git@ pull问题
novohool opened this issue · comments
非git用户clone不下来
[root@localhost ~]# git clone https://github.com/yonyoucloud/install_k8s.git
Cloning into 'install_k8s'...
remote: Counting objects: 331, done.
remote: Compressing objects: 100% (4/4), done.
remote: Total 331 (delta 0), reused 2 (delta 0), pack-reused 327
Receiving objects: 100% (331/331), 4.51 MiB | 27.00 KiB/s, done.
Resolving deltas: 100% (68/68), done.
Downloading source/docker/conf.gz (1.3 KB)
Error downloading object: source/docker/conf.gz (5fcc646): Smudge error: Error downloading source/docker/conf.gz (5fcc6461dac6f22fea88ca71ac4474244eff856a21db1587b4942ce36617bcda): batch response: This repository is over its data quota. Purchase more data packs to restore access.
Errors logged to /root/install_k8s/.git/lfs/logs/20180629T153257.318551973.log
Use `git lfs logs last` to view the log.
error: external filter git-lfs smudge -- %f failed 2
error: external filter git-lfs smudge -- %f failed
fatal: source/docker/conf.gz: smudge filter lfs failed
warning: Clone succeeded, but checkout failed.
You can inspect what was checked out with 'git status'
and retry the checkout with 'git checkout -f HEAD'
[root@localhost install_k8s]# git lfs pull
batch response: This repository is over its data quota. Purchase more data packs to restore access.
error: failed to fetch some objects from 'https://github.com/yonyoucloud/install_k8s.git/info/lfs'
这个有限制,我打包一下放百度网盘一份吧。
也有测试使用旧版本搭建,发现etcd因为使用证书,导致重启后,docker/flanneld都起不来了,etcd加证书正常连接。后面使用k8s中文网二进制的方式安装成功了,安装速度快,也简单很多但没有ingress。https://www.kubernetes.org.cn/4041.html
简单不是目的,安全、稳定才更适合生成环境,你这个安装是非RBAC模式,就是裸奔的方式,不适合生成环境标准的。
安全如果用iptables控制会不会更简单一点,RBAC模式出现故障排除问题 那是头疼
RBAC模式和出现故障排查没啥关系吧,服务既然支持,那集群内自身的安全机制最好建立起来,iptables去限制一旦有些处理不到的情况,可能会引入安全威胁。
1. 默认useradd -d /data/www esn && useradd -d /data/www www 这两个用户用的目录一样会导致报错,当内核已设定支持转发时sysctl判断也会出错
2. 装完访问kubernetes-dashboard 返回都是空白
3. 是否可以添加ingress支持
4. 重启起不来