Questions tagged [kubernetes]
Kubernetes is an open source orchestration system for Docker containers. It handles scheduling onto nodes in a compute cluster and actively manages workloads to ensure that their state matches the users declared intentions. Using the concepts of "labels" and "pods", it groups the containers which make up an application into logical units for easy management and discovery.
1,226
questions with no upvoted or accepted answers
7
votes
1
answer
3k
views
Is it possible to change the location of emptyDir volumes?
My kubernetes clusters' nodes all have small root partitions. Is it possible to configure k8s to use an alternate location for emptyDir volumes?
- 71
5
votes
2
answers
11k
views
Kubeadm 1.24 with containerd. Kubeadm init fail (centos 7)
I try to install a single node cluster on centos 7, with kubadm 1.24 and with containerd,
i followed the installation steps,
and i did:
containerd config default > /etc/containerd/config.toml
and ...
- 81
5
votes
0
answers
737
views
Heapster + InfluxDB on Google Container Engine (GKE)
I am trying to figure out what the best way to run Grafana/Heapster/InfluxDB on my GKE Kubernetes cluster.
From what I understand I cannot modify the kube-system namespace unless I want google to ...
- 205
4
votes
0
answers
1k
views
Adding a unique request header to hundreds of Ingresses with Traefik 2
we're (finally) migrating from Traefik 1 to 2. We run 400+ apps on GKE. Our one remaining challenge is this:
In Traefik 1 we set an annotation on each app's Ingress that adds a header to the request ...
- 7,918
4
votes
0
answers
428
views
Kubernetes setup with different networks for intra and inter-cluster communication
I have this use case: Setup multiple k8s clusters that can communicate with each other. I also have one network per cluster for intra-cluster communication and another network for inter-cluster ...
- 175
4
votes
0
answers
341
views
What steps should I take to secure a microk8s installation in 'production'?
Is microk8s secure enough to use in 'production'? Are there any steps that I should take to secure microk8s if the server it is running on is accessible to the internet?
I’m considering using ...
- 251
4
votes
2
answers
1k
views
How to log backend latency in Google Http Load Balancer and Stack Driver
We have a running kubernetes cluster on GKE and we Google HTTP Load Balancer in front of it.
HTTP Load Balancer logs all requests and we can access them in stack driver logging. But latency is not ...
google-cloud-platform
4
votes
0
answers
3k
views
RabbitMQ memory leak?
I am using a single instance of RabbitMQ on a kubernetes cluster. The RabbitMQ pod has access to 15Go of RAM and is setup with a high watermark of 10Go.
After a few hours of usage (and a few queues ...
- 1,329
4
votes
1
answer
6k
views
Unable to connect to posgres using pgadmin
I have a postgres instance inside a kubernetes cluster. I have setup a port forward and if I use the postgres CLI I can connect and perform queries as expected.
If I connect via pgadmin it appears to ...
- 141
3
votes
1
answer
967
views
Kubernetes cluster via kubeadm - CoreDNS buffer size too small / Pods network problems
I am new to deploying on-premise Kubernetes clusters. I managed to deploy one using kubeadm with weave CNI.
Internet connection inside Pods is somewhat sluggish / non-working. I am trying to deploy ...
- 31
3
votes
1
answer
5k
views
the gcp auth plugin is deprecated, how to skip this error?
I have install gke on a test account and configured the cli.
kuebctl get pods
is giving below warning.
W0916 17:23:58.063534 67381 gcp.go:119] WARNING: the gcp auth plugin is deprecated in v1.22+, ...
- 254
3
votes
0
answers
535
views
Kubernetes: route traffic to a subnet via a pod (accesing management VPN clients from pods)
Given two pods deployed on different nodes:
myapp pod deployed on apps node
wireguard pod deployed on vpn node, using a subnet like 172.16.30.0/16
I need myapp to be able to be able to route traffic ...
- 137
3
votes
1
answer
4k
views
Pull images to Google Kubernetes Engine cluster from an artifact registry in another project?
We have a (GKE) kubernetes cluster running in "project A" that needs to get images from an artifact registry that is located in another project, B. How can I configure the project A GKE ...
3
votes
1
answer
3k
views
Deploying an AWS Load Balancer Controller for EKS Fargate API service
Context
I'm trying to deploy a containerised API service to an EKS Fargate cluster and have it service requests from external internet addresses as an over-engineered POC/learning experience. I'm ...
- 31
3
votes
1
answer
3k
views
How to link configmap to external file?
With this we can create a configmap linked to external file.
kubectl create configmap database-config --from-file=database.properties
But when we edit the yaml, it will show that complete content of ...
- 412
3
votes
0
answers
1k
views
k3s without HA: how to switch master node?
Rancher documentation on k3s is quite nice and its HA support (both with external DB or embedded etcd) look nice, but I don't want/need an HA setup.
In case my master node fails, I don't mind having ...
