The kubectl
command provides command line access to the kubernetes API.
Print the version of the client and server.
Usage:
kubectl version [flags]
Available Flags:
--api-version="v1beta1": The version of the API to use against the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority="": Path to a certificate file for the certificate authority
-c, --client=false: Client version only (no server required)
--client-certificate="": Path to a client certificate for TLS.
--client-key="": Path to a client key file for TLS.
-h, --help=false: help for version
--insecure-skip-tls-verify=false: If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": Kubernetes apiserver to connect to
Use "kubectl help [command]" for more information about that command.
Create a local proxy to the API server
Usage:
kubectl proxy [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-h, --help=false: help for proxy
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-p, --port=8001: The port on which to run the proxy
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
-w, --www="": Also serve static files from the given directory under the prefix /static
Display one or more resources Possible resources include pods (po), replication controllers (rc), services (se), minions (mi), or events (ev).
If you specify a Go template, you can use any fields defined for the API version you are connecting to the server with.
Examples:
$ kubectl get pods
<list all pods in ps output format>
$ kubectl get replicationController 1234-56-7890-234234-456456
<list single replication controller in ps output format>
$ kubectl get -o json pod 1234-56-7890-234234-456456
<list single pod in json output format>
Usage:
kubectl get [(-o|--output=)json|yaml|...] <resource> [<id>] [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-h, --help=false: help for get
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--no-headers=false: When using the default output, don't print headers
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-o, --output="": Output format: json|yaml|template|templatefile
--output-version="": Output the formatted object with the given version (default api-version)
-l, --selector="": Selector (label query) to filter on
-s, --server="": The address of the Kubernetes API server
-t, --template="": Template string or path to template file to use when --output=template or --output=templatefile
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
-w, --watch=false: After listing/getting the requested object, watch for changes.
--watch-only=false: Watch for changes to the requseted object(s), without listing/getting first.
Show details of a specific resource.
This command joins many API calls together to form a detailed description of a given resource.
Usage:
kubectl describe <resource> <id> [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-h, --help=false: help for describe
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
Create a resource by filename or stdin.
JSON and YAML formats are accepted.
Examples:
$ kubectl create -f pod.json
<create a pod using the data in pod.json>
$ cat pod.json | kubectl create -f -
<create a pod based on the json passed into stdin>
Usage:
kubectl create -f filename [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-f, --filename="": Filename or URL to file to use to create the resource
-h, --help=false: help for create
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
Create all resources contained in JSON file specified in a directory, filename or stdin
JSON and YAML formats are accepted.
Examples:
$ kubectl createall -d configs/
<creates all resources listed in JSON or YAML files, found recursively under the configs directory>
$ kubectl createall -f config.json
<creates all resources listed in config.json>
$ cat config.json | kubectl apply -f -
<creates all resources listed in config.json>
Usage:
kubectl createall [-d directory] [-f filename] [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-d, --directory="": Directory of JSON or YAML files to use to update the resource
-f, --filename="": Filename or URL to file to use to update the resource
-h, --help=false: help for createall
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
Update a resource by filename or stdin.
JSON and YAML formats are accepted.
Examples:
$ kubectl update -f pod.json
<update a pod using the data in pod.json>
$ cat pod.json | kubectl update -f -
<update a pod based on the json passed into stdin>
Usage:
kubectl update -f filename [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-f, --filename="": Filename or URL to file to use to update the resource
-h, --help=false: help for update
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
Delete a resource by filename, stdin, resource and id or by resources and label selector.
JSON and YAML formats are accepted.
If both a filename and command line arguments are passed, the command line arguments are used and the filename is ignored.
Note that the delete command does NOT do resource version checks, so if someone submits an update to a resource right when you submit a delete, their update will be lost along with the rest of the resource.
Examples:
$ kubectl delete -f pod.json
<delete a pod using the type and id pod.json>
$ cat pod.json | kubectl delete -f -
<delete a pod based on the type and id in the json passed into stdin>
$ kubectl delete pods,services -l name=myLabel
<delete pods and services with label name=myLabel>
$ kubectl delete pod 1234-56-7890-234234-456456
<delete a pod with ID 1234-56-7890-234234-456456>
Usage:
kubectl delete ([-f filename] | (<resource> [(<id> | -l <label>)] [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-f, --filename="": Filename or URL to file to use to delete the resource
-h, --help=false: help for delete
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-l, --selector="": Selector (label query) to filter on
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
Print the logs for a container in a pod. If the pod has only one container, the container name is optional Examples:
$ kubectl log 123456-7890 ruby-container
<returns snapshot of ruby-container logs from pod 123456-7890>
$ kubectl log -f 123456-7890 ruby-container
<starts streaming of ruby-container logs from pod 123456-7890>
Usage:
kubectl log [-f] <pod> [<container>] [flags]
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-f, --follow=false: Specify if the logs should be streamed.
