Njengoko uqala ukwenza iinkonzo ezininzi ze-Kubernetes, imisebenzi elula ekuqaleni iqala ukuba nzima ngakumbi. Ngokomzekelo, amaqela ophuhliso akakwazi ukwenza iinkonzo okanye ukuthunyelwa phantsi kwegama elifanayo. Ukuba unamawaka eepods, ukuzidwelisa ngokulula kuya kuthatha ixesha elininzi, singasathethi ke ngokuzilawula kakuhle. Kwaye le yincam nje ye-iceberg.
Makhe sijonge indlela indawo yegama eyenza kube lula ukulawula izixhobo zeKubernetes. Ke yintoni indawo yamagama? Indawo yegama inokucingelwa njengeqela lenyani ngaphakathi kweqela lakho leKubernetes. Unokuba nezithuba zamagama ezininzi zodwa omnye komnye ngaphakathi kweqela elinye leKubernetes. Banokukunceda ngokwenene kunye namaqela akho ngombutho, ukhuseleko, kunye nokusebenza kwenkqubo.
Kuninzi losasazo lwe-Kubernetes, iqela liphuma ebhokisini linendawo yegama ebizwa ngokuba "eyokuqala". Kukho eneneni izithuba ezithathu uKubernetes ajongana nazo: okungagqibekanga, kube-inkqubo, kunye ne kube-public. Okwangoku, iKube-public ayisetyenziswa rhoqo.
Ukushiya i-kube namespace yodwa licebo elilungileyo, ngakumbi kwinkqubo elawulwayo njengeNjini kaGoogle Kubernetes. Isebenzisa indawo yamagama "emiselweyo" njengendawo apho iinkonzo zakho kunye nezicelo zenziwa khona. Akukho nto ikhethekileyo ngayo, ngaphandle kokuba iKubernetes iqwalaselwe ngaphandle kwebhokisi ukuze uyisebenzise, kwaye awukwazi ukuyisusa. Oku kuhle ukuqalisa kunye neenkqubo zokusebenza eziphantsi, kodwa andizukucebisa ukuba kusetyenziswe indawo yamagama emiselweyo kwiinkqubo ezinkulu zemveliso. Kwimeko yokugqibela, elinye iqela lophuhliso linokubhala kwakhona ikhowudi yomnye umntu kwaye laphule umsebenzi welinye iqela ngaphandle kokuyiqonda.
Ke ngoko, kuya kufuneka udale izithuba zamagama ezininzi kwaye uzisebenzise ukwahlula iinkonzo zakho kwiiyunithi ezilawulekayo. Isithuba segama sinokwenziwa ngomyalelo omnye. Ukuba ufuna ukwenza isithuba segama sovavanyo, emva koko sebenzisa umyalelo $ kubectl yenza uvavanyo lwesithuba segama okanye wenze ngokulula ifayile ye-YAML kwaye uyisebenzise njengawo nawuphi na omnye uvimba we-Kubernetes.
Ungajonga zonke izithuba zamagama usebenzisa i $ kubectl fumana umyalelo wesithuba segama.
Nje ukuba yenziwe, uya kubona iindawo ezintathu ezakhelwe ngaphakathi kunye nendawo entsha ebizwa ngokuba "luvavanyo". Makhe sijonge ifayile ye-YAML elula ukwenza ipod. Uya kuqaphela ukuba akukho kukhankanywa kwesithuba samagama.
Ukuba usebenzisa kubectl ukusebenzisa le fayile, izakudala umnqongo wemypod kwindawo yamagama esebenzayo ngoku. Oku kuya kuba sisithuba samagama esimiselweyo ude usitshintshe. Kukho iindlela ezi-2 zokuxelela u-Kubernetes ukuba yeyiphi indawo yegama ofuna ukwenza uvimba wakho kuyo. Indlela yokuqala kukusebenzisa iflegi yendawo yegama xa usenza uvimba.
Indlela yesibini kukuchaza indawo yegama kwisibhengezo se-YAML.
Ukuba ukhankanya isithuba segama kwi-YAML, uvimba uya kuhlala usenziwa kweso sithuba samagama. Ukuba uzama ukusebenzisa isithuba samagama esahlukileyo ngelixa usebenzisa iflegi yesithuba segama, umyalelo awuyi kuphumelela. Ngoku ukuba uzama ukufumana i-pod yakho, awuyi kukwazi ukwenza njalo.
