在筆記本Win10中基於WSL+Docker Desktop安裝Kubernetes和Istio、Knative

# Download the latest version of KinD
curl -Lo ./kind https://github.com/kubernetes-sigs/kind/releases/download/v0.7.0/kind-$(uname)-amd64
# Make the binary executable
chmod +x ./kind
# Move the binary to your executable path
sudo mv ./kind /usr/local/bin/

# Check if the KUBECONFIG is not set
echo $KUBECONFIG
# Check if the .kube directory is created > if not, no need to create it
ls $HOME/.kube
# Create the cluster and give it a name (optional)
kind create cluster --name wslkind

出錯：docker pull kindest/node:v1.17.0@sha256:95XXX

docker run hello-world

docker : Unable to find image 'hello-world:latest' locally
docker: Error response from daemon: Get https://registry-1.docker.io/v2/: net/http: TLS handshake timeout.

docker run hello-world
latest: Pulling from library/hello-world

kind create cluster --name wslkind

Creating cluster "kind" ...
   Ensuring node image (kindest/node:v1.17.0) 
   Preparing nodes 
   Writing configuration 
   Starting control-plane 
   Installing CNI 
   Installing StorageClass 
Set kubectl context to "kind-kind"
You can now use your cluster with:

kubectl cluster-info --context kind-kind

Have a question, bug, or feature request? Let us know! https://kind.sigs.k8s.io/community 

kubectl cluster-info --context kind-kind

Kubernetes master is running at https://127.0.0.1:32768
KubeDNS is running at https://127.0.0.1:32768/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy

To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.

{
  "kind": "Status",
  "apiVersion": "v1",
  "metadata": {
    
  },
  "status": "Failure",
  "message": "forbidden: User \"system:anonymous\" cannot get path \"/\"",
  "reason": "Forbidden",
  "details": {
    
  },
  "code": 403
}

curl -L https://istio.io/downloadIstio | sh -

wget  https://raw.githubusercontent.com/istio/istio/release-1.6/release/downloadIstioCandidate.sh

chmod +x ./downloadIstioCandidate.sh
export ISTIO_VERSION=1.6.4
./downloadIstioCandidate.sh

Trying with TARGET_ARCH. Downloading istio-1.6.4 from https://github.com/istio/istio/releases/download/1.6.4/istio-1.6.4-linux-amd64.tar.gz ...

Istio 1.6.4 Download Complete!

Istio has been successfully downloaded into the istio-1.6.4 folder on your system.

cat << EOF > ./istio-minimal-operator.yaml
apiVersion: install.istio.io/v1alpha1
kind: IstioOperator
spec:
  values:
    global:
      proxy:
        autoInject: disabled
      useMCP: false
      # The third-party-jwt is not enabled on all k8s.
      # See: https://istio.io/docs/ops/best-practices/security/configure-third-party-service-account-tokens
      jwtPolicy: first-party-jwt

  addonComponents:
    pilot:
      enabled: true
    prometheus:
      enabled: false

  components:
    ingressGateways:
      - name: istio-ingressgateway
        enabled: true
      - name: cluster-local-gateway
        enabled: true
        label:
          istio: cluster-local-gateway
          app: cluster-local-gateway
        k8s:
          service:
            type: ClusterIP
            ports:
            - port: 15020
              name: status-port
            - port: 80
              name: http2
            - port: 443
              name: https
EOF

cd istio-1.6.4/bin
./istioctl manifest apply -f istio-minimal-operator.yaml

Istio core installed                                                                                                 
Istiod installed                                                                                                     
Addons installed                                                                                                     
Ingress gateways installed                                                                                           
Installation complete            

kubectl get pods --namespace istio-system