Nutanix Kubernetes Platform(NKP)v2.12 ã§ã€nkp CLI ã‹ã‚‰ Workload Cluster を作æˆã—ã¦ã¿ã¾ã™ã€‚
- 今回ã®ç’°å¢ƒ
- Workload Cluster ã®ä½œæˆï¼ˆnkp CLI)
- kubeconfig ã®å…¥æ‰‹
- Worklaod Cluster ã®å‰Šé™¤ï¼ˆnkp CLI)
今回ã®ç’°å¢ƒ
NKP ã® Management Cluster ã¯ã€ä¸‹è¨˜ã®ã‚ˆã†ã«ä½œæˆã—ã¦ã‚ã‚Šã¾ã™ã€‚
ã“ã®æ™‚点ã§ã® Management Cluster ã®æ§˜åを確èªã—ã¦ãŠãã¾ã™ã€‚kubeconfig ファイルをã€KUBECONFIG 環境変数ã«æŒ‡å®šã—ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ export KUBECONFIG=$(pwd)/nkpm01.conf
ç¾åœ¨ã®ã‚³ãƒ³ãƒ†ã‚ストã¯ã€Management Cluster ã«ãªã£ã¦ã„ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ kubectl config current-context nkpm01-admin@nkpm01
Management Cluster ã®ãƒŽãƒ¼ãƒ‰æƒ…å ±ãŒå–å¾—ã§ãã¦ã„ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ kubectl get nodes NAME STATUS ROLES AGE VERSION nkpm01-md-0-g7fsx-h4r2t-hvd2c Ready <none> 2d16h v1.29.6 nkpm01-md-0-g7fsx-h4r2t-ll8zf Ready <none> 2d16h v1.29.6 nkpm01-qfxvt-9sq92 Ready control-plane 2d16h v1.29.6
ã“ã®ã‚¯ãƒ©ã‚¹ã‚¿ã¯ã€Management Cluster ã§ã™ã€‚
[gowatana@lab-nkp-01 ~]$ nkp cluster type Management
ã“ã®æ™‚点ã§ã¯ã€Management Cluster ã®ã¿ãŒä½œæˆã•ã‚Œã¦ã„ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ nkp get clusters -A WORKSPACE NAME KUBECONFIG kommander-workspace host-cluster kommander-self-attach-kubeconfig Joined
Workload Cluster ã®ä½œæˆï¼ˆnkp CLI)
ã¾ãšã€Prism Centarl ã®æŽ¥ç¶šæƒ…å ±ã‚’ç’°å¢ƒå¤‰æ•°ã¨ã—ã¦è¨å®šã—ã¦ãŠãã¾ã™ã€‚
export NUTANIX_USER=admin export NUTANIX_PASSWORD='パスワード'
Management Cluster(nkpm01)ã«æŽ¥ç¶šã§ãる状態ã§ã€ä¸‹è¨˜ã®ã‚ˆã†ã« nkp create cluster nutanix コマンドを実行ã—ã¾ã™ã€‚
- Management Cluster 作æˆæ™‚ã¨ã¯ç•°ãªã‚Šã€ã€Œ--self-managedã€ã¯æŒ‡å®šã—ã¾ã›ã‚“。
- パラメータã¯ã€ä»¥å‰ã®æŠ•ç¨¿ ã§ãƒ€ãƒƒã‚·ãƒ¥ãƒœãƒ¼ãƒ‰ã‹ã‚‰ä½œæˆã—ãŸã‚¯ãƒ©ã‚¹ã‚¿ ã«åˆã‚ã›ã¦ã‚ã‚Šã¾ã™ã€‚
nkp create cluster nutanix \ --endpoint=https://lab-nxpc-01.go-lab.jp:9440 \ --insecure \ --control-plane-prism-element-cluster=lab-nxce-02 \ --worker-prism-element-cluster=lab-nxce-02 \ --control-plane-subnets=nw-vlan-12 \ --worker-subnets=nw-vlan-12 \ --cluster-name=nkpw01 \ --control-plane-endpoint-ip=192.168.12.205 \ --control-plane-vm-image=nkp-rocky-9.4-release-1.29.6-20240816215147.qcow2 \ --worker-vm-image=nkp-rocky-9.4-release-1.29.6-20240816215147.qcow2 \ --kubernetes-service-load-balancer-ip-range=192.168.12.206-192.168.12.209 \ --kubernetes-pod-network-cidr=172.16.0.0/16 \ --kubernetes-service-cidr=10.96.0.0/12 \ --csi-hypervisor-attached-volumes=true \ --csi-storage-container=default-container-88443613598780 \ --ssh-public-key-file=$HOME/.ssh/id_rsa.pub \ --control-plane-replicas=1 \ --control-plane-vcpus=2 \ --control-plane-memory=4 \ --worker-replicas=1 \ --worker-vcpus=2 \ --worker-memory=2
