kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
website/docs/getting-started-guides/azure.md

7.5 KiB
Raw Blame History

assignees
colemickens
jeffmendoza
  • TOC {:toc}

Prerequisites

  1. An Azure subscription. If you don't already have one, you may create one on azure.microsoft.com.
  2. An account with Owner access to the subscription.
  3. Both docker and jq need to be installed and available on $PATH.

Cluster operations

Cluster bring-up

export KUBERNETES_PROVIDER=azure; curl -sS https://get.k8s.io | bash

Note: if you receive an error "the input device is not a TTY", then you need to start the deployment manually.

cd ~/kubernetes
./cluster/kube-up.sh

NOTE: This script calls cluster/kube-up.sh which in turn calls cluster/azure/util.sh using cluster/azure/config-default.sh.

You must set AZURE_SUBSCRIPTION_ID or you will receive errors. Prior to Kubernetes 1.3.0, you must also set AZURE_TENANT_ID. These may be set in cluster/azure/config-default.sh or set as environment variables:

export AZURE_SUBSCRIPTION_ID="<subscription-guid>"
export AZURE_TENANT_ID="<tenant-guid>" # only needed for Kubernetes < v1.3.0.

These values can be overriden by setting them in cluster/azure/config-default.sh or as environment variables. They are shown here with their default values:

export AZURE_DEPLOY_ID="" # autogenerated if blank
export AZURE_LOCATION="westus"
export AZURE_RESOURCE_GROUP="" # generated from AZURE_DEPLOY_ID if unset
export AZURE_MASTER_SIZE="Standard_A1"
export AZURE_NODE_SIZE="Standard_A1"
export AZURE_USERNAME="kube"
export NUM_NODES=3
export AZURE_AUTH_METHOD="device"

By default, this will deploy a cluster with 4 Standard_A1-sized VMs: one master node, three worker nodes. This process takes about 5 to 10 minutes. Once the cluster is up, connection information to the cluster will be displayed. Additionally, your kubectl configuration will be updated to know about this cluster and this new cluster will be set as the active context.

The Azure deployment process produces an output directory cluster/azure/_deployments/${AZURE_DEPLOY_ID}. In this directory you will find the PKI and SSH assets created for the cluster, as well as a script named util.sh. Here are some examples of its usage:

$ cd cluster/azure/_deployments/kube-20160316-001122/

# This uses the client cert with curl to make an http call to the apiserver.
$ ./util.sh curl api/v1/nodes

# This uses the client cert with kubectl to target this deployment's apiserver.
$ ./util.sh kubectl get nodes

# This alters the current kubectl configuration to point at this cluster.
$ ./util.sh configure-kubectl

# This will deploy the kube-system namespace, the SkyDNS addon, and the kube-dashboard addon.
$ ./util.sh deploy-addons

# This uses the ssh private key to copy the private key itself to the master node.
$ ./util.sh copykey

# This uses the ssh private key to open an ssh connection to the master.
$ ./util.sh ssh

Cluster deployment examples

Deploy the kube-system namespace

The cluster addons are created in the kube-system namespace.

For versions of Kubernetes before 1.3.0, this must be done manually. Starting with 1.3.0, the namespace is created automatically as part of the Azure bring-up. For versions prior to 1.3.0, you may execute this to create the kube-system namespace:

kubectl create -f https://raw.githubusercontent.com/colemickens/azkube/v0.0.5/templates/coreos/addons/kube-system.yaml

Using kubectl proxy

kubectl proxy is currently used to access to access deployed services.

kubectl proxy --port=8001

Deployed services are available at: http://localhost:8001/api/v1/proxy/namespaces/<namespace>/services/<service_name>.

Addon: SkyDNS

You can deploy the SkyDNS addon:

kubectl create -f https://raw.githubusercontent.com/colemickens/azkube/v0.0.5/templates/coreos/addons/skydns.yaml

Addon: Kube-Dashboard

This will deploy the kube-dashboard addon:

kubectl create -f https://raw.githubusercontent.com/colemickens/azkube/v0.0.5/templates/coreos/addons/kube-dashboard.yaml

The dashboard is then available at: http://localhost:8001/api/v1/proxy/namespaces/kube-system/services/dashboard-canary.

Example: Guestbook

This will deploy the guestbook example (the all-in-one variant):

kubectl create -f https://raw.githubusercontent.com/kubernetes/kubernetes/release-1.2/examples/guestbook/all-in-one/guestbook-all-in-one.yaml

The guestbook is then available at: http://localhost:8001/api/v1/proxy/namespaces/default/services/frontend.

Cluster scaling

The azkube tool used internally during kube-up can also be used to scale your cluster. Here's an example of scaling a default deployment of 3 nodes to 10 nodes:

export AZURE_DEPLOY_ID="kube-20160316-001122"
$ docker run -it -v "$HOME/.azkube:/.azkube" -v "/tmp:/tmp" \
    colemickens/azkube:v0.0.5 /opt/azkube/azkube scale \
    --deployment-name="${AZURE_DEPLOY_ID}" \
    --node-size="Standard_A1" \
    --node-count=10

Cluster tear-down

You can tear-down a cluster using kube-down.sh:

export AZURE_DEPLOY_ID="kube-20160316-001122"
$ ./cluster/kube-down.sh

Prior to Kubernetes 1.3, the cluster must be deleted manually with the Azure CLI or via the Azure Portal.

Notes

  1. The user account used for these operations must have Owner access to the subscription.
  2. You can find your subscription ID in the Azure Portal. (All Resources → Subscriptions)
  3. The AZURE_AUTH_METHOD environment variable controls what authentication mechanism is used when bringing up the cluster. By default it is set to device. This allows the user to login via the a web browser. This interactive step can be automated by creating a Service Principal, setting AZURE_AUTH_METHOD=client_secret and setting AZURE_CLIENT_ID + AZURE_CLIENT_SECRET as appropriate for your Service Principal.
  4. The --node-size used in the scale command must be the same size deployed initially or it will not have the desired effect.
  5. Cluster tear-down requires manual intervention, due to the fact that it deletes the entire resource group and someone else may have deployed other resources since the initial deployment. For this reason you must confirm the list of resources that are to be deleted. If you wish to skip it, you may set AZURE_DOWN_SKIP_CONFIRM to true. This will delete everything in the resource group that was deployed to.
  6. If you are deploying from a checkout of kubernetes, then you will need to take an additional step to ensure that a hyperkube image is available. You can set AZURE_DOCKER_REGISTRY and AZURE_DOCKER_REPO and the deployment will ensure that a hyperkube container is built and available in the specified Docker registry. That hyperkube image will then be used throughout the cluster for running the Kubernetes services. Alternatively, you may set AZURE_HYPERKUBE_SPEC to point to a custom hyperkube image.

Further reading

  • Please see the azkube repository for more information about the deployment tool that manages the deployment.