-h, --help=false: help for log
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
Usage:
kubectl [flags]
kubectl [command]
Available Commands:
version Print version of client and server
proxy Run a proxy to the Kubernetes API server
get [(-o|--output=)json|yaml|...] <resource> [<id>] Display one or many resources
describe <resource> <id> Show details of a specific resource
create -f filename Create a resource by filename or stdin
createall [-d directory] [-f filename] Create all resources specified in a directory, filename or stdin
update -f filename Update a resource by filename or stdin
delete ([-f filename] | (<resource> [(<id> | -l <label>)] Delete a resource by filename, stdin or resource and id
namespace [<namespace>] Set and view the current Kubernetes namespace
log [-f] <pod> [<container>] Print the logs for a container in a pod.
help [command] Help about any command
Available Flags:
--api-version="v1beta1": The API version to use when talking to the server
-a, --auth-path="/Users/bburns/.kubernetes_auth": Path to the auth info file. If missing, prompt the user. Only used if using https.
--certificate-authority=: Path to a cert. file for the certificate authority.
--client-certificate=: Path to a client key file for TLS.
--client-key=: Path to a client key file for TLS.
-h, --help=false: help for kubectl
--insecure-skip-tls-verify=%!s(bool=false): If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure.
--match-server-version=false: Require server version to match client version
-n, --namespace="": If present, the namespace scope for this CLI request.
--ns-path="/Users/bburns/.kubernetes_ns": Path to the namespace info file that holds the namespace context to use for CLI requests.
-s, --server="": The address of the Kubernetes API server
--token=: Bearer token for authentication to the API server.
--validate=false: If true, use a schema to validate the input before sending it
The kubecfg
command line tools is used to interact with the Kubernetes HTTP API.
kubecfg [options] run <image> <replicas> <controller-name>
Creates a Kubernetes ReplicaController object.
[options]
are described in the Options section.<image>
is the Docker image to use.<replicas>
is the number of replicas of the container to create.<controller-name>
is the name to assign to this new ReplicaController.kubecfg -p 8080:80 run dockerfile/nginx 2 myNginxController
kubecfg [options] resize <controller-name> <new-size>
Changes the desired number of replicas, causing replicas to be created or deleted.
[options]
are described in the Options section.kubecfg resize myNginxController 3
kubecfg [options] stop <controller-name>
Stops a controller by setting its desired size to zero. Syntactic sugar on top of resize.
[options]
are described in the Options section.kubecfg [options] rm <controller-name>
Delete a replication controller. The desired size of the controller must be zero, by
calling either kubecfg resize <controller-name> 0
or kubecfg stop <controller-name>
.
[options]
are described in the Options section.Kubecfg also supports raw access to the basic restful requests. There are four different resources you can acccess:
pods
replicationControllers
services
minions
Raw access to a RESTful GET request.
kubecfg [options] get pods/pod-abc-123
Raw access to a RESTful LIST request.
kubecfg [options] list pods
Raw access to a RESTful POST request.
kubecfg <-c some/body.[json|yaml]> [options] create pods
Raw access to a RESTful PUT request.
kubecfg <-c some/body.[json|yaml]> [options] update pods/pod-abc-123
Raw access to a RESTful DELETE request.
kubecfg [options] delete pods/pod-abc-123
kubecfg -h [-c config/file.json] [-p :,..., :] <method>
Kubernetes REST API:
kubecfg [OPTIONS] get|list|create|delete|update <minions|pods|replicationControllers|services>[/<id>]
Manage replication controllers:
kubecfg [OPTIONS] stop|rm|rollingupdate <controller>
kubecfg [OPTIONS] run <image> <replicas> <controller>
kubecfg [OPTIONS] resize <controller> <replicas>
-V=true|false
: Print the version number.-alsologtostderr=true|false
: log to standard error as well as files-auth="/path/to/.kubernetes_auth"
: Path to the auth info file. Only used if doing https.-c="/path/to/config_file"
: Path to the config file.-h=""
: The host to connect to.-json=true|false
: If true, print raw JSON for responses-l=""
: Selector (label query) to use for listing-log_backtrace_at=:0
: when logging hits line file:N, emit a stack trace-log_dir=""
: If non-empty, write log files in this directory-log_flush_frequency=5s
: Maximum number of seconds between log flushes-logtostderr=true|false
: log to standard error instead of files-p=""
: The port spec, comma-separated list of <external>:<internal>,...
-proxy=true|false
: If true, run a proxy to the API server-s=-1
: If positive, create and run a corresponding service on this port, only used with 'run'-stderrthreshold=0
: logs at or above this threshold go to stderr-template=""
: If present, parse this string as a golang template and use it for output printing-template_file=""
: If present, load this file as a golang template and use it for output printing-u=1m0s
: Update interval period-v=0
: log level for V logs. See Logging Conventions for details-verbose=true|false
: If true, print extra information-vmodule=""
: comma-separated list of pattern=N settings for file-filtered logging-www=""
: If -proxy is true, use this directory to serve static files-yaml=true|false
: If true, print raw YAML for responses此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。