07.kubeadm 集群初始化命令指南10-upgrade

已于 2025-04-04 15:28:38 修改
阅读量487 收藏 4
点赞数 8
分类专栏: Kubernetes 文章标签: kubernetes 容器 云原生
于 2025-04-04 15:27:33 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/weixin_39749311/article/details/146998868
版权

kubeadm upgrade 命令使用指南

kubeadm upgrade 是用于将 Kubernetes 集群平滑升级到新版本的工具。以下是该命令的一些关键使用说明和示例:

一、核心子命令解析

1. 升级计划: plan

使用 kubeadm upgrade plan 检查哪些版本可以升级到,并验证当前集群是否可升级。此命令还会显示一个包含组件配置版本状态的表格

kubeadm upgrade plan <目标版本>

示例输出会显示可用的升级路径及预检结果。

执行结果

root@k8s-master01:~# kubeadm upgrade plan 
[preflight] Running pre-flight checks.
[upgrade/config] Reading configuration from the "kubeadm-config" ConfigMap in namespace "kube-system"...
[upgrade/config] Use 'kubeadm init phase upload-config --config your-config.yaml' to re-upload it.
[upgrade] Running cluster health checks
[upgrade] Fetching available versions to upgrade to
[upgrade/versions] Cluster version: 1.32.2
[upgrade/versions] kubeadm version: v1.32.2
[upgrade/versions] Target version: v1.32.3
[upgrade/versions] Latest version in the v1.32 series: v1.32.3

Components that must be upgraded manually after you have upgraded the control plane with 'kubeadm upgrade apply':
COMPONENT   NODE           CURRENT   TARGET
kubelet     k8s-master02   v1.32.1   v1.32.3
kubelet     k8s-master01   v1.32.3   v1.32.3
kubelet     k8s-master03   v1.32.3   v1.32.3

Upgrade to the latest version in the v1.32 series:

COMPONENT                 NODE           CURRENT    TARGET
kube-apiserver            k8s-master01   v1.32.2    v1.32.3
kube-apiserver            k8s-master02   v1.32.2    v1.32.3
kube-apiserver            k8s-master03   v1.32.2    v1.32.3
kube-controller-manager   k8s-master01   v1.32.2    v1.32.3
kube-controller-manager   k8s-master02   v1.32.2    v1.32.3
kube-controller-manager   k8s-master03   v1.32.2    v1.32.3
kube-scheduler            k8s-master01   v1.32.2    v1.32.3
kube-scheduler            k8s-master02   v1.32.2    v1.32.3
kube-scheduler            k8s-master03   v1.32.2    v1.32.3
kube-proxy                               1.32.2     v1.32.3
CoreDNS                                  v1.11.3    v1.11.3
etcd                      k8s-master01   3.5.16-0   3.5.16-0
etcd                      k8s-master02   3.5.16-0   3.5.16-0
etcd                      k8s-master03   3.5.16-0   3.5.16-0

You can now apply the upgrade by executing the following command:

	kubeadm upgrade apply v1.32.3

Note: Before you can perform this upgrade, you have to update kubeadm to v1.32.3.

2. 应用升级:apply

使用 kubeadm upgrade apply [version] 将 Kubernetes 集群升级到指定版本。例如,kubeadm upgrade apply v1.32.3, 配合 --dry-run 参数进行模拟操作

kubeadm upgrade apply <目标版本> --dry-run  # 模拟升级
kubeadm upgrade apply <目标版本>           # 实际执行

