apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: mysql-sre
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: "640Gi"
volumeName:
storageClassName: nfs
apiVersion: v1
kind: ConfigMap
metadata:
name: mysql-config-sre
data:
mysqld.cnf: |
[mysqld]
pid-file = /var/run/mysqld/mysqld.pid
socket = /var/run/mysqld/mysqld.sock
datadir = /var/lib/mysql
log-error = /var/log/mysql/error.log
bind-address = 0.0.0.0
# Disabling symbolic-links is recommended to prevent assorted security risks
symbolic-links=0
max_connections=1000
default_storage_engine=innodb
skip_external_locking
lower_case_table_names=1
skip_host_cache
skip_name_resolve
character_set_server=utf8
sql_mode='STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION'
apiVersion: apps/v1
kind: Deployment
metadata:
name: mysql-sre-database
labels:
app: mysql-sre
spec:
selector:
matchLabels:
app: mysql-sre
template:
metadata:
labels:
app: mysql-sre
spec:
containers:
- name: mysql
image: mysql:5.7
imagePullPolicy: IfNotPresent
args:
- --default_authentication_plugin=mysql_native_password
- --character-set-server=utf8mb4
- --collation-server=utf8mb4_unicode_ci
ports:
- containerPort: 3306
name: dbport
env:
- name: MYSQL_ROOT_PASSWORD
value: 1111111111111111
- name: MYSQL_DATABASE
value: wordpress
- name: MYSQL_USER
value: wordpress
- name: MYSQL_PASSWORD
value: wordpress
volumeMounts:
- name: db-data
mountPath: /var/lib/mysql
- name: mysql-config
mountPath: /etc/mysql/conf.d/
volumes:
- name: db-data
persistentVolumeClaim:
claimName: mysql-sre
- name: mysql-config
configMap:
name: mysql-config-sre
apiVersion: v1
kind: Service
metadata:
name: mysql-sre
spec:
type: NodePort
ports:
- name: mysqlport
protocol: TCP
port: 3306
targetPort: dbport
nodePort: 30106
selector:
app: mysql-sre
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: mysql-sre-backup
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: "640Gi"
volumeName:
storageClassName: nfs
apiVersion: batch/v1beta1
kind: CronJob
metadata:
name: mysql-sre-backup
spec:
schedule: "0 2 * * *"
jobTemplate:
spec:
template:
spec:
containers:
- name: mysql-backup
imagePullPolicy: IfNotPresent
image: mysql:5.7
env:
- name: MYSQL_BACKUP_USER
value: root
- name: MYSQL_BACKUP_USER_PASSWORD
value: rootPassW0rd
- name: MYSQL_HOST
value: mysql-sre
command:
- /bin/sh
- -c
- |
set -ex
mysqldump --host=MYSQL_HOST --user=MYSQL_BACKUP_USER \
--password=$MYSQL_BACKUP_USER_PASSWORD \
--routines --databases appdb --single-transaction \
> /mysql-backup/mysql-`date +"%Y%m%d"`.sql
volumeMounts:
- name: mysql-backup
mountPath: /mysql-backup
restartPolicy: OnFailure
volumes:
- name: mysql-backup
persistentVolumeClaim:
claimName: mysql-sre-backup
![]()
CKA,CKS双认证,有多年kubernetes一线经验。
某知名企业高级DevOps工程师,K8s运维架构师,Linux集群架构专家。
WEB架构
安全监控体系
集群架构
