vim /etc/hosts

192.168.1.121	k8s-master
192.168.1.122	k8s-worker

apt update

swapoff -a && sed -i -e '/swap/d' /etc/fstab

# vim /etc/fstab
# 注释swap.img行
# /swap.img     none    swap    sw      0       0

# 重新加载/etc/fstab
# mount -a

swapon --show && free -mh

# 生产慎用
ufw disable && ufw status

cat <<EOF | tee /etc/modules-load.d/k8s.conf
overlay
br_netfilter
EOF

modprobe overlay && modprobe br_netfilter

lsmod | grep br_netfilter && lsmod | grep overlay

cat <<EOF | tee /etc/sysctl.d/k8s.conf
net.bridge.bridge-nf-call-iptables = 1
net.bridge.bridge-nf-call-ip6tables = 1
net.ipv4.ip_forward = 1
EOF

sysctl --system

apt update && apt install -y apt-transport-https ca-certificates curl

#curl -fsSL https://packages.cloud.google.com/apt/doc/apt-key.gpg | \
#	gpg --dearmor -o /etc/apt/keyrings/kubernetes-archive-keyring.gpg

#echo "deb [signed-by=/etc/apt/keyrings/kubernetes-archive-keyring.gpg] \
#	https://apt.kubernetes.io/ kubernetes-xenial main" \
#	| tee /etc/apt/sources.list.d/kubernetes.list

# curl -fsSL https://mirrors.tencent.com/docker-ce/linux/ubuntu/gpg | sudo apt-key add -
# apt-add-repository "deb https://mirrors.tencent.com/kubernetes/apt/ kubernetes-xenial main"

curl -fsSL https://mirrors.aliyun.com/kubernetes/apt/doc/apt-key.gpg | \
	gpg --dearmor -o /etc/apt/keyrings/kubernetes-archive-keyring.gpg

echo "deb [signed-by=/etc/apt/keyrings/kubernetes-archive-keyring.gpg] \
	https://mirrors.aliyun.com/kubernetes/apt/ kubernetes-xenial main" \
	| tee /etc/apt/sources.list.d/kubernetes.list

# apt install -y kubelet=1.27.4-00 kubeadm=1.27.4-00 kubectl=1.27.4-00
apt update && apt install -y kubelet kubeadm kubectl

# 阻止自动更新
apt-mark hold kubelet kubeadm kubectl

# 指定格式yaml或json

kubectl version --output=json --client && \
	kubeadm version --output=json && kubelet --version

systemctl enable kubelet

containerd config default |tee /etc/containerd/config.toml

systemctl daemon-reload && \
	systemctl restart containerd && \
	systemctl enable containerd

kubeadm config print init-defaults > kubeadm.conf

apiVersion: kubeadm.k8s.io/v1beta3
bootstrapTokens:
- groups:
  - system:bootstrappers:kubeadm:default-node-token
  token: abcdef.0123456789abcdef
  ttl: 24h0m0s
  usages:
  - signing
  - authentication
kind: InitConfiguration
localAPIEndpoint:
  #advertiseAddress: 1.2.3.4	(2)
  advertiseAddress: 192.168.1.121
  bindPort: 6443
nodeRegistration:
  criSocket: unix:///var/run/containerd/containerd.sock
  imagePullPolicy: IfNotPresent
  # name: node	(1)
  name: k8s-master
  taints: null
---
apiServer:
  timeoutForControlPlane: 4m0s
apiVersion: kubeadm.k8s.io/v1beta3
certificatesDir: /etc/kubernetes/pki
clusterName: kubernetes
controllerManager: {}
dns: {}
etcd:
  local:
    dataDir: /var/lib/etcd
# imageRepository: registry.k8s.io	(3)
imageRepository: registry.aliyuncs.com/google_containers
kind: ClusterConfiguration
kubernetesVersion: v1.27.0	(5)
networking:
  dnsDomain: cluster.local
  podSubnet: 10.244.0.0/16 (4)
  serviceSubnet: 10.96.0.0/12
scheduler: {}

kubeadm init --config=kubeadm.conf --v=6

# 若初始化失败，则重置
kubeadm reset

# 无需操作此步骤，仅供参考
kubeadm init \
	--apiserver-advertise-address=192.168.1.121 \
	--image-repository registry.aliyuncs.com/google_containers \
	--kubernetes-version v1.27.4 \
	--service-cidr=10.96.0.0/12 \
	--pod-network-cidr=10.244.0.0/16 \
  	--control-plane-endpoint=k8s-master

mkdir -p $HOME/.kube && \
	cp -i /etc/kubernetes/admin.conf $HOME/.kube/config && \
	chown $(id -u):$(id -g) $HOME/.kube/config

export KUBECONFIG=/etc/kubernetes/admin.conf

kubeadm token create --print-join-command

kubeadm join 192.168.1.121:6443 --token 40q6kz.b05lx4s099nku2r9 \
	--discovery-token-ca-cert-hash \
	sha256:4fa9ffe9c07b42edc5f286359b6661d1e2798c73a3d63fe33ade9cb808c8154a

scp -r root@192.168.1.121:/etc/kubernetes/admin.conf /etc/kubernetes/

mkdir -p $HOME/.kube && \
	cp -i /etc/kubernetes/admin.conf $HOME/.kube/config && \
	chown $(id -u):$(id -g) $HOME/.kube/config

export KUBECONFIG=/etc/kubernetes/admin.conf

# kubectl get nodes
NAME         STATUS   ROLES           AGE   VERSION
k8s-master   Ready    control-plane   31m   v1.27.4
k8s-worker   Ready    <none>          12m   v1.27.4

# kubectl get nodes --show-labels

# kubectl label nodes k8s-worker node-role.kubernetes.io/worker=worker

# kubectl get nodes
NAME         STATUS   ROLES           AGE   VERSION
k8s-master   Ready    control-plane   42m   v1.27.4
k8s-worker   Ready    worker          23m   v1.27.4

kubectl cluster-info

kubectl label nodes <node-name> <label-key>=<label-value>
kubectl label nodes k8s-worker node-role.kubernetes.io/control-plane=control-plane
kubectl label nodes k8s-worker node-role.kubernetes.io/worker=worker
kubectl label nodes k8s-worker node-role.kubernetes.io/worker1=worker1
kubectl label nodes k8s-worker node-role.kubernetes.io/worker2=worker2

tail -f /var/log/syslog

# tail -f /var/log/syslog
Started kubelet: The Kubernetes Node Agent.
"command failed" err="failed to load kubelet config file, error:
	failed to load Kubelet config file /var/lib/kubelet/config.yaml,
	error failed to read kubelet config file \"/var/lib/kubelet/config.yaml\",
	error: open /var/lib/kubelet/config.yaml: no such file or directory,
	path: /var/lib/kubelet/config.yaml"
kubelet.service: Main process exited, code=exited, status=1/FAILURE
kubelet.service: Failed with result 'exit-code'.