APISIX初体验-部署安装

最新推荐文章于 2025-06-17 17:21:03 发布
最新推荐文章于 2025-06-17 17:21:03 发布
阅读量2.9k 收藏 1
点赞数 1
CC 4.0 BY-SA版权
分类专栏: 网关APISIX 文章标签: 学习
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/I_T_T_I/article/details/88342816

1.从官网把apisix-docker仓库下载下来

git clone https://github.com/apache/apisix-docker.git
cd apisix-docker/example

2.找到docker-compose.yml文件,删除了一些暂时不用的配置

version: "3"
services:
  apisix-dashboard:
    image: apache/apisix-dashboard:2.13-alpine
    restart: always
    volumes:
    - ./dashboard_conf/conf.yaml:/usr/local/apisix-dashboard/conf/conf.yaml
    ports:
    - "9000:9000"
    networks:
      apisix:
  apisix:
    image: apache/apisix:2.14.1-alpine
    restart: always
    volumes:
      - ./apisix_log:/usr/local/apisix/logs
      - ./apisix_conf/config.yaml:/usr/local/apisix/conf/config.yaml:ro
    depends_on:
      - etcd
    ports:
      - "9080:9080/tcp"
      - "9091:9091/tcp"
      - "9443:9443/tcp"
      - "9092:9092/tcp"
    networks:
      apisix:
  etcd:
    image: bitnami/etcd:3.4.15
    restart: always
    volumes:
      - etcd_data:/bitnami/etcd
    environment:
      ETCD_ENABLE_V2: "true"
      ALLOW_NONE_AUTHENTICATION: "yes"
      ETCD_ADVERTISE_CLIENT_URLS: "http://0.0.0.0:2379"
      ETCD_LISTEN_CLIENT_URLS: "http://0.0.0.0:2379"
    ports:
      - "2379:2379/tcp"
    networks:
      apisix:
networks:
  apisix:
    driver: bridge
volumes:
  etcd_data:
    driver: local

我的服务器(10.10.10.2)目录结构如图

 etcd的配置文件

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

# This is the configuration file for the etcd server.

# Human-readable name for this member.
name: 'default'

# Path to the data directory.
data-dir:

# Path to the dedicated wal directory.
wal-dir:

# Number of committed transactions to trigger a snapshot to disk.
snapshot-count: 10000

# Time (in milliseconds) of a heartbeat interval.
heartbeat-interval: 100

# Time (in milliseconds) for an election to timeout.
election-timeout: 1000

# Raise alarms when backend size exceeds the given quota. 0 means use the
# default quota.
quota-backend-bytes: 0

# List of comma separated URLs to listen on for peer traffic.
listen-peer-urls: http://0.0.0.0:2380

# List of comma separated URLs to listen on for client traffic.
listen-client-urls: http://0.0.0.0:2379

# Maximum number of snapshot files to retain (0 is unlimited).
max-snapshots: 5

# Maximum number of wal files to retain (0 is unlimited).
max-wals: 5

# Comma-separated white list of origins for CORS (cross-origin resource sharing).
cors:

# List of this member's peer URLs to advertise to the rest of the cluster.
# The URLs needed to be a comma-separated list.
initial-advertise-peer-urls: http://0.0.0.0:2380

# List of this member's client URLs to advertise to the public.
# The URLs needed to be a comma-separated list.
advertise-client-urls: http://0.0.0.0:2379