実際㫠nkp コマンドを実行ã™ã‚‹ã¨ã€ä¸‹è¨˜ã®ã‚ˆã†ã«ãªã‚Šã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ nkp create cluster nutanix \ > --endpoint=https://lab-nxpc-01.go-lab.jp:9440 \ > --insecure \ > --control-plane-prism-element-cluster=lab-nxce-02 \ > --worker-prism-element-cluster=lab-nxce-02 \ > --control-plane-subnets=nw-vlan-12 \ > --worker-subnets=nw-vlan-12 \ > --cluster-name=nkpw01 \ > --control-plane-endpoint-ip=192.168.12.205 \ > --control-plane-vm-image=nkp-rocky-9.4-release-1.29.6-20240816215147.qcow2 \ > --worker-vm-image=nkp-rocky-9.4-release-1.29.6-20240816215147.qcow2 \ > --kubernetes-service-load-balancer-ip-range=192.168.12.206-192.168.12.209 \ > --kubernetes-pod-network-cidr=172.16.0.0/16 \ > --kubernetes-service-cidr=10.96.0.0/12 \ > --csi-hypervisor-attached-volumes=true \ > --csi-storage-container=default-container-88443613598780 \ > --ssh-public-key-file=$HOME/.ssh/id_rsa.pub \ > --control-plane-replicas=1 \ > --control-plane-vcpus=2 \ > --control-plane-memory=4 \ > --worker-replicas=1 \ > --worker-vcpus=2 \ > --worker-memory=2 Generating cluster resources namespace/nkpw01-zmwt9 created cluster.cluster.x-k8s.io/nkpw01 created secret/nkpw01-pc-credentials created secret/nkpw01-pc-credentials-for-csi created workspace.workspaces.kommander.mesosphere.io/nkpw01-88zk2 created ✓ Waiting for cluster infrastructure to be ready ✓ Waiting for cluster control-planes to be ready ✓ Waiting for machines to be ready [gowatana@lab-nkp-01 ~]$
Workload Cluster(nkpw01)ãŒä½œæˆã•ã‚Œã¾ã—ãŸã€‚
[gowatana@lab-nkp-01 ~]$ nkp get clusters -A WORKSPACE NAME KUBECONFIG STATUS kommander-workspace host-cluster kommander-self-attach-kubeconfig Joined nkpw01-88zk2 nkpw01 nkpw01-kubeconfig Joined
Cluster API ã®ã‚¯ãƒ©ã‚¹ã‚¿ã¯ã€nkpw01-zmwt9 Namespace ã«ä½œæˆã•ã‚Œã¾ã—ãŸã€‚
[gowatana@lab-nkp-01 ~]$ kubectl get cluster -A NAMESPACE NAME CLUSTERCLASS PHASE AGE VERSION default nkpm01 nkp-nutanix Provisioned 2d17h v1.29.6 nkpw01-zmwt9 nkpw01 nkp-nutanix Provisioned 20m v1.29.6
NKP ã®ãƒ€ãƒƒã‚·ãƒ¥ãƒœãƒ¼ãƒ‰ã«ã‚‚ã€ã“ã®ã‚¯ãƒ©ã‚¹ã‚¿ãŒè¡¨ç¤ºã•ã‚Œã¾ã™ã€‚
kubeconfig ã®å…¥æ‰‹
ãªãœã‹ nkp get kubeconfig コマンド㧠kubeconfig ãŒå–å¾—ã§ããªã‹ã£ãŸã®ã§ã€ä»Šå›žã¯ Secret ã‹ã‚‰ç›´æŽ¥å–å¾—ã—ã¾ã™ã€‚
