Cordon& Drain이란?
Cordon
node scheduling 중단(cordon)및 허용(uncordon)
특정 node에 pod 스케줄을 금지하거나 해제
kubectl [cordon|uncordon] NODE [options]
[ Hands - on ]
node2의 scheduling 중단 및 확인
kubectl cordon node2.example.comkubectl get nodesNAME STATUS ROLES AGE VERSION
master.example.com Ready control-plane 22h v1.24.1
node1.example.com Ready <none> 22h v1.24.1
node2.example.com Ready,SchedulingDisabled <none> 22h v1.24.1
vi deploy-nginx.yamlapiVersion: apps/v1
kind: Deployment
metadata:
name: webui
spec:
replicas: 4
selector:
matchLabels:
app: webui
template:
metadata:
name: nginx-pod
labels:
app: webui
spec:
containers:
- name: nginx-container
image: nginx:1.14kubectl apply -f deploy-nginx.yamlkubectl get pods -o wideNAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES
webui-6d75c5dd9b-pphcf 1/1 Running 0 27s 10.36.0.1 node1.example.com <none> <none>
webui-6d75c5dd9b-ptdl5 1/1 Running 0 27s 10.36.0.2 node1.example.com <none> <none>
webui-6d75c5dd9b-sfh9v 1/1 Running 0 27s 10.36.0.4 node1.example.com <none> <none>
webui-6d75c5dd9b-z9htf 1/1 Running 0 27s 10.36.0.3 node1.example.com <none> <none>
kubectl uncordon node2.example.comkubectl get nodesNAME STATUS ROLES AGE VERSION
master.example.com Ready control-plane 22h v1.24.1
node1.example.com Ready <none> 22h v1.24.1
node2.example.com Ready <none> 22h v1.24.1
Drain
node 비우기(drain)
특정 node에서 동작 중인 모든 pod를 제거
kubectl drain NODE [options]
--ignore-daemonsets : DaemonSet-managed pod들은 ignore.
--force=false : RC, RS, Job, DaemonSet 또는 StatefulSet에서 관리하지 않는 Pod까지 제거.
[ Hands - on ]
vi deploy-nginx.yamlapiVersion: apps/v1
kind: Deployment
metadata:
name: webui
spec:
replicas: 4
selector:
matchLabels:
app: webui
template:
metadata:
name: nginx-pod
labels:
app: webui
spec:
containers:
- name: nginx-container
image: nginx:1.14kubectl apply -f deploy-nginx.yaml
kubectl run db --image=redis
kubectl get pods -o wideNAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES
db 1/1 Running 0 39s 10.44.0.3 node2.example.com <none> <none>
webui-6d75c5dd9b-85tgk 1/1 Running 0 88s 10.44.0.2 node2.example.com <none> <none>
webui-6d75c5dd9b-9mfvm 1/1 Running 0 88s 10.44.0.1 node2.example.com <none> <none>
webui-6d75c5dd9b-lqj9l 1/1 Running 0 88s 10.36.0.2 node1.example.com <none> <none>
webui-6d75c5dd9b-skxmb 1/1 Running 0 88s 10.36.0.1 node1.example.com <none> <none>
node2 비우기 및 확인
db pod는 삭제만 되지만 webui pod는 node1으로 재배치
node2는 비워짐과 동시에 cordon 설정
kubectl drain node2.example.com --ignore-daemonsets --forcekubectl get pods -o wideNAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES
webui-6d75c5dd9b-8k2vt 1/1 Running 0 57s 10.36.0.3 node1.example.com <none> <none>
webui-6d75c5dd9b-lqj9l 1/1 Running 0 5m13s 10.36.0.2 node1.example.com <none> <none>
webui-6d75c5dd9b-skxmb 1/1 Running 0 5m13s 10.36.0.1 node1.example.com <none> <none>
webui-6d75c5dd9b-xt8wh 1/1 Running 0 57s 10.36.0.4 node1.example.com <none> <none>kubectl get nodesNAME STATUS ROLES AGE VERSION
master.example.com Ready control-plane 22h v1.24.1
node1.example.com Ready <none> 22h v1.24.1
node2.example.com Ready,SchedulingDisabled <none> 22h v1.24.1
kubectl uncordon node2.example.comkubectl get nodesNAME STATUS ROLES AGE VERSION
master.example.com Ready control-plane 22h v1.24.1
node1.example.com Ready <none> 22h v1.24.1
node2.example.com Ready <none> 22h v1.24.1참고 : [따배쿠/멤버십] 12-2. taint & toleration, cordon& drain
댓글