# Discovery URL used to bootstrap the cluster.
discovery:

# Valid values include 'exit', 'proxy'
discovery-fallback: 'proxy'

# HTTP proxy to use for traffic to discovery service.
discovery-proxy:

# DNS domain used to bootstrap initial cluster.
discovery-srv:

# Initial cluster configuration for bootstrapping.
initial-cluster:

# Initial cluster token for the etcd cluster during bootstrap.
initial-cluster-token: 'etcd-cluster'

# Initial cluster state ('new' or 'existing').
initial-cluster-state: 'new'

# Reject reconfiguration requests that would cause quorum loss.
strict-reconfig-check: false

# Accept etcd V2 client requests
enable-v2: true

# Enable runtime profiling data via HTTP server
enable-pprof: true

# Valid values include 'on', 'readonly', 'off'
proxy: 'off'

# Time (in milliseconds) an endpoint will be held in a failed state.
proxy-failure-wait: 5000

# Time (in milliseconds) of the endpoints refresh interval.
proxy-refresh-interval: 30000

# Time (in milliseconds) for a dial to timeout.
proxy-dial-timeout: 1000

# Time (in milliseconds) for a write to timeout.
proxy-write-timeout: 5000

# Time (in milliseconds) for a read to timeout.
proxy-read-timeout: 0

client-transport-security:
  # Path to the client server TLS cert file.
  cert-file:

  # Path to the client server TLS key file.
  key-file:

  # Enable client cert authentication.
  client-cert-auth: false

  # Path to the client server TLS trusted CA cert file.
  trusted-ca-file:

  # Client TLS using generated certificates
  auto-tls: false

peer-transport-security:
  # Path to the peer server TLS cert file.
  cert-file:

  # Path to the peer server TLS key file.
  key-file:

  # Enable peer client cert authentication.
  client-cert-auth: false

  # Path to the peer server TLS trusted CA cert file.
  trusted-ca-file:

  # Peer TLS using generated certificates.
  auto-tls: false

# Enable debug-level logging for etcd.
debug: false

logger: zap

# Specify 'stdout' or 'stderr' to skip journald logging even when running under systemd.
log-outputs: [stderr]

# Force to create a new one member cluster.
force-new-cluster: false

auto-compaction-mode: periodic
auto-compaction-retention: "1"

dashboard的配置文件

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

conf:
  listen:
    host: 0.0.0.0     # `manager api` listening ip or host name
    port: 9000          # `manager api` listening port
  allow_list:           # If we don't set any IP list, then any IP access is allowed by default.
    - 0.0.0.0/0
  etcd:
    endpoints:          # supports defining multiple etcd host addresses for an etcd cluster
      - "http://10.10.10.2:2379"
                          # yamllint disable rule:comments-indentation
                          # etcd basic auth info
    # username: "root"    # ignore etcd username if not enable etcd auth
    # password: "123456"  # ignore etcd password if not enable etcd auth
    mtls:
      key_file: ""          # Path of your self-signed client side key
      cert_file: ""         # Path of your self-signed client side cert
      ca_file: ""           # Path of your self-signed ca cert, the CA is used to sign callers' certificates
    # prefix: /apisix     # apisix config's prefix in etcd, /apisix by default
  log:
    error_log:
      level: warn       # supports levels, lower to higher: debug, info, warn, error, panic, fatal
      file_path:
        logs/error.log  # supports relative path, absolute path, standard output
                        # such as: logs/error.log, /tmp/logs/error.log, /dev/stdout, /dev/stderr
    access_log:
      file_path:
        logs/access.log  # supports relative path, absolute path, standard output
                         # such as: logs/access.log, /tmp/logs/access.log, /dev/stdout, /dev/stderr
                         # log example: 2020-12-09T16:38:09.039+0800	INFO	filter/logging.go:46	/apisix/admin/routes/r1	{"status": 401, "host": "127.0.0.1:9000", "query": "asdfsafd=adf&a=a", "requestId": "3d50ecb8-758c-46d1-af5b-cd9d1c820156", "latency": 0, "remoteIP": "127.0.0.1", "method": "PUT", "errs": []}
authentication:
  secret:
    secret              # secret for jwt token generation.
                        # NOTE: Highly recommended to modify this value to protect `manager api`.
                        # if it's default value, when `manager api` start, it will generate a random string to replace it.
  expire_time: 3600     # jwt token expire time, in second
  users:                # yamllint enable rule:comments-indentation
    - username: admin   # username and password for login `manager api`
      password: 123456789
    - username: user
      password: 123456789

