APISIX在k8s的使用01: 离线安装及初步使用
目录
1、环境
- k8s环境信息
- 私有镜像地址:
dockerhub.kubekey.local - k8s: 1.24.3
- LoadBalancer组件: openelb
- 私有镜像地址:
- APISIX Helm组件信息
- APISIX: 0.11.1
- etcd: 3.5.4
- APISIX ingress-controller: 0.10.1
- APISIX Dashboard: 0.6.0
- 关联镜像
ps: 需在执行helm安装前,导入至离线镜像中心- apache/apisix:2.15.0-alpine
- bitnami/etcd:3.5.4-debian-11-r14
- apache/apisix-ingress-controller:1.5.0
- apache/apisix-dashboard:2.13-alpine
- busybox:1.28
- APISIX: 0.11.1
2、安装
2.1 APISIX及ingress-controller安装
helm install apisix \
--namespace ingress-apisix \
--create-namespace \
--set global.imageRegistry=dockerhub.kubekey.local \
--set etcd.image.repository=3rd/etcd \
--set apisix.image.repository=dockerhub.kubekey.local/3rd/apisix \
--set initContainer.image=dockerhub.kubekey.local/library/busybox \
--set gateway.type=LoadBalancer \
--set gateway.annotations."eip\.openelb\.kubesphere\.io/v1alpha2"=eip-layer2-pool \
--set gateway.annotations."lb\.kubesphere\.io/v1alpha1"=openelb \
--set gateway.annotations."protocol\.openelb\.kubesphere\.io/v1alpha1"=layer2 \
--set gateway.stream.enabled=true \
--set ingressPublishService="ingress-apisix/apisix-gateway" \
--set admin.allow.ipList.1="127.0.0.1/24" \
--set admin.allow.ipList.2="10.233.64.0/18" \
--set ingress-controller.enabled=true \
--set ingress-controller.image.repository=dockerhub.kubekey.local/3rd/apisix-ingress-controller \
--set ingress-controller.initContainer.image=dockerhub.kubekey.local/library/busybox \
--set ingress-controller.config.apisix.serviceNamespace=ingress-apisix \
apisix-0.11.1.tgz
Ps:
- 未开启stream_route功能: 需手动修改apisix的configmap,添加端口监听
2.2 dashboard安装
helm install apisix-dashboard \
--namespace ingress-apisix \
--create-namespace \
--set image.repository=dockerhub.kubekey.local/3rd/apisix-dashboard \
--set config.conf.etcd.endpoints.1=apisix-etcd.ingress-apisix.svc.cluster.local:2379 \
apisix-dashboard-0.6.0.tgz
3、APISIX配置
开启stream_proxy功能,并监听端口
修改apisix的ConfigMap,开启stream_proxy功能apisix: ... stream_proxy: # TCP/UDP proxy only: false tcp: # TCP proxy port list - 8201 - 8202 udp: # UDP proxy port list - 8201 - 8202- 同时配置
k8s Service之apisix-gateway的端口监听- 发布tcp/udp 8201,8202对外
- 同时配置
开启插件server-info
... plugin: ... - server-info
ps: 修改ConfigMap后,记得更新apisix deployment,否则配置不会生效。
3.1 http转发配置
dashboard转发配置
http_dashboard.yaml,即通过ingress-controller转换为apisix配置
apiVersion: apisix.apache.org/v2 kind: ApisixRoute metadata: name: dashboard namespace: ingress-apisix spec: http: - name: root match: hosts: - apisix.test.com paths: - "/*" backends: - serviceName: apisix-dashboard servicePort: 80
3.2 tcp转发配置
动态注册:使用init-container调用apisix admin api实现
# 注册stream_routes接口 curl http://apisix-admin.ingress-apisix.svc.cluster.local:9180/apisix/admin/stream_routes/testgateway0 -H "X-API-KEY: edd1c9f034335f136f87ad84b625c8f1" -X PUT -d ' { "server_port": 8201, "upstream": { "nodes": { "10.233.107.69:8100": 1 }, "type": "roundrobin", "scheme": "tcp", } }' # 查看stream_routes接口 curl http://127.0.0.1:9180/apisix/admin/stream_routes -H "X-API-KEY: edd1c9f034335f136f87ad84b625c8f1"静态配置:使用
kubectl apply -f tcp-route.yaml,即通过ingress-controller转换为apisix配置apiVersion: apisix.apache.org/v2 kind: ApisixRoute metadata: name: tcp-route spec: stream: - name: tcp-route-gateway-1 protocol: TCP match: ingressPort: 8201 backend: serviceName: gateway # 对应k8s的serviceName servicePort: 8100
4、日常维护
卸载
helm uninstall apisix -n ingress-apisixps:
- namespace不会删除
- etcd持久卷不会删除