我的书签
添加书签
移除书签离线安装
开始下方步骤之前,请先参阅准备工作。
您可以使用 Harbor 或者其他任意私有镜像仓库。本教程以 Docker 仓库作为示例,并使用(如果您有自己的私有镜像仓库,可以跳过这一步)。
执行以下命令生成您自己的证书:
-newkey rsa:4096 -nodes -sha256 -keyout certs/domain.key \-x509 -days 36500 -out certs/domain.crt
当您生成自己的证书时,请确保在字段
Common Name中指定一个域名。例如,本示例中该字段被指定为dockerhub.kubekey.local。
执行以下命令启动 Docker 仓库:
docker run -d \--restart=always \--name registry \-v "$(pwd)"/certs:/certs \-v /mnt/registry:/var/lib/registry \-e REGISTRY_HTTP_ADDR=0.0.0.0:443 \-e REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt \-e REGISTRY_HTTP_TLS_KEY=/certs/domain.key \-p 443:443 \registry:2
备注
Docker 使用 /var/lib/docker 作为默认路径来存储所有 Docker 相关文件(包括镜像)。建议您添加附加存储卷,分别给 /var/lib/docker 和 /mnt/registry 挂载至少 100G。请参见 fdisk 的参考命令。
在
/etc/hosts中添加一个条目,将主机名(即仓库域名;在本示例中是dockerhub.kubekey.local)映射到您机器的私有 IP 地址,如下所示。# docker registry192.168.0.2 dockerhub.kubekey.local
执行以下命令,复制证书到指定目录,并使 Docker 信任该证书。
mkdir -p /etc/docker/certs.d/dockerhub.kubekey.local
cp certs/domain.crt /etc/docker/certs.d/dockerhub.kubekey.local/ca.crt
备注
证书的路径与域名相关联。当您复制路径时,如果与上面设置的路径不同,请使用实际域名。
步骤 2:准备安装镜像
当您在离线环境中安装 KubeSphere 时,需要事先准备一个包含所有必需镜像的镜像包。
使用以下命令从能够访问互联网的机器上下载镜像清单文件
images-list.txt:备注
该文件根据不同的模块列出了
##+modulename下的镜像。您可以按照相同的规则把自己的镜像添加到这个文件中。要查看完整文件,请参见附录。下载
offline-installation-tool.sh。curl -L -O https://github.com/kubesphere/ks-installer/releases/download/v3.2.0/offline-installation-tool.sh
使
.sh文件可执行。chmod +x offline-installation-tool.sh
您可以执行命令
./offline-installation-tool.sh -h来查看如何使用脚本:[email protected]:/home/ubuntu# ./offline-installation-tool.sh -hUsage:./offline-installation-tool.sh [-l IMAGES-LIST] [-d IMAGES-DIR] [-r PRIVATE-REGISTRY] [-v KUBERNETES-VERSION ]Description:-b : save kubernetes' binaries.-d IMAGES-DIR : the dir of files (tar.gz) which generated by `docker save`. default: ./kubesphere-images-l IMAGES-LIST : text file with list of images.-r PRIVATE-REGISTRY : target private registry:port.-s : save model will be applied. Pull the images in the IMAGES-LIST and save images as a tar.gz file.-v KUBERNETES-VERSION : download kubernetes' binaries. default: v1.17.9-h : usage message
在
offline-installation-tool.sh中拉取镜像。./offline-installation-tool.sh -s -l images-list.txt -d ./kubesphere-images
备注
您可以根据需要选择拉取的镜像。例如,如果已经有一个 Kubernetes 集群了,您可以在
images-list.text中删除##k8s-images和在它下面的相关镜像。
将打包的镜像文件传输至您的本地机器,并运行以下命令把它推送至仓库。
./offline-installation-tool.sh -l images-list.txt -d ./kubesphere-images -r dockerhub.kubekey.local
备注
步骤 4:下载部署文件
与在现有 Kubernetes 集群上在线安装 KubeSphere 相似,您也需要事先下载 cluster-configuration.yaml 和 kubesphere-installer.yaml。
执行以下命令下载这两个文件,并将它们传输至您充当任务机的机器,用于安装。
编辑
cluster-configuration.yaml添加您的私有镜像仓库。例如,本教程中的仓库地址是dockerhub.kubekey.local,将它用作.spec.local_registry的值,如下所示:spec:persistence:storageClass: ""authentication:jwtSecret: ""local_registry: dockerhub.kubekey.local # Add this line manually; make sure you use your own registry address.