plugins:                          # plugin list (sorted in alphabetical order)
  - api-breaker
  - authz-keycloak
  - basic-auth
  - batch-requests
  - consumer-restriction
  - cors
  # - dubbo-proxy
  - echo
  # - error-log-logger
  # - example-plugin
  - fault-injection
  - grpc-transcode
  - hmac-auth
  - http-logger
  - ip-restriction
  - jwt-auth
  - kafka-logger
  - key-auth
  - limit-conn
  - limit-count
  - limit-req
  # - log-rotate
  # - node-status
  - openid-connect
  - prometheus
  - proxy-cache
  - proxy-mirror
  - proxy-rewrite
  - redirect
  - referer-restriction
  - request-id
  - request-validation
  - response-rewrite
  - serverless-post-function
  - serverless-pre-function
  # - skywalking
  - sls-logger
  - syslog
  - tcp-logger
  - udp-logger
  - uri-blocker
  - wolf-rbac
  - zipkin
  - server-info
  - traffic-split

apisix的配置文件

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#

apisix:
  node_listen: 9080              # APISIX listening port
  enable_ipv6: false

  allow_admin:                  # http://nginx.org/en/docs/http/ngx_http_access_module.html#allow
    - 0.0.0.0/0              # We need to restrict ip access rules for security. 0.0.0.0/0 is for test.

  admin_key:
    - name: "admin"
      key: 123456789
      role: admin                 # 命令行操作会使用到
    - name: "viewer"
      key: 123456789
      role: viewer
  
  enable_control: true
  control:
    ip: "0.0.0.0"
    port: 9092

etcd:
  host:                           # it's possible to define multiple etcd hosts addresses of the same etcd cluster.
    - "http://10.10.10.2:2379"     # multiple etcd address
  prefix: "/apisix"               # apisix configurations prefix
  timeout: 30                     # 30 seconds

然后执行

docker-compose up -d

3.登录使用

访问http://10.10.10.227:9000/,用户名密码:admin/123456789,开始使用

 

