山水情缘
山水情缘
# etcd组件 ## 1. 诡异的 K8S 滚动更新异常 1: 重新部署后,deployment总是提示部署中,可用数为0,重新生成的为2, 服务部署成功,kubelet正常,而kube-controller-manager的提示对象不是最新版本。 ### 现象 a. 查看kube-controller-manager的日志 ``` I0111 17:41:09.923836 1 deployment_controller.go:484] Error syncing deployment footstone-common/bjca-deployer: Operation cannot be fulfilled on deployments.apps "bjca-deployer":...
# 使用kubectl + yaml配置部署docker ## 定义deployment.tpl ``` yaml apiVersion: apps/v1 kind: Deployment metadata: name: %%work.name%% labels: app.kubernetes.io/name: %%work.name%% app.kubernetes.io/env: %%work.env%% spec: replicas: %%work.replicaCount%% selector: matchLabels: app.kubernetes.io/name: %%work.name%% app.kubernetes.io/env: %%work.env%% template:...
K8S安全
# 安全原理,方法论   1. [Kubernetes Security | Operating Kubernetes Clusters and Applications Safely](https://kubernetes-security.info/) 2. [1. Approaching Kubernetes Security - Kubernetes Security [Book]](https://www.oreilly.com/library/view/kubernetes-security/9781492039075/ch01.html)
Security
# 安全集锦 1. [Nexphisher - Advanced Phishing Toolkit With 30 Built In Templates — SkyNet Tools](https://skynettools.com/nexphisher-advanced-phishing-toolkit-with-30-built-in-templates/)
身份识别和鉴权
# keycloak 1、 [charts/bitnami/keycloak at master · bitnami/charts](https://github.com/bitnami/charts/tree/master/bitnami/keycloak) 2. [keycloak/keycloak: Open Source Identity and Access Management For Modern Applications and Services](https://github.com/keycloak/keycloak) 3. [Configure and use Ingress](https://docs.bitnami.com/kubernetes/apps/keycloak/configuration/configure-ingress/) 4. [(No Title)](https://www.keycloak.org/server/containers) 5....
k8s考试
# 资源 ## 参考 1. [2020年CKA考试最新最全指南 - 知乎](https://zhuanlan.zhihu.com/p/106090560) 1. [CKA(Certified Kubernetes Administrator) 學習資源整理 | 小信豬的原始部落](https://godleon.github.io/blog/Kubernetes/k8s-CKA-resources/) 1. [cka真题](https://blog.csdn.net/qq_43891456/article/details/109464455) 2. https://learnk8s.io/news
# can't initialize iptables table `nat': Table does not exist (do you need to insmod? https://stackoverflow.com/questions/21983554/iptables-v1-4-14-cant-initialize-iptables-table-nat-table-does-not-exist-d
Rancher
# Rancher 概念 ## 参考 1. [Rancher DockerHub](https://hub.docker.com/u/rancher) 1. [Rancher2.0 业务逻辑及概念](https://blog.csdn.net/weixin_41020960/article/details/85936219)
# 调度器 1. [图解 kubernetes scheduler 架构设计系列-初步了解](https://juejin.im/post/5e16ef435188254c2a23be35) 2. [图解kubernetes调度器SchedulingQueue核心源码实现](https://juejin.im/post/5e1bde446fb9a03016071c78) 3. [图解kubernetes调度器SchedulerCache核心源码实现](https://juejin.im/post/5e1d21ade51d454d787d9eed) 4. [图解kubernetes调度器ScheduleAlgorithm核心实现学习框架设计](https://juejin.im/post/5e1e7d75f265da3e3b5c5417) 5. [图解kubernetes调度器预选设计实现学习](https://juejin.im/post/5e2033ee6fb9a02fc31de120?utm_source=gold_browser_extension) ## baxiaoshi 学习笔记 1. [调度器学习基础概览](https://www.yuque.com/baxiaoshi/tyado3/yw9deb) 2. [SchedulingQueue三级调度队列实现](https://www.yuque.com/baxiaoshi/tyado3/sons04) 3. [ScheduleAlgorithm调度算法框架实现](https://www.yuque.com/baxiaoshi/tyado3/pfxhkq) 4. [基于并行筛选的预选设计设计实现](https://www.yuque.com/baxiaoshi/tyado3/ad9bsv) 5. [基于map/reduce无锁设计的优选设计实现](https://www.yuque.com/baxiaoshi/tyado3/cfly4t) 6. [抢占调度设计算法设计实现](https://www.yuque.com/baxiaoshi/tyado3/iy28fu)...
甲骨文
             [甲骨文对照集](http://jiaguwen.shufami.com/duizhaobiao.pdf)