解决国内k8s的ingress-nginx镜像无法正常pull拉取问题

最新推荐文章于 2025-09-11 06:55:15 发布
原创 最新推荐文章于 2025-09-11 06:55:15 发布 · 2.2k 阅读 · 0 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#kubernetes #nginx #运维

文章描述了在Kubernetes集群中手动安装ingress-nginx控制器的详细步骤,包括下载yaml文件、修改配置、拉取镜像以及使用kubectl应用配置。过程中遇到了镜像拉取问题,使用了国内镜像源,并在执行安装时遇到错误,提示某些字段不可变。

主要参考 (1条消息) kubernetes安装ingress-nginx详细步骤_vampiresuper的博客-优快云博客

次要参考 (1条消息) 解决国内k8s的ingress-nginx镜像无法正常pull拉取问题_ingress 镜像_xxx_undefined的博客-优快云博客

1、下载ingress-nginx原始安装yaml文件,

··

C:\Users\jiangcheng>wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/cloud/deploy.yaml --2023-05-24 19:00:57-- https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/cloud/deploy.yaml Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 185.199.108.133, 185.199.109.133, 185.199.110.133, ... Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|185.199.108.133|:443... connected. HTTP request sent, awaiting response... 200 OK Length: 19299 (19K) [text/plain] Saving to: 'deploy.yaml' deploy.yaml 100%[============================================================================================>] 18.85K 92.7KB/s in 0.2s 2023-05-24 19:00:59 (92.7 KB/s) - 'deploy.yaml' saved [19299/19299]

··

拉取不到就复制这个,

··

apiVersion: v1 kind: Namespace metadata: name: ingress-nginx labels: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx --- # Source: ingress-nginx/templates/controller-serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx namespace: ingress-nginx automountServiceAccountToken: true --- # Source: ingress-nginx/templates/controller-configmap.yaml apiVersion: v1 kind: ConfigMap metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx-controller namespace: ingress-nginx data: allow-snippet-annotations: 'true' --- # Source: ingress-nginx/templates/clusterrole.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm name: ingress-nginx rules: - apiGroups: - '' resources: - configmaps - endpoints - nodes - pods - secrets - namespaces verbs: - list - watch - apiGroups: - '' resources: - nodes verbs: - get - apiGroups: - '' resources: - services verbs: - get - list - watch - apiGroups: - networking.k8s.io resources: - ingresses verbs: - get - list - watch - apiGroups: - '' resources: - events verbs: - create - patch - apiGroups: - networking.k8s.io resources: - ingresses/status verbs: - update - apiGroups: - networking.k8s.io resources: - ingressclasses verbs: - get - list - watch --- # Source: ingress-nginx/templates/clusterrolebinding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm name: ingress-nginx roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: ingress-nginx subjects: - kind: ServiceAccount name: ingress-nginx namespace: ingress-nginx --- # Source: ingress-nginx/templates/controller-role.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx namespace: ingress-nginx rules: - apiGroups: - '' resources: - namespaces verbs: - get - apiGroups: - '' resources: - configmaps - pods - secrets - endpoints verbs: - get - list - watch - apiGroups: - '' resources: - services verbs: - get - list - watch - apiGroups: - networking.k8s.io resources: - ingresses verbs: - get - list - watch - apiGroups: - networking.k8s.io resources: - ingresses/status verbs: - update - apiGroups: - networking.k8s.io resources: - ingressclasses verbs: - get - list - watch - apiGroups: - '' resources: - configmaps resourceNames: - ingress-controller-leader verbs: - get - update - apiGroups: - '' resources: - configmaps verbs: - create - apiGroups: - '' resources: - events verbs: - create - patch --- # Source: ingress-nginx/templates/controller-rolebinding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx namespace: ingress-nginx roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: ingress-nginx subjects: - kind: ServiceAccount name: ingress-nginx namespace: ingress-nginx --- # Source: ingress-nginx/templates/controller-service-webhook.yaml apiVersion: v1 kind: Service metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx-controller-admission namespace: ingress-nginx spec: type: ClusterIP ports: - name: https-webhook port: 443 targetPort: webhook appProtocol: https selector: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/component: controller --- # Source: ingress-nginx/templates/controller-service.yaml apiVersion: v1 kind: Service metadata: annotations: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx-controller namespace: ingress-nginx spec: type: LoadBalancer externalTrafficPolicy: Local ipFamilyPolicy: SingleStack ipFamilies: - IPv4 ports: - name: http port: 80 protocol: TCP targetPort: http appProtocol: http - name: https port: 443 protocol: TCP targetPort: https appProtocol: https selector: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/component: controller --- # Source: ingress-nginx/templates/controller-deployment.yaml apiVersion: apps/v1 kind: Deployment metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controller name: ingress-nginx-controller namespace: ingress-nginx spec: selector: matchLabels: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/component: controller revisionHistoryLimit: 10 minReadySeconds: 0 template: metadata: labels: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/component: controller spec: dnsPolicy: ClusterFirst containers: - name: controller image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a imagePullPolicy: IfNotPresent lifecycle: preStop: exec: command: - /wait-shutdown args: - /nginx-ingress-controller - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller - --election-id=ingress-controller-leader - --controller-class=k8s.io/ingress-nginx - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller - --validating-webhook=:8443 - --validating-webhook-certificate=/usr/local/certificates/cert - --validating-webhook-key=/usr/local/certificates/key securityContext: capabilities: drop: - ALL add: - NET_BIND_SERVICE runAsUser: 101 allowPrivilegeEscalation: true env: - name: POD_NAME valueFrom: fieldRef: fieldPath: metadata.name - name: POD_NAMESPACE valueFrom: fieldRef: fieldPath: metadata.namespace - name: LD_PRELOAD value: /usr/local/lib/libmimalloc.so livenessProbe: failureThreshold: 5 httpGet: path: /healthz port: 10254 scheme: HTTP initialDelaySeconds: 10 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 1 readinessProbe: failureThreshold: 3 httpGet: path: /healthz port: 10254 scheme: HTTP initialDelaySeconds: 10 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 1 ports: - name: http containerPort: 80 protocol: TCP - name: https containerPort: 443 protocol: TCP - name: webhook containerPort: 8443 protocol: TCP volumeMounts: - name: webhook-cert mountPath: /usr/local/certificates/ readOnly: true resources: requests: cpu: 100m memory: 90Mi nodeSelector: kubernetes.io/os: linux serviceAccountName: ingress-nginx terminationGracePeriodSeconds: 300 volumes: - name: webhook-cert secret: secretName: ingress-nginx-admission --- # Source: ingress-nginx/templates/controller-ingressclass.yaml # We don't support namespaced ingressClass yet # So a ClusterRole and a ClusterRoleBinding is required apiVersion: networking.k8s.io/v1 kind: IngressClass metadata: labels: helm.sh/chart: ingress-nginx-4.0.10 app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/version: 1.1.0 app.kubernetes.io/managed-by: Helm app.kubernetes.io/component: controlle