别再裸奔了,API 网关才是微服务的“正经门卫”——Kong 与 APISIX 实战指南
Echo_Wish
06-23 163
《别再裸奔了!Kong与APISIX网关实战指南》指出微服务裸奔暴露的隐患,强调API网关在安全治理中的核心作用。作者对比Kong(老牌稳定)和APISIX(国产高性能)的特性,演示快速搭建方法,列举生产级功能对比表(限流/认证/监控等),揭示网关作为"架构抽象层"的价值。最后给出5大实践建议:环境预置、配置管理、文档同步、插件节制和监控强化,呼吁将网关作为微服务的第一防线。全文通过真实案例说明缺乏网关将导致运维灾难,强调"门卫"对系统稳定性的关键作用。(149字)
【云原生网关】Apache ShenYu 使用详解
congge
06-07 4412
apache shenyu使用总结
docker安装apisix全教程包含windows和linux
大哥的博客
09-28 4808
docker安装apisix全教程包含windows和linux
安装apisix详细教程
leaning_java的博客
12-13 1932
安装apisix
APISIX+etcd高可用集群部署方案详解
虽非技冠群英首,愿与同道共长歌; 大鹏一日同风起,扶摇直上九万里;
06-17 1014
APISIX高可用集群部署方案详解
API服务网关实现之APISIX安装部署
热门推荐
黑马程序员官方博客
04-10 1万+
一、APISIX相关介绍 1、安全网关 安全网关设置的目的是防止Internet或外网不安全因素蔓延到自己企业或组织的内部网 。 安全网关在应用层和网络层上面都有防火墙的身影。 其范围从协议级过滤到十分复杂的应用级过滤等。推荐了解传智播客linux云计算+运维开发课程。 API网关:整个流量总入口,能够进行集中管理和控制! 2、apisix介绍 APISIX 是一个云原生、高性能、可...
APISIX安装和使用
weixin_40618306的博客
03-22 5236
上图是Dashboard平台的一个全景,它的功能简单紧凑,下面介绍每个菜单的功能;仪表盘:监测网关请求数据、ETCD数据等,同时还支持自定义监控对象的数据;路由:路由(Route)是请求的入口点,它定义了客户端请求与服务之间的匹配规则。路由可以与服务(Service)、上游(upstream)关联,一个服务可对应一组路由,一个路由可对应一个上游对象(一组后端服务节点),因此,每个匹配到路由的请求将被网关代理到路由绑定的上游服务中。服务:服务由路由中公共的插件配置、上游目标信息组合而成。
apisix 安装
weixin_44160003的博客
07-21 993
本文基于docker-compose安装APISIX, 所以需要提前安装好docker、docker-compose。其中example目录结构如下:[外链图片转存失败,源站可能有防盗链机制,建议将图片保存下来直接上传(img-LBiI6wSu-1689926081871)(en-resource://database/726:1)]4.docker-compose操作5.附docker操作。
APISIX安装
weixin_41558221的博客
06-01 881
【代码】APISIX安装
基于 TiDB 的 Apache APISIX 高可用配置中心的最佳实践
ApacheAPISIX的博客
04-22 1873
项目背景 什么是 Apache APISIX? API 网关作为微服务架构中的重要组件,是流量的核心出入口,用于统一处理和业务相关的请求,可有效解决海量请求、恶意访问等问题,保障业务安全性与稳定性。 作为开源的云原生 API 网关,Apache APISIX 兼具动态、实时、高性能三大优势,可提供负载均衡、动态上游、灰度发布、服务熔断、鉴权认证、可观测性等丰富的流量管理功能,帮助企业快速、安全地处理 API 和微服务流量,可应用于网关、Kubernetes Ingress 和服务网格等场景。 同时,Apac
APISIX 在 API 和微服务领域的探索
ApacheAPISIX的博客
07-22 616
作为 API 网关,Apache APISIX 可以帮助企业快速、安全地处理 API 和微服务流量,应用于网关、Kubernetes Ingress 和服务网格等场景。利用 APISIX 既可以处理从客户端到服务端的南北向流量,也可以处理从各个企业微服务之间的东西向流量。
想在 KubeSphere 中进行自定义监控?来瞧瞧这
ApacheAPISIX的博客
12-07 2118
本文详细介绍如何「将 Apache APISIX Ingress 网关接入 KubeSphere 并进行自定义监控」。
APISIX部署
qq_36382225的博客
06-09 767
apisix
apisix安装
red_sky_blue的专栏
07-17 769
apisix & apisix-dashboard
五、CentOS7/CentOS8安装APISIX(1)
Daniel的博客
12-29 1363
Apache APISIX 是一个动态、实时、高性能的云原生 API 网关,提供了负载均衡、动态上游、灰度发布、服务熔断、身份认证、可观测性等丰富的流量管理功能。可以使用Apache APISIX 处理传统的南北向流量,也可以处理服务间的东西向流量。同时,它也支持作为 K8s Ingress Controller 来使用。Apache APlSlX 官网:APISIX主要特性。
Apache APISIX 安装指南:从入门到精通
gitblog_00452的博客
06-03 555