此步骤会更新控制平面组件(如 API Server、Controller Manager)的静态 Pod 配置。

执行升级步骤

1.安装新版本

apt install -y kubelet=1.32.3-1.1  kubeadm=1.32.3-1.1  kubectl=1.32.3-1.1

2.执行升级

root@k8s-master01:~# kubeadm upgrade apply v1.32.3
[upgrade] Reading configuration from the "kubeadm-config" ConfigMap in namespace "kube-system"...
[upgrade] Use 'kubeadm init phase upload-config --config your-config.yaml' to re-upload it.
[upgrade/preflight] Running preflight checks
[upgrade] Running cluster health checks
[upgrade/preflight] You have chosen to upgrade the cluster version to "v1.32.3"
[upgrade/versions] Cluster version: v1.32.2
[upgrade/versions] kubeadm version: v1.32.3
[upgrade] Are you sure you want to proceed? [y/N]: y
[upgrade/preflight] Pulling images required for setting up a Kubernetes cluster
[upgrade/preflight] This might take a minute or two, depending on the speed of your internet connection
[upgrade/preflight] You can also perform this action beforehand using 'kubeadm config images pull'
[upgrade/control-plane] Upgrading your static Pod-hosted control plane to version "v1.32.3" (timeout: 5m0s)...
[upgrade/staticpods] Writing new Static Pod manifests to "/etc/kubernetes/tmp/kubeadm-upgraded-manifests1054603147"
[upgrade/staticpods] Preparing for "etcd" upgrade
[upgrade/staticpods] Renewing etcd-server certificate
[upgrade/staticpods] Renewing etcd-peer certificate
[upgrade/staticpods] Renewing etcd-healthcheck-client certificate
[upgrade/staticpods] Restarting the etcd static pod and backing up its manifest to "/etc/kubernetes/tmp/kubeadm-backup-manifests-2025-04-04-15-18-05/etcd.yaml"
[upgrade/staticpods] Waiting for the kubelet to restart the component
[upgrade/staticpods] This can take up to 5m0s
[apiclient] Found 3 Pods for label selector component=etcd
[upgrade/staticpods] Component "etcd" upgraded successfully!
[upgrade/etcd] Waiting for etcd to become available
[upgrade/staticpods] Preparing for "kube-apiserver" upgrade
[upgrade/staticpods] Renewing apiserver certificate
[upgrade/staticpods] Renewing apiserver-kubelet-client certificate
[upgrade/staticpods] Renewing front-proxy-client certificate
[upgrade/staticpods] Renewing apiserver-etcd-client certificate
[upgrade/staticpods] Moving new manifest to "/etc/kubernetes/manifests/kube-apiserver.yaml" and backing up old manifest to "/etc/kubernetes/tmp/kubeadm-backup-manifests-2025-04-04-15-18-05/kube-apiserver.yaml"
[upgrade/staticpods] Waiting for the kubelet to restart the component
[upgrade/staticpods] This can take up to 5m0s
[apiclient] Found 3 Pods for label selector component=kube-apiserver
[upgrade/staticpods] Component "kube-apiserver" upgraded successfully!
[upgrade/staticpods] Preparing for "kube-controller-manager" upgrade
[upgrade/staticpods] Renewing controller-manager.conf certificate
[upgrade/staticpods] Moving new manifest to "/etc/kubernetes/manifests/kube-controller-manager.yaml" and backing up old manifest to "/etc/kubernetes/tmp/kubeadm-backup-manifests-2025-04-04-15-18-05/kube-controller-manager.yaml"
[upgrade/staticpods] Waiting for the kubelet to restart the component
[upgrade/staticpods] This can take up to 5m0s
[apiclient] Found 3 Pods for label selector component=kube-controller-manager
[upgrade/staticpods] Component "kube-controller-manager" upgraded successfully!
[upgrade/staticpods] Preparing for "kube-scheduler" upgrade
[upgrade/staticpods] Renewing scheduler.conf certificate
[upgrade/staticpods] Moving new manifest to "/etc/kubernetes/manifests/kube-scheduler.yaml" and backing up old manifest to "/etc/kubernetes/tmp/kubeadm-backup-manifests-2025-04-04-15-18-05/kube-scheduler.yaml"
[upgrade/staticpods] Waiting for the kubelet to restart the component
[upgrade/staticpods] This can take up to 5m0s
[apiclient] Found 3 Pods for label selector component=kube-scheduler
[upgrade/staticpods] Component "kube-scheduler" upgraded successfully!
[upgrade/control-plane] The control plane instance for this node was successfully upgraded!
[upload-config] Storing the configuration used in ConfigMap "kubeadm-config" in the "kube-system" Namespace
[kubelet] Creating a ConfigMap "kubelet-config" in namespace kube-system with the configuration for the kubelets in the cluster
[upgrad/kubeconfig] The kubeconfig files for this node were successfully upgraded!
W0404 15:19:20.983422 2226794 postupgrade.go:117] Using temporary directory /etc/kubernetes/tmp/kubeadm-kubelet-config4122064312 for kubelet config. To override it set the environment variable KUBEADM_UPGRADE_DRYRUN_DIR
[upgrade] Backing up kubelet config file to /etc/kubernetes/tmp/kubeadm-kubelet-config4122064312/config.yaml
[kubelet-start] Writing kubelet configuration to file "/var/lib/kubelet/config.yaml"
[upgrade/kubelet-config] The kubelet configuration for this node was successfully upgraded!
[upgrade/bootstrap-token] Configuring bootstrap token and cluster-info RBAC rules
[bootstrap-token] Configured RBAC rules to allow Node Bootstrap tokens to get nodes
[bootstrap-token] Configured RBAC rules to allow Node Bootstrap tokens to post CSRs in order for nodes to get long term certificate credentials
[bootstrap-token] Configured RBAC rules to allow the csrapprover controller automatically approve CSRs from a Node Bootstrap Token
[bootstrap-token] Configured RBAC rules to allow certificate rotation for all node client certificates in the cluster
[upgrade/addon] Skipping upgrade of addons because control plane instances [k8s-master02 k8s-master03] have not been upgraded
[upgrade/addon] Skipping upgrade of addons because control plane instances [k8s-master02 k8s-master03] have not been upgraded