Oku kwenzeka kuba yonke imiyalelo iphunyezwa ngaphandle kwesithuba samagama esisebenzayo ngoku. Ukufumana i-pod yakho, kufuneka usebenzise iflegi yendawo yegama, kodwa oku kuyadika ngokukhawuleza, ngakumbi ukuba ungumphuhlisi kwiqela elisebenzisa indawo yalo yamagama kwaye alifuni ukusebenzisa iflegi kuwo wonke umyalelo omnye. Makhe sibone ukuba singayilungisa njani le nto.
Ngaphandle kwebhokisi, indawo yakho yamagama esebenzayo ibizwa ngokuba yindalo. Ukuba awukhankanyi isithuba segama kwisixhobo se-YAML, ngoko yonke iKubernetes imiyalelo izakusebenzisa esi sithuba samagama sisebenzayo. Ngelishwa, ukuzama ukulawula isithuba segama esisebenzayo usebenzisa kubectl kunokusilela. Nangona kunjalo, kukho isixhobo esihle kakhulu esibizwa ngokuba yiKubens esenza le nkqubo ibe lula kakhulu. Xa usenza umyalelo we kubens, ubona zonke izithuba zamagama ezinesithuba segama esisebenzayo siphawuliwe.
Ukutshintsha indawo yegama esebenzayo kwindawo yovavanyo, usebenzisa ngokulula i-$kubens yovavanyo lomyalelo. Ukuba emva koko uqhuba umyalelo we-$kubens kwakhona, uya kubona ukuba indawo entsha yegama esebenzayo yabelwe ngoku - uvavanyo.
Oku kuthetha ukuba awudingi iflegi yendawo yegama ukuze ubone i-pod kwindawo yovavanyo.
Ngale ndlela izithuba zamagama zifihlwe enye kwenye, kodwa azizodwa enye kwenye. Inkonzo kwisithuba segama esinye inokunxibelelana ngokulula ngenkonzo kwesinye isithuba samagama, esisoloko siluncedo kakhulu. Ukukwazi ukunxibelelana kwiindawo ezahlukeneyo zamagama kuthetha ukuba inkonzo yabaphuhlisi bakho inokunxibelelana nenye inkonzo yeqela le-dev kwindawo yamagama eyahlukileyo.
Ngokuqhelekileyo, xa isicelo sakho sifuna ukufikelela kwinkonzo ye-Kubernetes, usebenzisa inkonzo yokufumanisa ye-DNS eyakhelwe-ngaphakathi kwaye unike isicelo sakho igama lenkonzo. Nangona kunjalo, ngokwenza njalo, unokwenza inkonzo phantsi kwegama elifanayo kwiindawo ezininzi zamagama, ezingamkelekanga.
Ngethamsanqa, oku kulula ukujikeleza ngokusebenzisa indlela eyandisiweyo yedilesi ye-DNS. Iinkonzo kwi-Kubernetes ziveza isiphelo sazo zisebenzisa i-template ye-DNS eqhelekileyo. Ijongeka ngolu hlobo:
Ngokuqhelekileyo, ufuna nje igama lenkonzo kwaye i-DNS iya kumisela ngokuzenzekelayo idilesi epheleleyo.
Nangona kunjalo, ukuba ufuna ukufikelela kwinkonzo kwindawo yamagama eyahlukileyo, sebenzisa nje igama lenkonzo kunye negama lendawo yegama:
Umzekelo, ukuba ufuna ukudibanisa kugcino lwenkonzo kwindawo yovavanyo, ungasebenzisa idilesi yedatha yedatha.test
Ukuba ufuna ukudibanisa kwisiseko sedatha yenkonzo kwindawo yegama lemveliso, usebenzisa i-database.prod.
Ukuba ufuna ngenene ukwahlula kwaye uthintele ufikelelo lwendawo yegama, iKubernetes ikuvumela ukuba wenze oku usebenzisa iKubernetes Network Policy. Ndiza kuthetha ngale nto kwisiqendu esilandelayo.
Ndihlala ndibuzwa lo mbuzo, zingaphi izithuba zamagama ekufuneka ndizenze kwaye ngaziphi iinjongo? Yintoni iqhekeza ledatha elawulwayo?
Ukuba udala izithuba ezininzi zamagama, ziya kungena endleleni yakho. Ukuba bambalwa kakhulu kubo, uya kulahlekelwa zonke izibonelelo zesisombululo esinjalo. Ndicinga ukuba kukho izigaba ezine eziphambili apho inkampani nganye ihamba ngayo xa isenza isakhiwo sayo sombutho. Ngokuxhomekeke kwinqanaba lophuhliso iprojekthi yakho okanye inkampani ekuyo, unokufuna ukwamkela isicwangciso esifanelekileyo sendawo yamagama.
