keepalived-cloud-provider

最新推荐文章于 2025-05-11 14:09:53 发布
转载 最新推荐文章于 2025-05-11 14:09:53 发布 · 390 阅读 · 0

本文介绍了一种在Kubernetes环境中实现负载均衡的方法,通过使用keepalived-cloud-provider和kube-keepalived-vip组件,可以在指定CIDR范围内自动创建负载均衡IP地址,使裸金属环境下的服务能够使用LoadBalancer类型。

This project is in alpha state, and should be used with caution. Whilst it is quite simple, there are currently minimal unit tests and no integration tests. Contributions are very welcome.

keepalived-cloud-provider is an out-of-tree Kubernetes cloud provider implementation (more info). It will manage and automatically update a ConfigMap for kube-keepalived-vip, which will then automatically create load balanced IP addresses in the specified CIDR. This allows users in bare-metal environments to use services with type: LoadBalancer set.

This is perfect if you want to run Kubernetes in network in which you have a routable CIDR that you want to expose your services in.

Getting started

To use the cloud provider, we'll need to do a few things:

  • Install kube-keepalived-vip
  • Set --cloud-provider=external on our kube-controller-manager master component
  • Deploy keepalived-cloud-provider
  • Create a service with type: LoadBalancer!

Install kube-keepalived-vip

Full instructions are available in the kube-keepalived-vip repository.

Briefly, we simply need to create a DaemonSet:

$ kubectl create -f vip-daemonset.yaml
apiVersion: extensions/v1beta1
kind: DaemonSet
metadata:
  name: kube-keepalived-vip
  namespace: kube-system
spec:
  template:
    metadata:
      labels:
        name: kube-keepalived-vip
    spec:
      hostNetwork: true
      containers:
        - image: gcr.io/google_containers/kube-keepalived-vip:0.9
          name: kube-keepalived-vip
          imagePullPolicy: Always
          securityContext:
            privileged: true
          volumeMounts:
            - mountPath: /lib/modules
              name: modules
              readOnly: true
            - mountPath: /dev
              name: dev
          # use downward API
          env:
            - name: POD_NAME
              valueFrom:
                fieldRef:
                  fieldPath: metadata.name
            - name: POD_NAMESPACE
              valueFrom:
                fieldRef:
                  fieldPath: metadata.namespace
          # to use unicast
          args:
          - --services-configmap=kube-system/vip-configmap
          # unicast uses the ip of the nodes instead of multicast
          # this is useful if running in cloud providers (like AWS)
          #- --use-unicast=true
      volumes:
        - name: modules
          hostPath:
            path: /lib/modules
        - name: dev
          hostPath:
            path: /dev
      nodeSelector:
        # type: worker # adjust this to match your worker nodes
---
## We also create an empty ConfigMap to hold our config
apiVersion: v1
kind: ConfigMap
metadata:
  name: vip-configmap
  namespace: kube-system
data:

Configure kube-controller-manager

In order to use the currently alpha external cloud provider functionality, we need to set a flag on the kube-controller-managercomponent. How to do this depends on how you deployed your cluster, but if deployed with kubeadm you should edit/etc/kubernetes/manifests/kube-controller-manager.yaml. and add --cloud-provider external to the command section.

If you are using the kubeadm config file, then the following fragment will enable the external cloud provider.

controllerManagerExtraArgs:
  cloud-provider: external

Deploy keepalived-cloud-provider

keepalived-cloud-provider can be deployed with a simple Kubernetes Deployment, and performs leader election like other kubernetes master components. It is therefore safe to run multiple replicas of the keepalived-cloud-provider pod.

