Hayi Habr!
Simele iqela leqonga le-Exness. Ngaphambili, oogxa bethu sele bebhale inqaku malunga . Namhlanje sifuna ukwabelana ngamava ethu eenkonzo zokufudukela eKubernetes.
Ukuqala, sikunika amanani athile ukuze uqonde ngcono okuza kuxutyushwa:
- Isebe lethu lophuhliso liqukethe abantu abayi-100 +, kubandakanywa amaqela angaphezu kwe-10 ahlukeneyo kunye ne-QA yokuzimela, i-DevOps kunye neenkqubo zeScrum. Isitaki soPhuhliso-Python, PHP, C++, Java kunye neGolang.
- Ubungakanani bovavanyo kunye nemveliso bume malunga 2000 izikhongozeli nganye. Baqhuba iRancher v1.6 kwi-virtualization yabo kunye naphantsi kweVMware.
Isizathu
Njengoko besitsho, akukho nto ihlala ngonaphakade, kwaye uRancher ubhengeze ukuphela kwenkxaso yenguqulo 1.6 kwakudala. Ewe, kwiminyaka engaphezu kwemithathu siye safunda indlela yokuyilungiselela nokucombulula iingxaki ezivelayo, kodwa ngokufuthi ngakumbi sijamelana neengxaki ezingasayi kuze zilungiswe. I-Rancher 1.6 nayo inenkqubo ye-ossified yokukhupha amalungelo, apho unokwenza phantse yonke into okanye ungenzi nto.
Nangona i-virtualization yobunikazi ibonelele ngolawulo olukhulu kugcino lwedatha kunye nokhuseleko lwayo, ibeke iindleko zokusebenza ekwakunzima ukuzamkela zinikwa ukukhula rhoqo kwenkampani, inani leeprojekthi kunye neemfuno zabo.
Besifuna ukulandela imigangatho ye-IaC kwaye, ukuba kuyimfuneko, ukufumana umthamo ngokukhawuleza, kuyo nayiphi na indawo yendawo kwaye ngaphandle kwesitshixo somthengisi, kwaye sikwazi ukuyiyeka ngokukhawuleza.
amanyathelo okuqala
Okokuqala, besifuna ukuthembela kubuchwephesha bale mihla kunye nezisombululo eziza kuvumela amaqela ukuba abe nomjikelo wophuhliso olukhawulezayo kunye nokunciphisa iindleko zokusebenza zokusebenzisana neqonga elibonelela ngamandla.
Ewe, into yokuqala eyafika engqondweni yethu yayinguKubernetes, kodwa asizange sivuyiswe kwaye senze uphando oluncinane ukuze sibone ukuba lukhetho olufanelekileyo. Sivavanye kuphela izisombululo zomthombo ovulekileyo, kwaye kumlo ongafanelekanga, uKubernetes waphumelela ngaphandle kwemiqathango.
Okulandelayo kwafika umbuzo wokukhetha isixhobo sokwenza amaqela. Sithelekise ezona zisombululo zidumileyo: kops, kubespray, kubeadm.
Ukuqala, kubeadm kuthi kubonakala ngathi yindlela entsonkothileyo, kufana nohlobo lomyili βwebhayisekile,β kwaye iikops zazingenako ukubhetyebhetye ngokwaneleyo.
Kwaye ophumeleleyo waba:
Siqale ukulinga eyethu i-virtualization kunye ne-AWS, sizama ukwenza into ephantse ifane nepateni yethu yangaphambili yolawulo lwezixhobo, apho wonke umntu wabelana βngeqelaβ elifanayo. Kwaye ngoku sineqela lethu lokuqala loomatshini abancinci abali-10, isibini esikwi-AWS. Saqala ukuzama ukufuduka amaqela apho, yonke into yayibonakala "ilungile", kwaye ibali lingagqitywa, kodwa ...
Iingxaki zokuqala
I-Ansible yintoni i-kubespray eyakhelwe kuyo, ayisosixhobo esikuvumela ukuba ulandele i-IaC: xa ugunyazisa/ukuphelisa ii-nodes, kukho into ehlala ingahambi kakuhle kunye nolunye uhlobo longenelelo olufunekayo, kwaye xa usebenzisa ii-OS ezahlukeneyo, incwadi yokudlala iziphatha ngendlela eyahlukileyo. . Njengoko inani lamaqela kunye neendawo zokuhlala kwiqela likhula, saqala ukuqaphela ukuba incwadi yokudlala yayithatha ixesha elide kwaye ixesha elide ukugqitywa, kwaye ngenxa yoko, irekhodi yethu yayiyi-3,5 iiyure, kuthekani ngeyakho? π
Kwaye kubonakala ngathi i-bespray yinto enokwenzeka, kwaye yonke into icacile ekuqaleni, kodwa:
Ekuqaleni kohambo, umsebenzi yayikukuqalisa amandla kuphela kwi-AWS nakwi-virtualization, kodwa ke, njengoko kusenzeka rhoqo, iimfuno zatshintsha.
Ngenxa yoko, kwacaca ukuba iphethini yethu endala yokudibanisa izixhobo kwi-orchestration system enye yayingafanelekanga - kwimeko apho amaqela akude kakhulu kwaye alawulwa ngababoneleli abahlukeneyo.