备注
您可以在该 YAML 文件中启用可插拔组件,体验 KubeSphere 的更多功能。有关详情,请参考启用可插拔组件。
编辑完成后保存
cluster-configuration.yaml。使用以下命令将ks-installer替换为您自己仓库的地址。sed -i "s#^\s*image: kubesphere.*/ks-installer:.*# image: dockerhub.kubekey.local/kubesphere/ks-installer:v3.0.0#" kubesphere-installer.yaml
警告
命令中的仓库地址是
dockerhub.kubekey.local。请确保使用您自己仓库的地址。
确定完成上面所有步骤后,您可以执行以下命令。
kubectl apply -f kubesphere-installer.yamlkubectl apply -f cluster-configuration.yaml
步骤 6:验证安装
安装完成后,您会看到以下内容:
######################################################## Welcome to KubeSphere! ########################################################Console: http://192.168.0.2:30880Account: adminPassword: [email protected]1. After logging into the console, please check themonitoring status of service components inthe "Cluster Management". If any service is notready, please wait patiently until all componentsare ready.2. Please modify the default password after login.#####################################################https://kubesphere.io 20xx-xx-xx xx:xx:xx#####################################################
现在,您可以通过 http://{IP}:30880 使用默认帐户和密码 admin/[[email protected]](https://kubesphere.io/cdn-cgi/l/email-protection) 访问 KubeSphere 的 Web 控制台。
备注
##k8s-imageskubesphere/kube-apiserver:v1.22.1kubesphere/kube-controller-manager:v1.22.1kubesphere/kube-proxy:v1.22.1kubesphere/kube-scheduler:v1.22.1kubesphere/kube-apiserver:v1.21.5kubesphere/kube-controller-manager:v1.21.5kubesphere/kube-proxy:v1.21.5kubesphere/kube-scheduler:v1.21.5kubesphere/kube-apiserver:v1.20.10kubesphere/kube-controller-manager:v1.20.10kubesphere/kube-proxy:v1.20.10kubesphere/kube-scheduler:v1.20.10kubesphere/kube-apiserver:v1.19.9kubesphere/kube-controller-manager:v1.19.9kubesphere/kube-proxy:v1.19.9kubesphere/kube-scheduler:v1.19.9kubesphere/pause:3.5kubesphere/pause:3.4.1coredns/coredns:1.8.0calico/cni:v3.20.0calico/kube-controllers:v3.20.0calico/node:v3.20.0calico/pod2daemon-flexvol:v3.20.0calico/typha:v3.20.0kubesphere/flannel:v0.12.0openebs/provisioner-localpv:2.10.1openebs/linux-utils:2.10.0kubesphere/k8s-dns-node-cache:1.15.12##kubesphere-imageskubesphere/ks-installer:v3.2.0kubesphere/ks-apiserver:v3.2.0kubesphere/ks-console:v3.2.0kubesphere/ks-controller-manager:v3.2.0kubesphere/kubectl:v1.20.0kubesphere/kubefed:v0.8.1kubesphere/tower:v0.2.0kubesphere/kubectl:v1.19.1minio/minio:RELEASE.2019-08-07T01-59-21Zminio/mc:RELEASE.2019-08-07T23-14-43Zcsiplugin/snapshot-controller:v4.0.0kubesphere/nginx-ingress-controller:v0.48.1mirrorgooglecontainers/defaultbackend-amd64:1.4kubesphere/metrics-server:v0.4.2redis:5.0.12-alpinehaproxy:2.0.22-alpinealpine:3.14osixia/openldap:1.3.0kubesphere/netshoot:v1.0##kubeedge-imageskubeedge/cloudcore:v1.7.2kubesphere/edge-watcher:v0.1.1kubesphere/edge-watcher-agent:v0.1.0##gatekeeper-imagesopenpolicyagent/gatekeeper:v3.5.2##openpitrix-imageskubesphere/openpitrix-jobs:v3.2.0##kubesphere-devops-imageskubesphere/devops-apiserver:v3.2.0kubesphere/devops-controller:v3.2.0kubesphere/devops-tools:v3.2.0kubesphere/ks-jenkins:v3.2.0-2.249.1jenkins/jnlp-slave:3.27-1kubesphere/builder-base:v3.2.0kubesphere/builder-go:v3.2.0kubesphere/builder-go:v3.2.0kubesphere/s2ioperator:v3.2.0kubesphere/s2irun:v3.2.0kubesphere/s2i-binary:v3.2.0kubesphere/tomcat85-java11-centos7:v3.2.0kubesphere/tomcat85-java11-runtime:v3.2.0kubesphere/tomcat85-java8-centos7:v3.2.0kubesphere/tomcat85-java8-runtime:v3.2.0kubesphere/java-11-centos7:v3.2.0kubesphere/java-8-centos7:v3.2.0kubesphere/java-8-runtime:v3.2.0kubesphere/java-11-runtime:v3.2.0kubesphere/nodejs-8-centos7:v3.2.0kubesphere/nodejs-6-centos7:v3.2.0kubesphere/nodejs-4-centos7:v3.2.0kubesphere/python-36-centos7:v3.2.0kubesphere/python-35-centos7:v3.2.0kubesphere/python-34-centos7:v3.2.0kubesphere/python-27-centos7:v3.2.0##kubesphere-monitoring-imagesjimmidyson/configmap-reload:v0.3.0prom/prometheus:v2.26.0kubesphere/prometheus-config-reloader:v0.43.2kubesphere/prometheus-operator:v0.43.2kubesphere/kube-rbac-proxy:v0.8.0kubesphere/kube-state-metrics:v1.9.7prom/node-exporter:v0.18.1kubesphere/k8s-prometheus-adapter-amd64:v0.6.0prom/alertmanager:v0.21.0thanosio/thanos:v0.18.0grafana/grafana:7.4.3kubesphere/kube-rbac-proxy:v0.8.0kubesphere/notification-manager-operator:v1.4.0kubesphere/notification-manager:v1.4.0kubesphere/notification-tenant-sidecar:v3.2.0##kubesphere-logging-imageskubesphere/elasticsearch-curator:v5.7.6kubesphere/elasticsearch-oss:6.7.0-1kubesphere/fluentbit-operator:v0.11.0docker:19.03kubesphere/fluent-bit:v1.8.3kubesphere/log-sidecar-injector:1.1elastic/filebeat:6.7.0kubesphere/kube-events-operator:v0.3.0kubesphere/kube-events-exporter:v0.3.0kubesphere/kube-events-ruler:v0.3.0kubesphere/kube-auditing-operator:v0.2.0kubesphere/kube-auditing-webhook:v0.2.0##istio-imagesistio/pilot:1.11.1istio/proxyv2:1.11.1jaegertracing/jaeger-operator:1.27jaegertracing/jaeger-agent:1.27jaegertracing/jaeger-collector:1.27jaegertracing/jaeger-query:1.27jaegertracing/jaeger-es-index-cleaner:1.27kubesphere/kiali-operator:v1.38.1kubesphere/kiali:v1.38##example-imagesbusybox:1.31.1nginx:1.14-alpinejoosthofman/wget:1.0nginxdemos/hello:plain-textwordpress:4.8-apachemirrorgooglecontainers/hpa-example:latestjava:openjdk-8-jre-alpinefluent/fluentd:v1.4.2-2.0perl:latestkubesphere/examples-bookinfo-productpage-v1:1.16.2kubesphere/examples-bookinfo-reviews-v1:1.16.2kubesphere/examples-bookinfo-reviews-v2:1.16.2kubesphere/examples-bookinfo-details-v1:1.16.2kubesphere/examples-bookinfo-ratings-v1:1.16.3##weave-scope-images
