使用 Prometheus-Adapter 实现 HPA 使用 Custom Metrics 完成动态扩缩容
之前使用kube-prometheus
发现它有非常多的yaml
文件,其中就有Adapter
服务
Adapter
提供了custom metrics API
,实现HPA
通过Adapter
查询Prometheus
中指标进行动态扩缩容
[root@kubernetes ~]# kubectl get pod -n monitoring
NAME READY STATUS RESTARTS AGE
alertmanager-main-0 2/2 Running 0 41h
alertmanager-main-1 2/2 Running 0 41h
alertmanager-main-2 2/2 Running 0 41h
grafana-564bd845f6-z4qsd 1/1 Running 0 41h
kube-state-metrics-66db74d6dc-nld6q 3/3 Running 0 40h
kube-state-metrics-66db74d6dc-w74mz 3/3 Running 0 40h
node-exporter-jxptq 2/2 Running 0 41h
prometheus-adapter-6c6c4dd85-6br96 1/1 Running 0 13h
prometheus-adapter-6c6c4dd85-q4pw9 1/1 Running 0 13h
prometheus-k8s-0 2/2 Running 0 39h
prometheus-k8s-1 2/2 Running 0 39h
prometheus-operator-d9b65cf6f-drlbq 2/2 Running 0 41h
配置 Custom Metrics API
需要创建一个APIService
把Adapter
的服务通过API Server
进行代理
apiVersion: apiregistration.k8s.io/v1
kind: APIService
metadata:
labels:
app.kubernetes.io/component: metrics-adapter
app.kubernetes.io/name: prometheus-adapter
app.kubernetes.io/part-of: kube-prometheus
app.kubernetes.io/version: 0.12.0
name: v1beta1.custom.metrics.k8s.io
spec:
group: custom.metrics.k8s.io
groupPriorityMinimum: 100
insecureSkipTLSVerify: true
service:
name: prometheus-adapter
namespace: monitoring
port: 443
version: v1beta1
versionPriority: 100
创建完成后 APIServices 就会出现v1beta1.custom.metrics.k8s.io
API,此时还不能用,需要更新ConfigMap
文件使用Prometheus指标
[root@kubernetes ~]# kubectl get APIServices
NAME SERVICE AVAILABLE AGE
...
v1alpha1.monitoring.coreos.com Local True 42h
v1beta1.custom.metrics.k8s.io monitoring/prometheus-adapter False (FailedDiscoveryCheck) 14h
v1beta1.metrics.k8s.io monitoring/prometheus-adapter True 43h
...
v1beta3.flowcontrol.apiserver.k8s.io Local True 43h
v2.autoscaling Local True 43h
配置 ConfigMap 记录指标
需要配置Prometheus
的记录指标,编写方式有固定格式
-
seriesQuery:定义了要从
prometheus
中查询的指标,默认__name__
中填写指标名称 -
resources:定义了
pod
与namespace
,会映射成PromQL
中的标签- overrides:对
namespace
和pod
这两个标签进行了映射,指定了它们分别对应Kubernetes
中的namespace
和pod
- overrides:对
-
name:相当于重命名,重命名成
HPA
里需要配置的指标,此处配置成network_receive
-
metricsQuery:定义了具体的
PromQL
表达式-
<<.Series>>:为
seriesQuery
定义的查询指标 -
<<.LabelMatchers>>:为
resources
中定义的标签选择器的查询标签 -
<<.GroupBy>>:为实际的分组标签
-
apiVersion: v1
data:
config.yaml: |-
// rules 到 metricsQuery 都为新增内容,其余内容都是 Prometheus 自带的
// 有通用格式
"rules":
- seriesQuery: '{__name__="container_network_receive_bytes_total"}'
seriesFilters: []
resources:
overrides:
namespace:
resource: namespace
pod:
resource: pods
name:
matches: "^(.*)_bytes_total"
as: "network_receive"
metricsQuery: irate(<<.Series>>{<<.LabelMatchers>>}[5m])
"resourceRules":
"cpu":
"containerLabel": "container"
"containerQuery": |
sum by (<<.GroupBy>>) (
irate (
container_cpu_usage_seconds_total{<<.LabelMatchers>>,container!="",pod!=""}[120s]
)
)
...
