On Linux, you can run Kubernetes on top of Docker using the
kubeadm-dind-cluster
project. Based on using Docker-in-Docker (DIND) virtualization and
kubeadm, kubeadm-dind-cluster can be used to create a
multi-node Kubernetes cluster that is suitable for deploying
OpenWhisk for development and testing. For detailed instructions on kubeadm-dind-cluster, we
refer you to that project's github repository.
Here we will only cover the basic operations needed to create and
operate a default cluster with two virtual worker nodes running on a
single host machine.
There are "fixed" scripts
available
for each major release of Kubernetes.
Our TravisCI testing uses kubeadm-dind-cluster.sh on an ubuntu 16.04
host. The fixed dind-cluster scripts for Kubernetes version 1.10
and 1.11 are known to work for deploying OpenWhisk.
First, make sure your userid is in the docker group on the host
machine. This will enable you to run dind-cluster.sh script without
requiring sudo to gain root privileges.
To initially create your cluster, do the following:
# Get the script for the Kubernetes version you want
wget https://cdn.rawgit.com/kubernetes-sigs/kubeadm-dind-cluster/master/fixed/dind-cluster-v1.10.sh
# Make it executable
chmod +x dind-cluster-v1.10.sh
# Start the cluster. Please note you *must* set `USE_HAIRPIN` to `true`
USE_HAIRPIN=true ./dind-cluster-v1.10.sh up
# add the directory containing kubectl to your PATH
export PATH="$HOME/.kubeadm-dind-cluster:$PATH"The default configuration of dind-cluster.sh will create a cluster
with three nodes: 1 master node and two worker nodes. We recommend
labeling the two worker nodes for OpenWhisk so that you have 1 invoker
node for running user actions and 1 core node for running the rest of
the OpenWhisk system.
kubectl label node kube-worker-1 openwhisk-role=core
kubectl label node kube-worker-2 openwhisk-role=invokerBecause the container logs for docker containers running on the virtual worker nodes are in a non-standard location, you must configure the invoker to look for user action logs in a different path. You do that by adding the following required stanza to your mycluster.yaml.
invoker:
containerFactory:
dind: trueYou will be using a NodePort ingress to access OpenWhisk. Assuming
wkubectl describe node kube-node-1 | grep InternalIP returns 10.192.0.3
and port 31001 is available to be used on your host machine, you can
add the following stanzas of to your mycluster.yaml:
whisk:
ingress:
type: NodePort
apiHostName: 10.192.0.3
apiHostPort: 31001
nginx:
httpsNodePort: 31001Using kubeadm-dind-cluster is only appropriate for development and testing purposes. It is not recommended for production deployments of OpenWhisk.
Unlike using Kubernetes with Docker for Mac 18.06 and later, only the
virtual master/worker nodes are visible to Docker on the host system. The
individual pods running the OpenWhisk system are only visible using
kubectl and not directly via host Docker commands.
There does not appear to be a reliable way to restart the Kubernetes cluster without also re-installing Helm and OpenWhisk.