Apache APISIX 安装指南:从入门到精通 前言 Apache APISIX 是一个高性能、可扩展的云原生 API 网关,作为微服务架构中的重要组件,它提供了丰富的流量管理功能。本文将全面介绍 APISIX 的多种安装方式,帮助开发者根据自身环境选择最合适的安装方案。 安装前准备 在安装 APISIX 之前,需要确保系统满足以下基本要求: 操作系统:支持 Linux、macOS 等主流操...
Apisix网关单机部署
Answer0902的博客
01-03 1342
apisix网关
apisix安装详解(版本2.7)
蓝亚之舟的博客
09-09 1万+
1、api网关介绍 api网关现在使用的是一个开源项目(apisix),然后在其上进行的二次开发(修改配置和增加插件),api网关本身相当于是代理服务器,或者说其本质就是一个代理服务器。 apisix的github网址:https://github.com/apache/apisix 使用java编写apisix插件:https://apisix.apache.org/blog/2021/06/21/use-Java-to-write-Apache-APISIX-plugins 中文官网地址:https:
apisix 本地开发环境部署
CoLiuRs
08-30 761
本地开发环境部署可以采用 docker-compose 部署,配置文件如下。将apisix 在本地部署起来。
docker命令重启apisixapisix-dashboard
最新发布
06-26
<think>我们正在处理用户的问题:用户希望使用Docker命令重启APISIXAPISIXDashboard服务。根据用户的问题,我们需要提供两个dockerrestart命令:一个用于重启APISIX容器,另一个用于重启APISIXDashboard容器。注意:容器名称通常由用户指定,但这里用户明确提到了“apisix”和“apisix-dashboard”,因此我们假设容器名称就是这两个。步骤:1.重启APISIX容器:`dockerrestartapisix`2.重启APISIXDashboard容器:`dockerrestartapisix-dashboard`但是,请注意,如果用户自定义了容器名称,那么需要替换成实际的容器名称。另外,我们也可以提供一些额外的信息:-如何查看正在运行的容器:`dockerps`-如果重启后需要查看日志,可以使用:`dockerlogsapisix`和`dockerlogsapisix-dashboard`同时,考虑到用户可能对容器名称不确定,我们可以建议用户先使用`dockerps`来确认容器名称。因此,回答结构如下:1.说明重启命令。2.提醒用户确认容器名称。3.提供查看容器状态的命令。4.提供查看日志的命令(可选,以备重启后出现问题)。注意:我们不需要引用,因为用户的问题很直接,没有涉及之前的引用内容。但如果有必要,我们可以提及DockerEngineAPI(引用[1])作为背景,但这里不是必须。然而,用户的问题中提到了两个引用,但这两个引用似乎与当前问题无关:引用[1]是关于DockerEngineAPI的,引用[2]是关于Kubernetes中Istio的端口配置。因此,我们不必在回答中引用它们。最后,按照系统指令,我们需要生成相关问题。生成相关问题:1.如何查看Docker容器的运行状态?2.如何查看Docker容器的日志?3.如果容器重启失败,应该怎么排查?4.如何设置Docker容器开机自动启动?注意:系统要求使用中文回答。因此,完整回答如下:</think>### 使用 Docker 命令重启 APISIXAPISIX Dashboard #### 重启命令 1. **重启 APISIX 容器** 执行以下命令(假设容器名为 `apisix`): ```bash docker restart apisix ``` 若容器名称不同,请替换为实际容器名(可通过 `docker ps` 查看)。 2. **重启 APISIX Dashboard 容器** 执行以下命令(假设容器名为 `apisix-dashboard`): ```bash docker restart apisix-dashboard ``` #### 操作说明 - **验证重启状态** 使用命令检查容器状态: ```bash docker ps -f "name=apisix" -f "name=apisix-dashboard" ``` 若状态显示 `Up` 表示重启成功。 - **查看日志(可选)** 若服务异常,可查看日志: ```bash docker logs apisix # APISIX 日志 docker logs apisix-dashboard # Dashboard 日志 ``` #### 注意事项 1. 容器名称需与实际部署一致(可通过 `docker ps` 查询)。 2. 若使用 Docker Compose,建议通过 `docker-compose restart` 管理服务组。 3. 重启会导致服务短暂中断,建议在低峰期操作。 --- ### 相关问题 1. 如何查看 APISIX 容器的实时运行日志? 2. Docker 容器重启失败的可能原因有哪些? 3. 如何配置 APISIX 容器实现开机自启动? 4. 除 `restart` 外,还有哪些 Docker 命令可管理服务状态? > 提示:Docker Engine API 提供了完整的容器管理接口,可通过 HTTP 请求实现类似功能[^1]。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值