Metrics Server: Difference between revisions
DrEdWilliams (talk | contribs) mNo edit summary |
DrEdWilliams (talk | contribs) mNo edit summary |
||
| Line 5: | Line 5: | ||
git clone https://github.com/kubernetes-incubator/metrics-server.git | git clone https://github.com/kubernetes-incubator/metrics-server.git | ||
Due to the fact that the default '''kubeadm''' installation uses self-signed certificates for the kubelets (not certificated signed by the main CA for the cluster), one minor change needs to be made to the deployment if this is being applied to an existing cluster. Modify the file '''metrics-server/ | Due to the fact that the default '''kubeadm''' installation uses self-signed certificates for the kubelets (not certificated signed by the main CA for the cluster), one minor change needs to be made to the deployment if this is being applied to an existing cluster. Modify the file '''metrics-server/manifests/base/deployment.yaml''', adding the '''--kubelet-insecure-tls''' argument to the containers spec so that it looks like this<ref>https://github.com/kubernetes-incubator/metrics-server/issues/146#issuecomment-430483619</ref>: | ||
<pre> containers: | <pre> containers: | ||
- name: metrics-server | - name: metrics-server | ||
| Line 22: | Line 22: | ||
Deploy the metrics server: | Deploy the metrics server: | ||
kubectl apply -f metrics-server/manifests/base/ | kubectl apply -f metrics-server/manifests/base/ | ||
Note that these manifests are in the k8s-admin/metrics-server directory in the GitLab repository ... | |||
---- | ---- | ||
<references/> | <references/> | ||
Revision as of 23:50, 1 August 2020
Kubernetes provides for metrics collection on performance/capacity of nodes, pods, etc. Previously, this was done by the Heapster application, but that is now deprecated in favor of an internal metrics server. This capability is still in kubernetes incubator status, but it provides a significant capability at this time.
Installation
There is a helm chart (untested), but the deployment is very straightforward using the GitHub repository:
git clone https://github.com/kubernetes-incubator/metrics-server.git
Due to the fact that the default kubeadm installation uses self-signed certificates for the kubelets (not certificated signed by the main CA for the cluster), one minor change needs to be made to the deployment if this is being applied to an existing cluster. Modify the file metrics-server/manifests/base/deployment.yaml, adding the --kubelet-insecure-tls argument to the containers spec so that it looks like this<ref>https://github.com/kubernetes-incubator/metrics-server/issues/146#issuecomment-430483619</ref>:
containers:
- name: metrics-server
image: k8s.gcr.io/metrics-server-amd64:v0.x.x
imagePullPolicy: Always
args:
- --cert-dir=/tmp
- --secure-port=4443
- --kubelet-insecure-tls
volumeMounts:
- name: tmp-dir
mountPath: /tmp
This tells the metrics server to ignore the fact that the certificates are self-signed -- in general, not the best solution, but as it is totally within the cluster, the exposure is minimal.
Deploy the metrics server:
kubectl apply -f metrics-server/manifests/base/
Note that these manifests are in the k8s-admin/metrics-server directory in the GitLab repository ...
<references/>