k8s etcd备份与恢复

L白眸2024-02-07 21:55
停止api-server(k8s的所有master节点)
复制代码 
   # 所有master节点执行:
   # 停api-server

   mkdir -p tpm_api_conf
   mv  /etc/kubernetes/manifests/kube-apiserver.yaml /root/tpm_api_conf/
etcd备份(集群中某一节点)
复制代码 
   # etcd备份

   ETCDCTL_API=3;/usr/local/bin/etcdctl --endpoints='https://192.168.1.30:2379' --cacert="/etc/ssl/etcd/ssl/ca.pem" --cert="/etc/ssl/etcd/ssl/admin-ks-master01.pem" --key="/etc/ssl/etcd/ssl/admin-ks-master01-key.pem" snapshot save  snapshot_20230928.db
查看备份数据状态
复制代码 
   # 查看备份数据状态

   ETCDCTL_API=3;/usr/local/bin/etcdctl --write-out=table snapshot status snapshot_20230928.db
停止etcd服务并备份数据目录(etcd所有节点)
复制代码 
   # 停etcd:

   systemctl stop etcd
   mv /var/lib/etcd/ /root/etcd_bak
各个etcd节点恢复数据
复制代码 
   # 节点30:

   ETCDCTL_API=3;/usr/local/bin/etcdctl snapshot restore /root/snapshot_20230928.db \
    --name etcd-ks-master01  \
    --cert="/etc/ssl/etcd/ssl/admin-ks-master01.pem" \
    --key="/etc/ssl/etcd/ssl/admin-ks-master01-key.pem"  \
    --cacert="/etc/ssl/etcd/ssl/ca.pem"   \
    --endpoints="https://127.0.0.1:2379" \
    --initial-advertise-peer-urls="https://192.168.1.30:2380"  \
    --initial-cluster="etcd-ks-master01=https://192.168.1.30:2380,etcd-ks-master02=https://192.168.1.31:2380,etcd-ks-master03=https://192.168.1.32:2380" \
    --data-dir=/var/lib/etcd
    
   # 节点31:

   ETCDCTL_API=3;/usr/local/bin/etcdctl snapshot restore /root/snapshot_20230928.db \
    --name etcd-ks-master02  \
    --cert="/etc/ssl/etcd/ssl/admin-ks-master02.pem" \
    --key="/etc/ssl/etcd/ssl/admin-ks-master02-key.pem"  \
    --cacert="/etc/ssl/etcd/ssl/ca.pem"   \
    --endpoints="https://127.0.0.1:2379" \
    --initial-advertise-peer-urls="https://192.168.1.31:2380"  \
    --initial-cluster="etcd-ks-master01=https://192.168.1.30:2380,etcd-ks-master02=https://192.168.1.31:2380,etcd-ks-master03=https://192.168.1.32:2380" \
    --data-dir=/var/lib/etcd
    
   # 节点32:

   ETCDCTL_API=3;/usr/local/bin/etcdctl snapshot restore /root/snapshot_20230928.db \
    --name etcd-ks-master03  \
    --cert="/etc/ssl/etcd/ssl/admin-ks-master03.pem" \
    --key="/etc/ssl/etcd/ssl/admin-ks-master03-key.pem"  \
    --cacert="/etc/ssl/etcd/ssl/ca.pem"   \
    --endpoints="https://127.0.0.1:2379" \
    --initial-advertise-peer-urls="https://192.168.1.32:2380"  \
    --initial-cluster="etcd-ks-master01=https://192.168.1.30:2380,etcd-ks-master02=https://192.168.1.31:2380,etcd-ks-master03=https://192.168.1.32:2380" \
    --data-dir=/var/lib/etcd
etcd节点修改数据目录权限并启动etcd
复制代码 
   # 所有节点执行:
   # 修改属组
   chown -R etcd:root /var/lib/etcd/

   # 启动etcd
   systemctl start etcd
启动api-server(所有k8s master节点)
复制代码 
   # etcd启动完成后,恢复api配置
   mv  /root/tpm_api_conf/kube-apiserver.yaml   /etc/kubernetes/manifests/kube-apiserver.yaml
相关推荐
原神启动13 分钟前
K8S(五)—— YAML文件解析
java·容器·kubernetes
lin张5 分钟前
k8s(二)项目生命周期管理、发布策略与声明式资源管理
云原生·容器·kubernetes
赵文宇(温玉)15 分钟前
Docker的价值、特点、创新与关键技术
运维·docker·容器
Zsr10231 小时前
K8S安装指南与核心操作命令汇总
云原生·容器·kubernetes
孤岛悬城1 小时前
53 k8s基础与安装
云原生·容器·kubernetes
Coder码匠2 小时前
Docker Compose 部署 Spring Boot 应用完全指南
spring boot·docker·容器
可爱又迷人的反派角色“yang”2 小时前
k8s(四)
linux·网络·云原生·容器·kubernetes·云计算
2501_939909052 小时前
Rancher 管理 Kubernetes 集群与Pod的详解
容器·kubernetes·rancher
可爱又迷人的反派角色“yang”2 小时前
k8s(二)
linux·运维·docker·云原生·容器·kubernetes·云计算
旧日之血_Hayter3 小时前
docker部署项目,/var/lib/docker/overlay2目录满了如何清理?
运维·docker·容器
热门推荐
01GitHub 镜像站点02安娜的档案(Anna’s Archive) 镜像网站/国内最新可访问入口(持续更新)03Labelme从安装到标注:零基础完整指南04Linux下V2Ray安装配置指南05【踩坑笔记】50系显卡适配的 PyTorch 安装06手把手教你通过Gemini3 pro 学生认证,白用一年,手慢无!07jdk21下载、安装(Windows、Linux、macOS)08GitLab 零基础入门指南:从安装到项目管理全流程09Opencode CLI 安装成功,但是启动失败10UV安装并设置国内源