k8s部署修改nodeport默认端口范围

又逢落花时节 / 2023-08-23 / 原文

Kubernetes 的默认Node Port范围是30000-32767。

`kube-apiserver`

端口范围是由kube-apiserver控制的，它是一个运行在k8s集群内的pod。kube-apiserver pod 基于于/etc/kubernetes/manifests/kube-apiserver.yaml 创建。

设置 --service-node-port-range

更新文件/etc/kubernetes/manifests/kube-apiserver.yaml 并添加行 --service-node-port-range=10000-32767。

apiVersion: v1
kind: Pod
metadata:
  annotations:
    kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint: 192.168.*.*:6443
  creationTimestamp: null
  labels:
    component: kube-apiserver
    tier: control-plane
  name: kube-apiserver
  namespace: kube-system
spec:
  containers:
  - command:
    - kube-apiserver
    - --service-node-port-range=10000-32767
    - --advertise-address=192.168.*.*
    - --allow-privileged=true
    - --authorization-mode=Node,RBAC
    - --client-ca-file=/etc/kubernetes/pki/ca.crt
    - --enable-admission-plugins=NodeRestriction
    - --enable-bootstrap-token-auth=true
    - --etcd-cafile=/etc/kubernetes/pki/etcd/ca.crt
    - --etcd-certfile=/etc/kubernetes/pki/apiserver-etcd-client.crt
    - --etcd-keyfile=/etc/kubernetes/pki/apiserver-etcd-client.key
    - --etcd-servers=https://127.0.0.1:2379
    - --feature-gates=TTLAfterFinished=true

   。。。。。