[upgrade] SUCCESS! A control plane node of your cluster was upgraded to "v1.32.3".

[upgrade] Now please proceed with upgrading the rest of the nodes by following the right order.

3.重启服务验证

systemctl daemon-reload
systemctl restart kubelet

NAME           STATUS   ROLES           AGE   VERSION
k8s-master01   Ready    control-plane   22m   v1.32.3
k8s-master02   Ready    control-plane   40m   v1.32.2
k8s-master03   Ready    control-plane   40m   v1.32.3

3.升级节点:node

用于节点级别的升级操作,包括:升级单个工作节点或控制平面节点

更新节点的 kubelet 配置

kubeadm upgrade node  # 按提示操作

diff 显示当前静态 Pod 清单与升级后版本的差异,需结合 apply --dry-run 使用。

kubeadm upgrade diff <目标版本>

二、标准升级流程

升级控制平面(Master 节点)

1.执行 kubeadm upgrade plan 确认目标版本。
2.手动更新节点上的 kubelet 和 kubectl 版本。
3.使用 kubeadm upgrade apply 升级 Master 组件。

升级工作节点(Worker 节点)

逐个节点执行 kubeadm upgrade node1。
驱逐节点上的 Pod(kubectl drain <节点名>),升级后恢复调度(kubectl uncordon <节点名>)。

三、注意事项

版本兼容性:需遵循 Kubernetes 官方支持的版本升级路径(如 1.31 → 1.32,不可跨多个主版本升级)。
备份:操作前备份 /etc/kubernetes 目录及关键资源(如 ETCD 数据)。
组件一致性:确保所有节点的 kubeadm、kubelet、kubectl 版本一致。