Khawufane ucinge ukuba uyinxalenye yeqela elincinci elisebenza ekuphuhliseni i-5-10 microservices kwaye unokuqokelela ngokulula bonke abaphuhlisi kwigumbi elinye. Kule meko, kunengqiqo ukuqhuba zonke iinkonzo zeprod kwindawo yamagama engagqibekanga. Ewe kunjalo, ukuze ube bhetyebhetye ngakumbi, ungasebenzisa izithuba zamagama ezi-2- ngokwahlukeneyo kwi-prod kunye ne-dev. Kwaye kunokwenzeka ukuba, uvavanya ukukhula kwakho kwikhompyuter yakho yasekhaya usebenzisa into efana neMinikube.
Masithi izinto ziyatshintsha kwaye ngoku uneqela elikhula ngokukhawuleza elisebenza kwii-microservices ezingaphezu kwe-10 ngexesha. Kufika ixesha apho kuyimfuneko ukusebenzisa amaqela amaninzi okanye izithuba zamagama, ngokwahlukeneyo kwi-prod kunye ne-dev. Ungahlula iqela libe ngamaqela amancinci ukuze ngalinye libe ne-microservices zalo kwaye ngalinye lala maqela linokukhetha indawo yalo yamagama ukuququzelela inkqubo yokulawula uphuhliso lwesoftware kunye nokukhululwa.
Njengoko ilungu ngalinye leqela lifumana ukuqonda kwindlela esebenza ngayo inkqubo xa iyonke, kuba nzima ngakumbi ukulungelelanisa lonke utshintsho kunye nabo bonke abanye abaphuhlisi. Ukuzama ukujikeleza isitakhi esigcweleyo kumatshini wakho wasekhaya kuya kuba nzima yonke imihla.
Kwiinkampani ezinkulu, abaphuhlisi ngokubanzi abazi ukuba ngubani kanye kanye osebenza entweni. Amaqela anxibelelana esebenzisa izivumelwano zenkonzo okanye asebenzise itekhnoloji yemesh yenkonzo, eyongeza umaleko wokuthabatha phezu kwenethiwekhi, njengesixhobo soqwalaselo se-Istio. Ukuzama ukuqhuba isitakhi esipheleleyo salapha ekhaya akunakwenzeka. Ke, kuza inqaku apho wonke umyalelo ngokuqinisekileyo ufuna indawo yawo yamagama. Iqela ngalinye linokukhetha izithuba zamagama ezininzi kwindawo ye-dev kunye nokusingqongileyo kwemveliso.
Okokugqibela, kukho iinkampani ezinkulu zamashishini apho elinye iqela labaphuhlisi lingazi nokubakho kwamanye amaqela. Inkampani enjalo inokuqesha ngokubanzi abaphuhlisi beqela lesithathu abasebenzisana nayo ngee-APIs ezibhalwe kakuhle. Iqela ngalinye elinjalo liqulethe amaqela amaninzi kunye nee-microservices ezininzi. Kule meko, kufuneka usebenzise zonke izixhobo endithethe ngazo ngaphambili.
Abadwelisi benkqubo akufuneki basebenzise iinkonzo ngesandla kwaye akufuneki bafikelele kwiindawo zamagama ezingabakhathaziyo. Kweli nqanaba, kuyacetyiswa ukuba kubekho amaqela amaninzi ukunciphisa "i-blast radius" yezicelo ezingamiselwanga kakuhle, ukwenza lula iinkqubo zokuhlawula kunye nolawulo lwemithombo.
Ke, ukusetyenziswa ngokufanelekileyo kwezithuba zamagama ngumbutho wakho kukuvumela ukuba wenze i-Kubernetes ilawuleke ngakumbi, ilawuleke, ikhuseleke, kwaye ibe bhetyebhetye.
Ezinye iintengiso 🙂
Enkosi ngokuhlala nathi. Ngaba uyawathanda amanqaku ethu? Ngaba ufuna ukubona umxholo onomdla ngakumbi? Sixhase ngokufaka iodolo okanye ngokucebisa abahlobo, , i-analogue eyodwa yeeseva zomgangatho wokungena, eyenzelwe wena: (ifumaneka nge-RAID1 kunye ne-RAID10, ukuya kuthi ga kwi-24 cores kunye ne-40GB DDR4).
Dell R730xd 2x ngexabiso eliphantsi kwiziko ledatha le-Equinix Tier IV eAmsterdam? Kuphela apha eNetherlands! Dell R420 - 2x E5-2430 2.2Ghz 6C 128GB DDR3 2x960GB SSD 1Gbps 100TB - ukusuka $99! Funda malunga
umthombo: www.habr.com
