # 临时关闭 swapoff -a # 编辑/etc/fstab,注释掉包含swa ...

随机推荐

  1. Linux学习 :多线程编程

    1.Linux进程与线程() 进程:通过fork创建子进程与创建线程之间是有区别的:fork创建出该进程的一份拷贝,创建时额外申请了新的内存空间以及存储代码段.数据段.BSS段.堆.栈空间,     ...

  2. 第三节 java 数组

    一维数组: 同一种类型数据的集合,其实数组就是一个容器. 好处: 可以自动给数组中的元素从0开始编号,方便操作这些元素. 格式1: 元素类型[]  数组名 = new 元素类型 [元素个数或者元素长度 ...

  3. Ionic2开发环境搭建、项目创建调试与Android应用的打包、优化

    Ionic2开发环境搭建.项目创建调试与Android应用的打包.优化. windows下ionic2开发环境配置步骤如下: 下载node.js环境,稳定版本:v6.9.5 下载android stu ...

  4. oracle 12c 警告日志位置

    Oracle 12c环境下查询,alert日志并不在bdump目录下,看到网上和书上都写着可以通过初始化参数background_dump_dest来查看alter日志路径,还说警告日志文件的缺省位置 ...

  5. sqlite的数据类型

    参考sqlite官方文档:https://www.sqlite.org/datatype3.html 绝大多数的SQL数据库采用静态的.严格的数据类型,数据库中的值由数据表的列类型定义决定. 然而,s ...

  6. PCMU G.711U/PCMA G.711A简介

    PCMA(G.711A) 类型:Audio 制定者:ITU-T 所需频宽:64Kbps(90.4) 特性:PCMU和PCMA都能提供较好的语音质量,但是它们占用的带宽较高,需要64kbps. 优点:语 ...

  7. Python 进程的其他方法

    import time import os from multiprocessing import Process def f1(): print("子进程的pid",os.get ...

  8. Python Counter

    from collections import Counter print(Counter("宝宝今年特别喜欢王宝强")) # 计数 lst = ["jay", ...

  9. AMAZON数据集

    http://snap.stanford.edu/data/amazon/productGraph/categoryFiles/

  10. 大数据-12-Spark+Kafka构建实时分析Dashboard

    转自 http://dblab.xmu.edu.cn/post/8274/ 0.案例概述 本案例利用Spark+Kafka实时分析男女生每秒购物人数,利用Spark Streaming实时处理用户购物 ...