边缘计算KubeEdge部署手册:环境搭建、集群管理与安全优化实战指南
shejizuopin的博客
03-24 1240
KubeEdge的部署需要综合考虑环境准备、网络配置、安全优化等多个方面。通过遵循最佳实践,采用经过验证的部署方案,可以显著提升边缘计算平台的稳定性和安全性。建议开发者持续关注KubeEdge社区动态,参与技术讨论,不断提升自身的边缘计算开发能力。
Ubuntu 系统上部署 Kubernetes 的完整指南
独坐一隅,凝神遐想,是种幸福! ——独隅
04-29 1051
以下是 在全新安装的 Ubuntu 系统上部署 Kubernetes 的完整指南,涵盖环境准备、集群部署、运维管理及生产级最佳实践,适用于开发和生产场景。
07.kubeadm 集群初始化使用指南00
Anwen的博客
04-04 858
kubeadmKubernetes 官方提供的集群管理工具,通过 kubeadm init 和 kubeadm join 快速搭建高可用集群--apiserver-advertise-address 指定 API Server 监听的 IP 地址(默认使用主节点默认网卡地址) 多网卡环境下显式指定对外提供服务的 IP(如 192.168.1.100)--apiserver-bind-port 设置 API Server 监听的端口(默认 6443) 避免端口冲突时调整(如 6444)
06.kubeadm 命令使用指南01-init
Anwen的博客
04-01 1224
KubeadmKubernetes 官方提供的用于快速启动和管理 Kubernetes 集群的工具。它简化了集群初始化、节点加入、配置管理等操作。
06.kubeadm 命令使用指南05-config
Anwen的博客
04-01 707
kubeadm config migrate 命令用于将旧的 kubeadm 配置文件转换为新版本的配置文件。镜像仓库访问:如果无法访问默认的镜像仓库(如 k8s.gcr.io),可以修改配置文件中的 imageRepository 字段来使用其他镜像仓库(例如 docker.io 或国内的镜像仓库)。这条命令会读取 kubeadm-config.yaml 文件,将其中的已弃用 API 版本更新为受支持的 API 版本,并将结果保存到 new-kubeadm-config.yaml 文件中。
k8s之重新配置kubeadm集群
qq_64057406的博客
09-18 715
在K8S中重新配置kubeadm集群是一个相对复杂的过程,因为kubeadm本身不支持自动重新配置部署在托管节点上的组件。
Kubeadm部署Kubernetes(v1.23.0)集群详细指南
qq_44930876的博客
06-14 3795
kubeadm部署kubernetes v1.23.0版本详细步骤;
Kubernetes 笔记 / 入门 / 生产环境 / 用部署工具安装 Kubernetes / 用 kubeadm 启动集群 / 用 kubeadm 创建集群
菜鸟的博客
08-08 1271
使用kubeadm,可以创建一个符合最佳实践的最小可行的 Kubernetes 集群实际上,可以使用kubeadm设置一个能够通过的集群kubeadm还支持其他集群生命周期功能,例如和集群升级kubeadm可以在各种机器上安装kubeadm:笔记本电脑、云服务器、树莓派等等无论是部署到云端还是本地,都可以将kubeadm集成到配置系统中,如 Ansible 或 Terraform。......
Kubernetes集群部署实战:从零到英雄
水务人
03-05 612
通过本指南,您已完成从零开始构建生产级Kubernetes集群的全过程。服务网格:集成Istio实现微服务治理GitOps实践:使用Argo CD实现持续部署混合云管理:探索Cluster API跨云管理集群
k8s1.29.0 集群部署
lucas5的博客
03-26 1491
k8s1.29.0 集群部署,kubeadm 3master+3slave keepalived+haproxy flannel0.24-host-gw calico3.27-bgp-rr istio1.21.1 efk系统 elasticsearch8.13.1+logstash8.13.1+kibana8.13.1+filebeat8.13.1+kafka-cluster3.7.0+elastalert2部署 + reindex索引迁移
Kubernetes安装配置指南以及kubectl命令行示例——Kubernetes权威指南(第二章)
imba_xuetu的博客
04-20 1184