ã“ã® Workload Cluster ã«å¯¾å¿œã™ã‚‹ Cluster リソース㮠Namespace ã§ã€Secret ã®ä¸€è¦§ã‚’を確èªã™ã‚‹ã¨ã€ã€Œï¼œã‚¯ãƒ©ã‚¹ã‚¿å>-kubeconfigã€ã¨ã„ㆠSecret ãŒä½œæˆã•ã‚Œã¦ã„ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ kubectl get secrets -n nkpw01-zmwt9 NAME TYPE DATA AGE kommander-karma-server-tls kubernetes.io/tls 4 21m kommander-kubecost-thanos-server-tls kubernetes.io/tls 4 21m kommander-thanos-server-tls kubernetes.io/tls 4 21m nkpw01-ca cluster.x-k8s.io/secret 2 21m nkpw01-encryption-config Opaque 1 21m nkpw01-etcd cluster.x-k8s.io/secret 2 21m nkpw01-kubeconfig cluster.x-k8s.io/secret 1 21m nkpw01-md-0-b6nnk-vtm8b-gw6hp cluster.x-k8s.io/secret 2 19m nkpw01-pbrn5-n72cj cluster.x-k8s.io/secret 2 21m nkpw01-pc-credentials Opaque 1 21m nkpw01-pc-credentials-for-csi Opaque 1 21m nkpw01-proxy cluster.x-k8s.io/secret 2 21m nkpw01-sa cluster.x-k8s.io/secret 2 21m sh.helm.release.v1.ca-01921d49-47ab-739a-84ac-d2be8113166c.v1 helm.sh/release.v1 1 19m sh.helm.release.v1.cluster-observer-3282254118.v1 helm.sh/release.v1 1 20m sh.helm.release.v1.karma-traefik-certs.v1 helm.sh/release.v1 1 21m sh.helm.release.v1.kubecost-traefik-certs.v1 helm.sh/release.v1 1 21m sh.helm.release.v1.prometheus-traefik-certs.v1 helm.sh/release.v1 1 21m tls-root-ca Opaque 1 21m
nkpw01-kubeconfig Secret ã«å«ã¾ã‚Œã‚‹ kubeconfig ã®ãƒ‡ãƒ¼ã‚¿ã‚’ã€Base64 ã§ãƒ‡ã‚³ãƒ¼ãƒ‰ã—ã¦ãƒ•ã‚¡ã‚¤ãƒ«ã«ä¿å˜ã—ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ kubectl get secrets -n nkpw01-zmwt9 nkpw01-kubeconfig -o jsonpath={.data.value} | base64 -d > $HOME/nkpw01-kubeconfig
ã“ã‚Œã§ã€kubeconfig ファイルãŒå…¥æ‰‹ã§ãã¾ã—ãŸã€‚
[gowatana@lab-nkp-01 ~]$ kubectl --kubeconfig $HOME/nkpw01-kubeconfig config view
apiVersion: v1
clusters:
- cluster:
certificate-authority-data: DATA+OMITTED
server: https://192.168.12.205:6443
name: nkpw01
contexts:
- context:
cluster: nkpw01
user: nkpw01-admin
name: nkpw01-admin@nkpw01
current-context: nkpw01-admin@nkpw01
kind: Config
preferences: {}
users:
- name: nkpw01-admin
user:
client-certificate-data: DATA+OMITTED
client-key-data: DATA+OMITTED
kubectl ã‹ã‚‰ Workload Cluster ã«æŽ¥ç¶šã§ãã¾ã—ãŸã€‚
[gowatana@lab-nkp-01 ~]$ kubectl --kubeconfig $HOME/nkpw01-kubeconfig get nodes NAME STATUS ROLES AGE VERSION nkpw01-md-0-b6nnk-vtm8b-gw6hp NotReady <none> 21m v1.29.6 nkpw01-pbrn5-n72cj Ready control-plane 23m v1.29.6
nkp cluster type コマンドã§ã¯ã€ä»Šå›žä½œæˆã—㟠Workload Cluster ã¯ã€ŒAttachedã€ã¨è¡¨ç¤ºã•ã‚Œã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ nkp cluster type --kubeconfig $HOME/nkpw01-kubeconfig Attached
ã¡ãªã¿ã« kubeconfig ファイルã¯ã€nkp コマンドã§ä½œæˆã—㟠Workload Cluster ã§ã‚‚ダッシュボードã‹ã‚‰å…¥æ‰‹ã§ãã¾ã™ã€‚
Worklaod Cluster ã®å‰Šé™¤ï¼ˆnkp CLI)
nkp delete cluster ã®ã‚¯ãƒ©ã‚¹ã‚¿å‰Šé™¤ã¯ã€Management Cluster ã«æŽ¥ç¶šã—ã¦å®Ÿè¡Œã—ã¾ã™ã€‚ã“ã®ã¨ãã€Workspace ã§ã¯ãªã Namespace を指定ã—ã¾ã™ã€‚
[gowatana@lab-nkp-01 ~]$ nkp delete cluster --namespace=nkpw01-zmwt9 --cluster-name=nkpw01 ✓ Deleting cluster resources ✓ Waiting for cluster to be fully deleted Deleted nkpw01-zmwt9/nkpw01 cluster
以上。