apiVersion: apps/v1beta1
kind: Deployment
metadata:
  labels:
    app: keepalived-cloud-provider
  name: keepalived-cloud-provider
  namespace: kube-system
spec:
  replicas: 1
  revisionHistoryLimit: 2
  selector:
    matchLabels:
      app: keepalived-cloud-provider
  strategy:
    type: RollingUpdate
  template:
    metadata:
      annotations:
        scheduler.alpha.kubernetes.io/critical-pod: ""
        scheduler.alpha.kubernetes.io/tolerations: '[{"key":"CriticalAddonsOnly", "operator":"Exists"}]'
      labels:
        app: keepalived-cloud-provider
    spec:
      containers:
      - name: keepalived-cloud-provider
        image: quay.io/munnerz/keepalived-cloud-provider:0.0.1
        imagePullPolicy: IfNotPresent
        env:
        - name: KEEPALIVED_NAMESPACE
          value: kube-system
        - name: KEEPALIVED_CONFIG_MAP
          value: vip-configmap
        - name: KEEPALIVED_SERVICE_CIDR
          value: 10.210.38.100/26 # pick a CIDR that is explicitly reserved for keepalived
        volumeMounts:
        - name: certs
          mountPath: /etc/ssl/certs
        resources:
          requests:
            cpu: 200m
        livenessProbe:
          httpGet:
            path: /healthz
            port: 10252
            host: 127.0.0.1
          initialDelaySeconds: 15
          timeoutSeconds: 15
          failureThreshold: 8
      volumes:
      - name: certs
        hostPath:
          path: /etc/ssl/certs

Create a service

Once keepalived-cloud-provider is up and running, you should be able to create service with type: LoadBalancer:

$ kubectl expose deployment example-com --name=example-com --type=LoadBalancer

keepalived-cloud-provider will also honour the loadBalancerIp field in a service.spec, and will configure a load balancer with the provided IP regardless whether it is within the KEEPALIVED_SERVICE_CIDR

$ kubectl get services
NAME              CLUSTER-IP       EXTERNAL-IP    PORT(S)        AGE
test              10.98.31.230     10.210.38.66   80:31877/TCP   3s
test2             10.107.177.153   10.210.38.65   80:31261/TCP   12m

Advanced: Configure forwarding method for the service

The kube-keepalived-vip service supports both the NAT and DR methods of IPVS forwarding for the service traffic. The default forwarding method is NAT. Depending on your network topology, you may need to change that to DR (direct routing). To change this globally, you can set the environment variable KEEPALIVED_DEFAULT_FORWARD_METHOD to NAT or DR. To change it on a per service basis, then specify the method via the k8s.co/keepalived-forward-method annotation on the service as shown below:

---
apiVersion: v1
kind: Service
metadata:
  name: nginx
  labels:
    k8s-app: nginx
  annotations:
    k8s.co/keepalived-forward-method: DR
spec:
  type: LoadBalancer
  ports:
  - port: 443
    targetPort: 8080
    protocol: TCP
    name: http
  selector:
    k8s-app: nginx

More information on the differences between NAT and DR methods can be found in the Keepalived documentation