最低0.47元/天 解锁文章
sky_jiangcheng
关注
使用中国镜像替换Kubernetes Ingress-Nginx的官方镜像
ByteKnight的博客
09-08 1305
Kubernetes Ingress-Nginx是一个常用的开源Ingress控制器,它提供了负载均衡和路由规则等功能,用于将外部流量导入到Kubernetes集群中的服务。至此,你已成功将Ingress-Nginx的官方镜像替换为中国镜像源中的镜像。你可以在阿里云的镜像仓库中找到Ingress-Nginx镜像的替代版本。在选择镜像源时,建议参考可靠的中国镜像提供商,并确保所选镜像源的稳定性和安全性。这将更新Ingress-Nginx的Deployment,并将镜像替换为中国镜像源中的版本。
K8SIngress
wyx的博客
04-02 1645
和一个具体。
部署ingress-nginx(国内安装)
justlpf的专栏
08-11 8255
ingress-ngnix 国内阿里镜像安装步骤。
ingress-nginx构建流程:从源码到镜像
最新发布
gitblog_00896的博客
09-11 431
ingress-nginxKubernetes生态中最重要的Ingress Controller之一,负责处理集群入口流量路由。本文将深入解析其完整的构建流程,从源代码编译到最终Docker镜像生成,帮助开发者理解这一复杂但精密的构建体系。 ## 构建体系架构 ingress-nginx采用多阶段构建架构,主要包含以下核心组件: ```mermaid flowchart TD A[...
【服务发现--ingress
嘻哈记的运维学习之路
02-25 1645
Ingress 提供从集群外部到集群内服务的 HTTP 和 HTTPS 路由。流量路由由 Ingress 资源所定义的规则来控制。Ingress 是对集群中服务的外部访问进行管理的 API 对象,典型的访问方式是 HTTP。Ingress 可以提供负载均衡、SSL 终结和基于名称的虚拟托管。
k8s nginx-ingress镜像无法
m0_69047680的博客
01-07 1353
k8s nginx-ingress镜像无法
rancher 添加集群 添加节点 Internal error occurred: failed calling webhook “rancherauth.cattle.io“ 错误
天津托的博客
07-12 3877
Internal error occurred: failed calling webhook"rancherauth.cattle.io":Post https://rancher-webhook.cattle-system.svc:443/v1/webhook/validation?timeout=10s: x509: certificate has expired or is not yet valid
k8s部署ingress-nginx-controller
shi2jiao3的专栏
05-08 2128
registry.k8s.io/ingress-nginx/controller:v1.3.0 替换为 registry.cn-hangzhou.aliyuncs.com/sjr/ingress-nginx-controller:v1.3.0(此为通过下面方法下载到自己仓库的镜像)2、在阿里云容器镜像服务创建一个镜像仓库ingress-nginx-controller,并且需要绑定GitHub,如下图设置。对于k8s.gcr.io、gcr.io的镜像国内不能下载,可使用以下方法下载(
k8s安装Ingress-Nginx
huashetianzu的专栏
12-13 734
目前,DHorse()只支持Ingress-nginxIngress实现,下面介绍Ingress-nginx的安装过程。
Kubernetes Ingress-Nginx 升级记录
qq_36291550的博客
04-03 1106
Ingress-NginxKubernetes 生态中最常用的 Ingress Controller,负责将外部请求路由到集群内部的服务。在实际使用过程中,定期升级 Ingress-Nginx 以修复漏洞、增强功能、提高稳定性是非常重要的。在升级之前,建议备份当前 Ingress-Nginx 配置,以便在升级失败时快速回滚。,请确保选择与其兼容的 Ingress-Nginx 版本。安装的 Ingress-Nginx,可以通过下载最新的。例如,如果你的 Kubernetes 版本是。
Kubernetes 安装ingress-nginx镜像失败问题解决
z1299236067的博客
09-25 2440
Kubernetes 安装ingress-nginx镜像失败问题解决
nginx-ingress镜像
11-04
nginx-ingress镜像
ingress-nginx-controller(含镜像和代码).rar
10-28
这个使用方法去这篇博客:https://cuichongxin.blog.youkuaiyun.com/article/details/120184717
docker 镜像突然不了,教你解决
qq_65142821的博客
06-25 5186
最近我们可以发现,在Linux系统里不了镜像了,翻墙也不了,这时候我们可以有一个新的docker 镜像同步网站来解决这个问题
新版k8s镜像失败问题
m0_72363694的博客
07-12 5412
新版版从k8s1.23后放弃使用docker容器作为的默认运行时了,而是采用的containerd,使用时不在使用docker镜像,这就带来了一系列的问题解决镜像问题(原因外网屏蔽不到使用国内加速器)contained的配置文件在/etc/containerd/config.toml解决devops安装失败问题。查看安装器配置文件(devops已经关闭)找到如上registry的配置部分,加上阿里云的镜像加速配置。重启containerd。
生产环境k8s环境执行yaml文件部署ingress服务镜像不下来(所有其他的镜像失败均可以使用此方案解决)解决方案之一
热门推荐
前路无畏的博客
11-26 1万+
在生产环境,由于网络重重阻扰,很多时候我们很难拿到yaml中的镜像,下面以实际实例的形式介绍一种处理的方法。这里以此为例,一斑窥豹,让你知道怎么解决类似问题。 1. 问题提出 在k8s环境中需要安装ingress_nginx controller进行代理(具体为什么要装或者他是干什么的看到这个文章你应该知道了吧),ingress_nginx.yaml文件你应该不难拿到吧。即使如此,最后面会给出完整版的文字版执行的yaml,放在前面不太友好,哈哈哈! 如果几分钟pod还没有running状态,就使用命令看一
实际案例k8s镜像失败原因分析?
lbzrl的博客
04-15 2306
文章背景:paas平台,G行项目在部署过程中,其他所有服务的镜像正常成功,但就是还有一个微服务的镜像一直显示失败。
ingress-ningx.yaml 国内安装
yaobo2816的专栏
02-21 3234
ingress-ngnix 国内阿里镜像安装步骤。
ingress-nginx离线安装
03-22
helm pull ingress-nginx/ingress-nginx --version=4.0.17 --untar ``` 2. **准备 Docker 镜像**: 下载所需的容器镜像并将它们导出为 tar 文件以便后续导入到离线环境中的容器引擎中。以下是常用的镜像列表及其...
评论 1
成就一亿技术人!
拼手气红包6.0元
还能输入1000个字符
 
红包 添加红包
表情包 插入表情
表情包 代码片
 条评论被折叠 查看
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值