"memory":
"containerLabel": "container"
"containerQuery": |
sum by (<<.GroupBy>>) (
container_memory_working_set_bytes{<<.LabelMatchers>>,container!="",pod!=""}
)
...
"window": "5m"
kind: ConfigMap
metadata:
labels:
...
name: adapter-config
namespace: monitoring
重启Adapter
服务后APIServices
也已经正常
[root@kubernetes adapter]# kubectl get APIServices
NAME SERVICE AVAILABLE AGE
v1. Local True 43h
v1.admissionregistration.k8s.io Local True 43h
v1.apiextensions.k8s.io Local True 43h
v1.apps Local True 43h
v1.authentication.k8s.io Local True 43h
v1.authorization.k8s.io Local True 43h
v1.autoscaling Local True 43h
v1.batch Local True 43h
v1.certificates.k8s.io Local True 43h
v1.coordination.k8s.io Local True 43h
v1.discovery.k8s.io Local True 43h
v1.events.k8s.io Local True 43h
v1.monitoring.coreos.com Local True 42h
v1.networking.k8s.io Local True 43h
v1.node.k8s.io Local True 43h
v1.policy Local True 43h
v1.rbac.authorization.k8s.io Local True 43h
v1.scheduling.k8s.io Local True 43h
v1.storage.k8s.io Local True 43h
v1alpha1.monitoring.coreos.com Local True 42h
v1beta1.custom.metrics.k8s.io monitoring/prometheus-adapter True 14h
v1beta1.metrics.k8s.io monitoring/prometheus-adapter True 43h
v1beta1.metrics.pixiu.io pixiu-system/pixiu-metrics-scraper True 43h
v1beta2.flowcontrol.apiserver.k8s.io Local True 43h
v1beta3.flowcontrol.apiserver.k8s.io Local True 43h
v2.autoscaling Local True 43h
验证
在APIServices
正常后,可以通过API
查看Prometheus Metrics
指标
[root@kubernetes ~]# kubectl get --raw "/apis/custom.metrics.k8s.io/v1beta1" | jq
{
"kind": "APIResourceList",
"apiVersion": "v1",
"groupVersion": "custom.metrics.k8s.io/v1beta1",
"resources": [
{
"name": "namespaces/network_receive",
"singularName": "",
"namespaced": false,
"kind": "MetricValueList",
"verbs": [
"get"
]
},
{
"name": "pods/network_receive",
"singularName": "",
"namespaced": true,
"kind": "MetricValueList",
"verbs": [
"get"
]
}
]
}
此时发现该Pod
已经有了network_receive
监控指标,可以进行HPA
测试了
[root@kubernetes ~]# kubectl get --raw "/apis/custom.metrics.k8s.io/v1beta1/namespaces/default/pods/*/network_receive" | jq
{
"kind": "MetricValueList",
"apiVersion": "custom.metrics.k8s.io/v1beta1",
"metadata": {},
"items": [
{
"describedObject": {
"kind": "Pod",
"namespace": "default",
"name": "hpa-demo-755f7fbb8f-966n9",
"apiVersion": "/v1"
},
"metricName": "network_receive",
"timestamp": "2024-10-30T03:05:26Z",
"value": "0",
"selector": null
}
]
}
测试
创建测试用例,整体apply
一下
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: hpa-demo
spec:
selector:
matchLabels:
app: hpa
template:
metadata:
labels:
app: hpa
spec:
containers:
- name: iperf
image: moutten/iperf
---
apiVersion: v1
kind: Service
metadata:
name: hpa-demo
spec:
ports:
- port: 5201
protocol: TCP
targetPort: 5201
selector:
app: hpa
type: NodePort
---
apiVersion: autoscaling/v2
kind: HorizontalPodAutoscaler
metadata:
name: hpa-demo
spec:
maxReplicas: 10
metrics:
- type: Pods
pods:
metric:
name: network_receive
target:
type: Value
averageValue: 10000
minReplicas: 1
scaleTargetRef:
apiVersion: apps/v1
kind: Deployment
name: hpa-demo
查看状态
[root@kubernetes ~]# kubectl get pod
NAME READY STATUS RESTARTS AGE
hpa-demo-755f7fbb8f-966n9 1/1 Running 0 65m
[root@kubernetes ~]# kubectl get svc
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
hpa-demo NodePort 10.254.237.91 <none> 5201:32479/TCP 70s
kubectl ClusterIP 10.254.174.106 <none> 80/TCP 20h
kubernetes ClusterIP 10.254.0.1 <none> 443/TCP 44h
[root@kubernetes ~]# kubectl get hpa
NAME REFERENCE TARGETS MINPODS MAXPODS REPLICAS AGE
hpa-demo Deployment/hpa-demo 0/10k 1 10 1 14h
使用iperf3
进行压测
# 本机方便安装 iperf3,通过 NodePort 端口访问 svc
Connecting to host 192.168.89.128, port 32479
[ 5] local 192.168.89.128 port 36808 connected to 192.168.89.128 port 32479
[ ID] Interval Transfer Bitrate Retr Cwnd
[ 5] 0.00-1.00 sec 1.15 GBytes 9.87 Gbits/sec 1 2.81 MBytes
[ 5] 1.00-2.00 sec 1.18 GBytes 10.1 Gbits/sec 0 2.81 MBytes
[ 5] 2.00-3.01 sec 1.17 GBytes 9.97 Gbits/sec 0 2.81 MBytes
[ 5] 3.01-4.00 sec 1.16 GBytes 10.0 Gbits/sec 0 2.81 MBytes
[ 5] 4.00-5.01 sec 1.16 GBytes 9.87 Gbits/sec 0 2.81 MBytes
[ 5] 5.01-6.00 sec 1.15 GBytes 10.0 Gbits/sec 0 2.81 MBytes
[ 5] 6.00-7.01 sec 1.18 GBytes 10.0 Gbits/sec 0 2.81 MBytes
[ 5] 7.01-8.00 sec 1.17 GBytes 10.1 Gbits/sec 0 2.81 MBytes
[ 5] 8.00-9.01 sec 1.16 GBytes 9.92 Gbits/sec 0 2.81 MBytes
[ 5] 9.01-10.00 sec 1.16 GBytes 10.0 Gbits/sec 0 2.81 MBytes
[ 5] 10.00-11.00 sec 1.16 GBytes 9.96 Gbits/sec 0 2.81 MBytes
HPA
可以通过Custom Metrics API
继续自定义指标动态扩缩容
[root@kubernetes ~]# kubectl get hpa
NAME REFERENCE TARGETS MINPODS MAXPODS REPLICAS AGE
hpa-demo Deployment/hpa-demo 358648919794m/10k 1 10 10 14h
[root@kubernetes ~]# kubectl get pod
NAME READY STATUS RESTARTS AGE
hpa-demo-755f7fbb8f-8vhx2 0/1 Pending 0 2m50s
hpa-demo-755f7fbb8f-966n9 1/1 Running 0 70m
hpa-demo-755f7fbb8f-bt899 0/1 Pending 0 2m35s
hpa-demo-755f7fbb8f-bw7q5 0/1 Pending 0 2m50s
hpa-demo-755f7fbb8f-dtqww 1/1 Running 0 3m5s
hpa-demo-755f7fbb8f-gtgdg 0/1 Pending 0 2m50s
hpa-demo-755f7fbb8f-k9pqn 0/1 Pending 0 3m5s
hpa-demo-755f7fbb8f-lzdsl 0/1 Pending 0 3m5s
hpa-demo-755f7fbb8f-t4nwv 0/1 Pending 0 2m35s
hpa-demo-755f7fbb8f-xjc5n 0/1 Pending 0 2m50s