Kubernetes安装配置指南以及kubectl命令行示例 安装配置环境为CentOS7。使用Systemd系统完成对Kubernetes的配置。为了便于管理,常见的做法是将K8S服务程序配置为Linux系统开机自动启动的服务。Master和Node间会有大量通信,CentOS7又开启了firewalld,安全的做法是在防火墙上配置各组件需要相互通信的端口号。内网中可以关闭防火墙服务: syst...
在Google Compute Engine上使用kubeadm搭建单节点Kubernetes集群指南
kubeadm 是一个简单的 Kubernetes 集群初始化工具,旨在提供最佳实践以及易于使用的命令行接口。 ### 1. 准备工作 **环境要求**:确保您的 GCE 实例满足运行 Kubernetes 的基本要求,包括CPU、内存和磁盘空间。 *...
Linux k8s 使用 Kubeadm 进行集群部署 ,并定期进行巡检以确保集群的稳定性
03-10
最后,可能需要提醒用户备份集群的重要配置,比如使用etcd备份,或者在初始化集群时记录生成的join命令,避免丢失。巡检中的备份检查也是关键点,确保在出现故障时可以快速恢复。 总结下来,回答需要结构清晰,分...
Kubernetes集群管理实战指南:打造现代化容器编排平台
[Kubernetes集群管理实战指南:打造现代化容器编排平台](https://ucc.alicdn.com/pic/developer-ecology/b26bfrxvrztv6_2dbd9c86cfc449d394392ec64e19fed9.jpg?x-oss-process=image/resize,s_500,m_lfit) ...
argocd部署cli工具并添加k8s集群
最新发布
crontab_e的博客
06-11 276
本文介绍了在已有Kubernetes集群环境下部署ArgoCD CLI工具并添加K8s集群的步骤。首先从ArgoCD Web界面下载匹配版本的CLI工具,上传至服务器/usr/local/bin目录并配置执行权限。接着修改kubeconfig文件中的server地址为master主机IP,解决kubekey部署集群时的解析问题。使用argocd cluster add命令添加集群,创建argocd-manager服务账户并授予集群权限。最后通过CLI和Web界面验证集群添加成功,为后续应用部署做好准备。整个
k8s业务程序联调工具-KtConnect
weixin_38924998的博客
06-05 458
架构图。
K8s简述
moxiaolin的博客
06-10 812
各个工作节点上的Kubelet(读库布利特)定期从API Server获取需要运行的Pod清单,调用容器运行时接口(如Docker)创建和启动容器实例。它主要功能包括:弹性伸缩(Autoscaling)、服务发现(KubeDnS/CoreDNS)、配置中心(configMap/Secret)、服务网关(ingress Controller)、负载均衡(Load Balancer)、服务安全(RBAC API)、跟踪监控(Metrics API/Dashboard)Docker:根据镜像运行容器实例。
云原生核心技术 (6/12): K8s 从零到一:使用 Minikube/kind 在本地搭建你的第一个 K8s 集群
程序员阿超的博客
06-10 589
本文是一篇保姆级的实践指南,旨在解决学习 Kubernetes (K8s) 时“环境搭建难”的头号痛点。我们将对比分析 Minikube、kind、K3s 和 Docker Desktop Kubernetes 等主流本地 K8s 环境方案的优缺点,帮助你选择最适合自己的工具。随后,文章将提供详细的分步教程,手把手带你使用 Minikube 和 kind (Kubernetes in Docker) 这两种最流行的方式,在自己的 Windows、macOS 或 Linux 电脑上,快速搭建起一个功能完备的单
K8S项目需求分析
云原生运维
06-11 422
请根据以下信息和要求,在不考虑成本的情况下,设计出【架构图】某公司有3个环境:prod、pre、test,都使用K8s集群部署应用:Vue前端项目、Java后端接口项目涉及的中间件有:MySQL、Redis、RabbitMQ、Nacos涉及的CICD:gitlab、Jenkins、ansible要求:a.prod 环境需要高可用,并标出数量,其他环境不需要高可用b.各环境要求VPC隔离,并标注出网段c.Pre 环境的数据要每日同步prod的数据。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

Liao wen xiu

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值