Docker部署rancher2.9 local集群helm节点无法完成初始化（状态异常）

mike · 2025 年11 月 13 日 12:50

Rancher Server 设置

Rancher 版本：2.9.3
安装选项 (Docker install/Helm Chart): Docker 安装
在线或离线部署：部署命令如下

root@ksd:~# cp k3s-airgap-images.tar /data/rancher/k3s/agent/images/
root@ksd:~# docker run -d --privileged \
    -p 10080:80 -p 10443:443  \
    -e CATTLE_SYSTEM_DEFAULT_REGISTRY=registry.cn-hangzhou.aliyuncs.com \
    -e CATTLE_BOOTSTRAP_PASSWORD=rancher \
    -v /data/rancher:/var/lib/rancher \
    --name rancher \
    registry.cn-hangzhou.aliyuncs.com/rancher/rancher:v2.9.3

用户信息

登录用户的角色是什么？（管理员/集群所有者/集群成员/项目所有者/项目成员/自定义）：管理员
- 如果自定义，自定义权限集：

主机操作系统：
Ubuntu22.04

问题描述：
问题1：我按照网上的教程把 k3s-airgap-images.tar 放到了 /ddata/rancher/k3s/agent/images/ 目录下，这个步骤是否必要？
问题2： `Helm pod 都是失败，提示 Containers with incomplete status: [init-kubeconfig-volume]，换了好几个不同版本都没成功过

重现步骤：

结果：

预期结果：

截图：

其他上下文信息：

日志

io/fingerprint:SHA1=A4FC6F174DB6A5163D3DDD6F8338E96B44A8FFF3]
2025/11/13 14:15:15 [INFO] Updating TLS secret for cattle-system/serving-cert (count: 6): map[field.cattle.io/projectId:local:p-f84dm listener.cattle.io/cn-127.0.0.1:127.0.0.1 listener.cattle.io/cn-172.17.0.2:172.17.0.2 listener.cattle.io/cn-192.168.11.2:192.168.11.2 listener.cattle.io/cn-localhost:localhost listener.cattle.io/cn-rancher.cattle-system:rancher.cattle-system listener.cattle.io/fingerprint:SHA1=A4FC6F174DB6A5163D3DDD6F8338E96B44A8FFF3]
2025/11/13 14:15:23 [ERROR] Error during subscribe websocket: close sent
2025/11/13 14:15:53 [ERROR] Failed to install system chart fleet: pod cattle-system/helm-operation-6rr8h failed, watch closed
2025/11/13 14:16:00 [ERROR] Error during subscribe websocket: close sent
2025/11/13 14:16:55 [ERROR] Failed to install system chart fleet-crd: pod cattle-system/helm-operation-qzlcv failed, watch closed
2025/11/13 14:17:16 [INFO] starting duplicate binding cleanup
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] starting bindings cleanup
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] total PRTB duplicate clusterRoleBindings 0, roleBindings 0
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] binding with deterministic name not found, will delete all except the oldest binding
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] binding with deterministic name not found, will delete all except the oldest binding
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] binding with deterministic name not found, will delete all except the oldest binding
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] binding with deterministic name not found, will delete all except the oldest binding
2025/11/13 14:17:16 [INFO] [clean-dupe-bindings] total CRTB duplicate clusterRoleBindings 0, roleBindings 0
2025/11/13 14:17:16 [INFO] successfully cleaned up duplicate bindings
2025/11/13 14:17:57 [ERROR] Failed to install system chart fleet: pod cattle-system/helm-operation-m6pvr failed, watch closed

首次部署rancher，折腾了1天还没搞定，感觉坑有点多，求指点

ksd · 2025 年11 月 17 日 01:18

这个报错，应该就是镜像没拉下来啊，阿里云镜像仓库限速了，有的时候可能拉不下来

mike · 2025 年11 月 17 日 02:22

我是测试环境，新创建的集群只有一个master节点，我看到了pull image的问题之后，我手动pull image并且pull成功了，我的集群不会使用手动pull 的image完成部署吗？

ksd · 2025 年11 月 17 日 06:33

你在主机上测试用处不大，你得在 rancher 容器里，用 crictl 去 pull 镜像试试

主要是因为 docker run 启动的 rancher 里内置了一个 K3s，这个 K3s 上需要启动一些 pod 来支撑 rancher 运行