This topic describes how to create a cluster of Container Service for Kubernetes (ACK) Managed Edition in the ACK console.
The following example shows how to create a cluster of ACK Managed Edition. Default values and minimal configurations are used in certain settings.
For more information about the limits of ACK clusters, see Create a cluster of ACK Managed Edition.
- Log on to the ACK console.
- In the left-side navigation pane, click Clusters.
- In the upper-right corner of the Clusters page, click Create Kubernetes Cluster. On the Select Cluster Template page, find Standard Managed Cluster and click Create.
- Set the cluster parameters.
Default values are used for most parameters in this example. The following table describes the parameters.
- Complete Cluster Configurations
Parameter Description Cluster NameEnter a name for the cluster of Container Service for Kubernetes (ACK).Note The name must be 1 to 63 characters in length, and can contain digits, letters, and hyphens (-). Cluster specifications
Select a cluster type. Standard edition and Professional (Preview) are supported.
Select a region to deploy the cluster.
Resource GroupMove the pointer over All Resources at the top of the page and select the resource group to which the cluster belongs. The name of the selected resource group appears on the page.
All Resources is selected in this example.
Use the default setting.
By default, the Docker runtime is selected. The default setting is used in this example. For more information about the differences between Docker and Sandboxed-Container, see How do I select between Docker and Sandboxed-Container?.
Set the Virtual Private Cloud (VPC) network for the cluster.Select a Virtual Private Cloud (VPC) network to deploy the cluster. Shared VPC networks and standard VPC networks are supported.
Note ACK clusters support only VPC networks. You can select a VPC network from the drop-down list. If no VPC network is available, click Create VPC to create one. For more information, see Create a VPC.
- Shared VPC network: The owner of a VPC network (resource owner) can share VSwitches in the VPC network under the account of the owner with other accounts in the same organization.
- Standard VPC network: The owner of a VPC network (resource owner) cannot share VSwitches in the VPC network under the account of the owner with other accounts.
You can select up to three VSwitches deployed in different zones. If no VSwitch is available, click Create VSwitch to create one. For more information, see Create a VSwitch.
By default, Flannel is selected. For more information about Flannel and Terway, see Flannel and Terway.
Pod CIDR Block
If you select Flannel, you must set Pod CIDR Block.
The CIDR block specified by Pod CIDR Block cannot overlap with that of the VPC network or existing ACK clusters in the VPC network. The CIDR Block cannot be modified after it is specified. The Service CIDR block cannot overlap with the Pod CIDR block. For more information about subnetting for ACK clusters, see Plan Kubernetes CIDR blocks under a VPC.
Set Service CIDR. The CIDR block specified by Service CIDR cannot overlap with that of the VPC network or existing ACK clusters in the VPC network. The CIDR block cannot be modified after it is specified. The Service CIDR block cannot overlap with the Pod CIDR block. For more information about subnetting for ACK clusters, see Plan Kubernetes CIDR blocks under a VPC.
IP Addresses per Node
The default value is 64. IP Addresses per Node specifies the number of IP addresses that can be assigned to a node.
By default, Configure SNAT for VPC is selected.
By default, a cluster is not accessible over the Internet. If the VPC network that you select for the cluster cannot access the Internet, you can select Configure SNAT for VPC. Then, ACK creates a Network Address Translation (NAT) gateway and configures Source Network Address Translation (SNAT) entries to enable Internet access for the VPC network.
By default, Expose API Server with EIP is not selected.The ACK API server provides multiple HTTP-based RESTful APIs, which can be used to create, delete, modify, query, and monitor resources such as pods and Services.
- If you select this check box, an EIP is created and attached to an internal Server Load Balancer (SLB) instance. Port 6443 used by the API server is opened on master nodes. You can connect to and manage the cluster by using kubeconfig over the Internet.
- If you clear this check box, no EIP is created. You can connect to and manage the cluster only by using kubeconfig from within the VPC network.
RDS WhitelistSet the Relational Database Service (RDS) whitelist. Add the IP addresses of cluster nodes to the RDS whitelist.Note To enable an RDS instance to access an ACK cluster, you must deploy the RDS instance in the same VPC network as the ACK cluster.
By default, RDS whitelist is not configured.
You can select Create Basic Security Group, Create Advanced Security Group, and Select Existing Security Group. For more information, see Overview.
By default, Create Advanced Security Group is selected. The default setting is used in this example.
The advanced settings of the cluster are not configured in this example. For more information about the advanced settings of a cluster, see Configure advanced settings for a cluster.
- Click Next:Worker Configurations to set worker nodes configurations.
Specify whether to use existing Elastic Compute Service (ECS) instances or purchase ECS instances. By default, Create Instance is selected.
By default, the pay-as-you-go billing method is selected. The pay-as-you-go and subscription billing methods are supported.
You can select multiple instance types. For more information, see Instance families.
The selected instance types are displayed.
Specify the number of worker nodes to be created.
System Disk By default, ultra disk is selected. The default storage capacity is 120 GiB. Mount Data Disk
By default, this option is not selected.
ESSDs, SSDs, and ultra disks are supported. You can enable disk encryption and backup when you add data disks.
Operating System By default, Alibaba Cloud Linux 2.xx is selected. Logon Type
- Key Pair:
- Key Pair: Select an SSH key pair from the drop-down list.
- create a key pair: Create a key pair if no SSH key pair is available. For more information about how to create an SSH key pair, see Create an SSH key pair. After the key pair is created, set it as the credential for logging on to the cluster.
- Password: Enter a password for logging on to the nodes.
- Confirm Password: Enter the password again.
Advanced settings for worker nodes
The advanced settings of worker nodes are not configured in this example. For more information, see Configure advanced settings of worker nodes.
- Key Pair:
- Click Next:Component Configurations to set component configurations.
Parameter Description Ingress
By default, Install Ingress Controllers is selected. Select Public Network for SLB Type.
By default, CSI is selected. For more information about the Flexvolume and CSI plug-ins, see Volume plug-ins.
Specify whether to install the Cloud Monitor agent. By default, Install CloudMonitor Agent on ECS Instance and Enable Prometheus Monitoring are selected. After the Cloud Monitor agent is installed on ECS nodes, you can view monitoring information about the nodes in the Cloud Monitor console.
The Cloud Monitor Agent is not installed in this example.
Specify whether to activate Log Service. You can select an existing Log Service project or create a Log Service project.
By default, Enable Log Service is selected. When you create an application, you can activate Log Service through a few steps. For more information, see Use Log Service to collect Kubernetes logs.
By default, Install node-problem-detector and Create Event Center is selected. You can also specify whether to create Ingress dashboard in the Log Service console.
Log Service is not set up in this example.
Workflow EngineSpecify whether to activate Alibaba Cloud Genomics Compute Service (AGS).
- If you select this check box, the system automatically installs the AGS workflow plug-in when it creates the cluster.
- If you clear this check box, you must manually install the AGS workflow plug-in. For more information, see Introduction to AGS CLI.
AGS is not selected in this example.
- Click Next:Confirm Order.
- Read the Terms of Service and select the check box, and then click Create Cluster.Note It takes about 10 minutes to create an ACK cluster that consists of multiple nodes.
- Complete Cluster Configurations