IBM Cloud MariaDB + Galera Cluster + Keepalived 高可用自建
weixin_42599323的博客
12-11 1058
因为IBM Cloud Database一直未供应mysql或mariadb数据库(PostgreSQL是其主推的关系型),出于用户业务需求,数据库自建未尝不是一种选择,而且自建费用(单机单实例+高可用+灾备),成本和性能上较PaaS托管也相差不多。 高可用从两个维度看,可行方案有很多:一是集群管理包括数据同步,主从切换,副本备份等, 比如DRBD,MHA,MMM,Galera等(当然DRBD这种块级别主从复制提供高水准的数据一致性,略硬核暂不考虑);另一个访问高可用比如haproxy,keepalived
K8s脱坑前的挣扎——k8s群集部署--多节点及高可用(nginx负载均衡+keepalived双机热备)
weixin_45724795的博客
05-06 2251
前言:本次部署将在单节点之上增加一个master以及配置负载均衡和双机热备实现高可用,部署细节可参考前面三张单节点部署系列单节点部署1-Etcd、单节点部署2-Flannel、单节点部署3-Master及Node。 文章目录一、环境部署1.节点分配2.拓扑图二、部署1.master02部署1)环境优化2)部署3)启动2.部署负载均衡及双机热备1)负载均衡1.1 环境优化2)双机热备2.1 部署2....
keepalived-cloud-provider, Kubernetes 1.6 的kube keepalived vip云提供程序.zip
09-17
keepalived-cloud-provider, Kubernetes 1.6 的kube keepalived vip云提供程序 keepalived-cloud-provider 这里项目处于alpha状态,应谨慎使用。 虽然非常简单,但目前还没有最小的单元测试和集成测试。 捐赠非常欢迎。keepalived-cloud-provider是一个 out-o
使用keepalived-cloud-provider打造云原生的负载均衡解决方案
gitblog_00097的博客
06-11 324
使用keepalived-cloud-provider打造云原生的负载均衡解决方案 在这个数字化的时代,我们不断追求更高的服务可用性和性能。而作为Kubernetes生态中的一员——keepalived-cloud-provider,正是一种可以帮助你在裸机环境中实现高效负载均衡的利器。该项目处在alpha阶段,虽需谨慎使用,但其潜力和价值不容忽视。 项目介绍 keepalived-cloud-p...
k8s中搭建nginx的keepalived高可用集群
weixin_74001429的博客
04-13 794
安装 kube-keepalived-vip用于在集群的每个节点(或符合条件的节点)上部署Pod,相当于在目标节点上安装一个keepalived软件,使对应的节点拥有keepalived的功能。keepalived的核心作用是管理虚拟 IP(VIP)的高可用,而非直接管理应用(如 Nginx)的高可用。
kubernetes 设置 service 类型为loadbalance
资深架构师分享:深入剖析软件架构,探讨云计算、微服务、大数据等前沿技术。分享实践经验,促进技术交流,共同构建卓越系统。
05-03 1万+
安装kubernetes 用kubeadmin kubernetes的service Service 默认有两种方式可以提供服务 1. 集群内部 2. 集群外部(需要cloud provider提供负载均衡器的支持) 大家都知道,kubernetes在对外提供服务时候有3种方式 1. node proxy 2. node port 3. nginx ingress (需要lo...
k8s学习(二十九) k8s中部署kube-keepalived-vip
文若书生的专栏
02-05 3435
在当前的kubernetes群集中使用service为每个节点上分配一个端口(相同的端口),并将通过该端口的流量代理到端点。问题是它不能提供高可用性,因为需要事先知道正在运行的节点的IP地址,并且在发生故障的情况下,可以将Pod移到其他节点。 这是ipvs可以提供帮助的地方。 这个想法是为每个服务定义一个IP地址,以将其公开到Kubernetes集群之外,这里使用kube-keepalived-vip实现。 1、准备kube-keepaliaved-vip的镜像 docker pull aledbf/k.
k8s中ingress-nginx介绍
最新发布
筱long的博客
05-11 1748
Ingress是一种Kubernetes资源,用于将外部流量路由到Kubernetes集群内的服务。与NodePort相比,它提供了更高级别的路由功能和负载平衡,可以根据HTTP请求的路径、主机名、HTTP方法等来路由流量。可以说Ingress是为了弥补NodePort在流量路由方面的不足而生的。使用NodePort,只能将流量路由到一个具体的Service,并且必须使用Service的端口号来访问该服务。
第三章openstack环境部署 之 mariadb-galera-server
hellowangshao的专栏
01-03 1367
1、mariadb-galera-server 三个控制节点安装 yum install -y centos-release-openstack-stein yum install -y python-openstackclient openstack-selinux MySQL-python python2-PyMySQL yum install -y mariadb mariadb-gal...
