那些遇到过的问题

Kubernetes,如何与其他节点共享读/写持久卷作为只读卷

Ous*_*uss 3 kubernetes persistent-volumes

我有一个持久卷,在一个特定节点上具有读/写访问权限。

如何将此持久卷以只读方式安装在所有其他节点上?

这是我在 pvc.yaml 中的想法:

---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  # This name uniquely identifies the PVC. This is used in deployment.
  name: public-pv-claim
  namespace: default
spec:
  accessModes:
    - ReadWriteOnce
    - ReadOnlyMany
  resources:
    # This is the request for storage. Should be available in the cluster.
    requests:
      storage: 1Gi
Run Code Online (Sandbox Code Playgroud)

并在特定节点

      ...
      volumes:
      - name: public
        # This volume is based on PVC
        persistentVolumeClaim:
          # Name of the PVC created earlier
          claimName: public-pv-claim
      containers:
      - name: specific
        # Volume mounts for this container
        volumeMounts:
        # Volume 'public' is mounted to path '/public'
        - name: data
          mountPath: "/public"
        ...
Run Code Online (Sandbox Code Playgroud)

对于其他节点的 pod:

      ...
      volumes:
      - name: public
        # This volume is based on PVC
        persistentVolumeClaim:
          # Name of the PVC created earlier
          claimName: public-pv-claim
      containers:
      - name: other
      ...
      volumeMounts:
      - name: public
        mountPath: "/public"
        readOnly: true
      ...
Run Code Online (Sandbox Code Playgroud)

Ous*_*uss 6

我找到的解决方案是为持久卷提供“ReadWriteMany”访问模式:然后在挂载卷的定义中将 readOnly 设置为 true 来挂载它。这是 .yaml 文件..

持久卷声明... pvc.yaml:

---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  # This name uniquely identifies the PVC. This is used in deployment.
  name: public-pv-claim
  namespace: default
spec:
  accessModes:
    - ReadWriteMany # All nodes have read/write access to the volume
  resources:
    # This is the request for storage. Should be available in the cluster.
    requests:
      storage: 1Gi
Run Code Online (Sandbox Code Playgroud)

并且在应该允许写入卷的特定节点中container_write_access_to_pv.yaml:

  ...
  volumes:
  - name: public
    # This volume is based on PVC
    persistentVolumeClaim:
      # Name of the PVC created earlier
      claimName: public-pv-claim
  containers:
  - name: specific
    # Volume mounts for this container
    volumeMounts:
    # Volume is mounted to path '/public'
    - name: data
      mountPath: "/public"
    ...
Run Code Online (Sandbox Code Playgroud)

对于应该具有只读访问权限的其他节点的 pod:container_with_read_only_access_to_pv.yaml:

  ...
  volumes:
  - name: public
    # This volume is based on PVC
    persistentVolumeClaim:
      # Name of the PVC created earlier
      claimName: public-pv-claim
  containers:
  - name: other
  ...
  volumeMounts:
  - name: public
    # Volume is mounted to path '/public' in read-only mode
    mountPath: "/public"
    readOnly: true
  ...
Run Code Online (Sandbox Code Playgroud)

归档时间:

查看次数:

6032 次

最近记录:

2 年,2 月 前
相关归档
CertManager Letsencrypt CertificateRequest“无法执行自检GET请求” 14
Runtime.getRuntime().availableProcessors() 在容器优化操作系统上始终返回 1 7
如何确保 Kubernetes 自动缩放器不会删除运行特定 pod 的节点 6
如何使用 Kubernetes 在 Spark 中设置临时存储 5
如何增加 kubernetes 工作节点中临时存储的大小 5
Kubernetes ServiceAccount 无法列出节点 3
如何通过 unix socket 在 Kubernetes 中运行 PHP? 2
Kubernetes Ingress:NodeJS 应用程序显示空白页面 2
cronjob 在 AWS EKS 集群中使用 UTC 时区运行 2
kubernetes autoscaler不会缩小节点 1
难疑归档
如何将空目录添加到Git存储库? 4039
停止EditText在Activity启动时获得焦点 2770
npm install的--save选项是什么? 1779
使当前的Git分支成为主分支 1555
Make .gitignore会忽略除少数文件之外的所有内容 1531
Memcached与Redis? 1398
application/x-www-form-urlencoded或multipart/form-data? 1268
如何获得最近提交的Git分支列表? 1197
如果我已经开始使用rebase,如何将两个提交合并为一个? 1111
基于容器宽度的字体缩放 1083