Okunye ngakumbi. Xa onke amaqela esebenza kwiqela elinye, iinkonzo ezahlukeneyo ezineNodeSelectors ezifakwe ngokungachanekanga zinokubhabha ziye kumkhosi βwasemziniβ welinye iqela kwaye zisebenzise izixhobo apho, kwaye ukuba i-taint ibekiwe, bekukho izicelo eziqhubekayo ukuba enye okanye enye inkonzo ayisebenzi, akusasazwanga ngokuchanekileyo ngenxa yento yomntu. Enye ingxaki ibikukubala iindleko, ingakumbi kuqwalaselwe iingxaki zokusasaza iinkonzo kuzo zonke iindawo.
Ibali elihlukeneyo lalingukukhutshwa kwamalungelo kubasebenzi: iqela ngalinye lalifuna ukuba "entloko" yeqela kwaye liyilawule ngokupheleleyo, elinokubangela ukuwa okupheleleyo, ekubeni amaqela azimeleyo ngokusisiseko.
Njani ukuba?
Ukuqwalasela oku ngasentla kunye neminqweno yamaqela ukuba azimele ngakumbi, senze isigqibo esilula: iqela elinye - iqela elinye.
Ngoko sifumene eyesibini:
Kwaye ke iqela lesithathu:
Emva koko saqala ukucinga: masithi ngonyaka amaqela ethu aya kuba neqela elingaphezulu kwesinye? Kwiindawo ezahlukeneyo zejografi, umzekelo, okanye phantsi kolawulo lwababoneleli abahlukeneyo? Kwaye abanye babo baya kufuna ukukwazi ukuhambisa ngokukhawuleza iqela lexeshana kwezinye iimvavanyo.
I-Kubernetes epheleleyo yayiza kuza! Olu luhlobo oluthile lweMultiKubernetes, kuyavela.
Kwangaxeshanye, sonke siya kufuna ukuba ngandlelβ ithile sigcine onke la maqela, sikwazi ukulawula ukufikelela kuwo ngokulula, kunye nokudala amatsha kunye nokuphelisa amadala ngaphandle kokungenelela ngesandla.
Ixesha elithile lidlulile ukususela ekuqaleni kohambo lwethu kwihlabathi le-Kubernetes, kwaye sagqiba ekubeni sihlolisise izisombululo ezikhoyo. Kwavela ukuba sele ikhona kwimarike - iRancher 2.2.
Kwinqanaba lokuqala lophando lwethu, iRancher Labs sele yenze ukukhutshwa kokuqala kwenguqulo ye-2, kodwa nangona yayinokuphakanyiswa ngokukhawuleza ngokusungula isitya ngaphandle kokuxhomekeka kwangaphandle kunye neeparitha ezimbalwa okanye ukusebenzisa iTshati ye-HELM esemthethweni, kwakubonakala kukrwada. kuthi, kwaye sasingazi ukuba sinokuthembela kwesi sigqibo ukuba siya kuphuhliswa okanye sishiywe ngokukhawuleza. Iqela = cofa i-paradigm kwi-UI ngokwayo ayikhange isilungele, kwaye asizange sifune ukubotshelelwa kwi-RKE, kuba sisixhobo esigxile kakhulu.
Inguqulo ye-Rancher 2.2 sele ivele inembonakalo esebenzayo ngakumbi kwaye, kunye nangaphambili, yayineqela leempawu ezinomdla ngaphandle kwebhokisi, njengokudibanisa nababoneleli abaninzi bangaphandle, indawo enye yokuhanjiswa kwamalungelo kunye neefayile ze-kubeconfig, ukuqaliswa kwe-kubectl. umfanekiso onamalungelo akho kwi-UI, izithuba ezibekwe kwindlwane aka iiprojekthi.
Kwakukho noluntu olusele lwenziwe malunga neRancher 2, kwaye umboneleli obizwa ngokuba yiHashiCorp Terraform wayilwa ukuyilawula, eyasinceda ukuba sidibanise yonke into.
Kwenzekentoni
Ngenxa yoko, siye sagqiba kunye neqela elincinane eliqhuba iRancher, elifikelelekayo kuwo onke amanye amaqela, kunye namaqela amaninzi aqhagamshelwe kuyo, ukufikelela kuyo nayiphi na into enokunikezelwa njengokongeza umsebenzisi kuluhlu lwe-ldap, nokuba yintoni na. apho ikhoyo kwaye isebenzise izibonelelo zomboneleli.
Ukusebenzisa i-gitlab-ci kunye ne-Terraform, inkqubo yenziwe evumela ukuba wenze i-cluster yayo nayiphi na i-configuration kubaboneleli befu okanye i-infrastructure yethu kwaye udibanise kwi-Rancher. Konke oku kwenziwa kwisitayela se-IaC, apho iqela ngalinye lichazwa yindawo yokugcina, kwaye imeko yayo iguqulelwe. Ngexesha elifanayo, ezininzi iimodyuli zixhunyiwe kwii-repositories zangaphandle ukwenzela ukuba konke okuseleyo kukudlula izinto eziguquguqukayo okanye ukuchaza ukucwangciswa kwesiko lakho kwiimeko, ezinceda ukunciphisa ipesenti yokuphindaphinda ikhowudi.
Ewe, uhambo lwethu lusekude ukuphela kwaye kusekho imisebenzi emininzi enomdla ngaphambili, njengendawo enye yomsebenzi kunye neelogi kunye neemetriki zazo naziphi na iqoqo, i-mesh yenkonzo, i-gitops yokulawula imithwalo kwi-multicluster kunye nokunye okuninzi. Siyathemba ukuba uya kufumana amava ethu anomdla!
Inqaku labhalwa ngu-A. Antipov, A. Ganush, iiNjineli zePlatform.
umthombo: www.habr.com