kube-keepalived-vip:使用keepalived的Kubernetes虚拟IP地址
02-03
kube-keepalivedvip 使用Kubernetes虚拟IP地址 AKA“如何使用在kubernetes中设置虚拟IP地址”。 总览 在当前的kubernetes服务模型中有两种公开服务的方法: 创建一个云负载均衡器。 在群集中的每个节点上分配一个端口(相同的端口),并将通过该端口的流量代理到端点。 这样就行了。 那是什么问题呢? 问题是它不能提供高可用性,因为需要事先知道正在运行的节点的IP地址,并且在发生故障的情况下,可以将Pod移到其他节点。 这是ipvs可以提供帮助的地方。 这个想法是为每个服务定义一个IP地址,以将其公开到Kubernetes集群之外,并使用vrrp在本地网络中宣布此“映射”。 如果群集中有2个或更多Pod实例运行,则可以使用单个IP地址提供高可用性。 与公开一个或多个服务的或什么区别? 应该将其视为补充,而不是HAProxy或nginx的替代。 使用keepalived的目标是提供高可用性并确定如何实现公开的服务(之前我们知道IP地址与运行节点无关)。 例如,keepalived可用于使用一个IP地址在LAN中公开service-loa
keepalived-1.2.22
10-19
keepalived-1.2.22
实战:OpenELB的安装与使用-2023.3.7(测试成功)
weixin_39246554的博客
03-07 2474
k8s
K8S高可用集群之负载均衡器VIP(HAProxy、keepalived
学亮编程手记
04-09 3397
访问以下地址,用户名:admin,密码:password。
KubeSphere又开始对接公有云了,这一次是阿里云 SLB
weixin_44476161的博客
07-23 1924
一、原理图 二、集群修改配置 1.新增启动参数(仅限于 kubeadm 安装的 k8s 集群) (每个 master 节点都需要修改) 1.1kube-apiserver 修改路径: /etc/kubernetes/manifests 1.2 新增 kube-apiserver 参数(配置完自动重启) kube-apiserver.yaml - --cloud-provider=external #在这个下面加 spec: containers: - command: 2.新增 kube-
kube-keepalived-vip
mark's technic world
04-02 1427
kube-keepalived-vipKubernetes Virtual IP address/es using keepalivedAKA "how to set up virtual IP addresses in kubernetes using IPVS - The Linux Virtual Server Project".Overviewkubernetes v1.6 offers ...
容器云负载均衡之五:使用keepalived管理基于容器的IPVS
cloudvtech的博客
05-06 1513
一、前言IPVS的director上会绑定一个VIP,这个VIP是下游客户的唯一接入点,所以这个VIP需要满足高可用性的要求。另外,不同的VIP策略需要根据后端real server的部署状态进行更新。Keepalived是一个开源软件,主要提供loadbalancing(负载均衡)和 high-availability(高可用)功能,负载均衡实现需要依赖Linux的虚拟服务内核模块(IPVS),...
Keepalived之——Keepalived + Nginx 实现高可用 Web 负载均衡
热门推荐
冰河的专栏
05-29 10万+
一、Keepalived 简要介绍 Keepalived 是一种高性能的服务器高可用或热备解决方案, Keepalived 可以用来防止服务器单点故障的发生,通过配合 Nginx 可以实现 web 前端服务的高可用。 Keepalived 以 VRRP 协议为实现基础,用 VRRP 协议来实现高可用性(HA)。 VRRP(Virtual RouterRedundancy Protocol)协议
[Gitops--4] OpenELB
Q先生
04-24 904
整个访问过程需要k8s集群基础环境支持发送anonymous ARP/NDP packets.OpenELB是针对裸金属设计的,因此云环境下需要注意是否能够满足条件.图中有一个类型为 LoadBalancer 的 Service,其 VIP 为 192.168.31.210(和 k8s 的节点相同网段),后端有两个 pod(分别为 pod1 和 pod2)安装在 Kubernetes 集群中的 OpenELB 随机选择一个节点(图中为 worker 1)来处理 Service 请求。
keepalived-2.0.6源码压缩包发布
资源摘要信息:"keepalived-2.0.6.tar.gz.zip" 知识点: 1. keepalived软件介绍: keepalived是一个用于Linux平台的高可用性解决方案,它通过虚拟路由冗余协议(VRRP)来实现IP地址的漂移以及故障转移。keepalived也...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值