主页

calico修改node的blockSize

730阅读 0条评论

cover

1.前言

默认情况下,Calico IPAM 默认块大小为 /26。要从默认大小 /26 扩展,请降低blockSize(例如 /24)
由于在blockSize安装 Calico 后无法直接编辑该字段,因此最好在安装前更改 IP 池块大小,以尽量减少对 pod 连接的中断。

2.下载calicoctl

应该下载和k8s集群安装calico版本相同的calicoctl版本,去calico项目仓库release下载对应平台即可,需要确保当前节点有kubectl和kubeconfig文件,https://github.com/projectcalico/calico/releases

3.备份原默认calico ippool

calicoctl get ippool default-ipv4-ippool -o yaml > default-ipv4-ippool.yaml
apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
  creationTimestamp: "2022-12-14T09:33:25Z"
  name: default-ipv4-ippool
  resourceVersion: "1363"
  uid: d1a6f51c-515b-450e-b714-bee6b6f28b33
spec:
  allowedUses:
  - Workload
  - Tunnel
  blockSize: 26
  cidr: 172.16.0.0/16
  ipipMode: Never
  natOutgoing: true
  nodeSelector: all()
  vxlanMode: Never

4.创建临时 ippool

创建临时ip池

cat <<EOF|calicoctl create -f -
apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
  name: temporary-pool
spec:
  cidr: 10.0.0.0/16
  ipipMode: Always
  natOutgoing: true
EOF

查看ip池

|17:41:24|root@node01:[~]> calicoctl get ippool -o wide
NAME                  CIDR            NAT    IPIPMODE   VXLANMODE   DISABLED   DISABLEBGPEXPORT   SELECTOR   
default-ipv4-ippool   172.16.0.0/16   true   Never      Never       false      false              all()      
temporary-pool        10.0.0.0/16     true   Always     Never       false      false              all()

5.禁用原来ip池

执行禁用

calicoctl patch ippool default-ipv4-ippool -p '{"spec": {"disabled": true}}'

查看状态

|17:43:16|root@node01:[~]> calicoctl get ippool -o wide
NAME                  CIDR            NAT    IPIPMODE   VXLANMODE   DISABLED   DISABLEBGPEXPORT   SELECTOR   
default-ipv4-ippool   172.16.0.0/16   true   Never      Never       true       false              all()      
temporary-pool        10.0.0.0/16     true   Always     Never       false      false              all()

6.删除原来已经分配ip的pod

危险命令,注意一定要在刚刚安装完集群再操作

kubectl delete pod -A --all

7.删除原来默认的ip pool

calicoctl delete ippool default-ipv4-ippool

8.修改原来的ippool文件

修改blockSize到24

cat <<EOF|calicoctl apply -f -
apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
  name: default-ipv4-ippool
spec:
  allowedUses:
  - Workload
  - Tunnel
  blockSize: 24
  cidr: 172.16.0.0/16
  ipipMode: Never
  natOutgoing: true
  nodeSelector: all()
  vxlanMode: Never
EOF

9.禁用临时ippool

calicoctl patch ippool temporary-pool -p '{"spec": {"disabled": true}}'

10.再次删除所有已经分配ip的pod

危险命令,注意一定要在刚刚安装完集群再操作

kubectl delete pod -A --all

11.删除临时ippool

calicoctl delete pool temporary-pool

12.查看k8s集群ip分配状态

|17:50:20|root@node01:[~]> calicoctl ipam show --show-blocks
+----------+----------------+-----------+------------+--------------+
| GROUPING |      CIDR      | IPS TOTAL | IPS IN USE |   IPS FREE   |
+----------+----------------+-----------+------------+--------------+
| IP Pool  | 172.16.0.0/16  |     65536 | 1 (0%)     | 65535 (100%) |
| Block    | 172.16.30.0/24 |       256 | 1 (0%)     | 255 (100%)   |
+----------+----------------+-----------+------------+--------------+

版权属于:admin
本文链接: https://opszz.com/archives/23/
作品采用:本作品采用 知识共享署名-相同方式共享 4.0 国际许可协议 进行许可。
2
查看目录

目录

来自 《calico修改node的blockSize》
评论
本篇文章评论功能已关闭

博主很懒,啥都没有
26 文章数
1 评论量
11 分类数
27 页面数
已在风雨中度过 5年175天15小时37分
可能感兴趣
calico修改为Route Reflector模式(RR)
2022-12-14
k8s 集群监控
2022-11-07
Ceph快速入门
2022-11-07