- 123
3
votes
1
answer
492
views
CircleCI cannot specify region to deploy to in GKE
I have been tying to update a deployment in a GKE cluster using CircleCI. I was able to make container build and upload to GCR work just fine.
But I could not find a way to specify the GCP region ...
- 627
3
votes
0
answers
699
views
OpenShift Master not starting - assetConfig.servingInfo invalid value “”
I've installed OpenShift Enterprise 3.2 on a RHEL 7 system using the official advanced documentation using this template. My installation currently consists of 2 machines: a master and a node.
I ran ...
- 101
3
votes
0
answers
447
views
RabbitMQ Paging in Kubernetes
I've read through the RabbitMQ Production Checklist and we've made some changes to ensure that RabbitMQ pods in our Kubernetes cluster don't crash by setting the memory limits in the deployment to 1....
3
votes
0
answers
1k
views
Kubectl logs hangs for hours and then returns to works normally
Kubectl logs hanginging for hours and shows something like:
Unable to connect to the server: read tcp
192.168.69.227:57692->35.188.160.72:443: read: connection reset by peer
We have no idea how ...
- 133
3
votes
1
answer
458
views
Running Kafka in Kubernetes on AWS
I've the following scenario:
3 nodes instances spread across 3 Availability Zones
6 Brokers running in StatefulSets with AWS external volume for Kafka data.
Instance size: m4.2xlarge
EBS Volume: st1 ...
- 247
3
votes
2
answers
4k
views
kubernetes and sharing an nfs volume accross multiple pods
I'm trying to figure out how I can use a single nfs share with k8s persistent volume claims.
For example, let's say I have a single nfs pv configured:
apiVersion: v1
kind: PersistentVolume
metadata:
...
- 1,406
3
votes
0
answers
1k
views
Kubernetes - Best Practices for Physical Network Segmentation
Based on the following design constraint, does anyone have any best practices or recommendations regarding how to deploy Kubernetes across multiple network zones?
What is the most common and accepted ...
- 31
2
votes
0
answers
31
views
Switch ingress controller to new static IP with zero downtime?
My AKS app uses a standard ingress-nginx ingress controller with a static IP, installed via Helm chart:
myStaticIp=1.2.3.4
myNodeRg=MC_foobar_eastus
helm upgrade --install ingress-nginx ingress-nginx ...
- 385
2
votes
2
answers
70
views
How to obtain authorization to access EKS cluster
Followed this document Cert Signing to get the certificate issued.
I created cluster role and role binding to test it.
$ kubectl auth can-i create pods --as=myserver
yes
$ kubectl auth can-i list pods ...
2
votes
1
answer
595
views
The pod's /etc/resolv.conf does not reflect the changes on the host
When my pod's dnsPolicy is set to Default it picks up the DNS servers from the host's /run/systemd/resolve/resolv.conf (as configured by the resolvConf flag in Kubernetes) and stores them in /etc/...
- 121
2
votes
3
answers
112
views
Setting up a cluster with workload distribution
I want to setup a server cluster which can keep by servers as busy as possible while still giving fair compute time to everyone. I have setup a basic Kubernetes setup but the issue is that if some ...
- 21
2
votes
0
answers
327
views
Networking in a Distributed Kubernetes Cluster Over Tailscale
Background
I have two nodes, Narvi and Orcams, which are part of a Tailnet. They are located in physically distinct and differing "real" subnets. They can communicate with each other using ...
- 185
2
votes
1
answer
985
views
kubelet isn't running or healthy on kubeadm init
i have problem with kubeadm init .first of all i had this problem and i proceeded with its solution
https://stackoverflow.com/questions/41732265/how-to-use-kubeadm-to-create-kubernetes-cluster
it ...
- 33
2
votes
0
answers
720
views
Terraform Helm set tolerations
I'm trying to set tolerations values in Terraform Helm for the occm chart in the following way:
set {
name = "tolerations"
value = yamlencode([
{
key = "node.kubernetes....
- 33
2
votes
0
answers
125
views
Kubernetes pods are not getting distributed after uncordon the worker node
I have 1 master, 2 worker node kubernetes cluster, I have drained one worker node to apply os patch and to reboot. after the reboot I have uncordoned the worker node in master, when I checked the pod ...
- 33
2
votes
0
answers
758
views
Why does npm install fail with Assertion failed: (fd > STDERR_FILENO) using buildah?
Hey I have a Dockerfile for a project that I want to build inside of a Gitlab ci/cd pipeline running on Kubernetes.
The Image is built inside a buildah container from quay.io, but while the project ...
- 121
2
votes
0
answers
836
views
Failed pvc attachment using kubernetes longhorn
I'm running a self hosted RKE2 (rancher) kubernetes cluster (1.27) and longhorn (1.4.2) and I need some help for the correct configuration.
I'm deploying some database stuff via helm, like mongoDB, ...
- 135
2
votes
0
answers
90
views
Installation of dual stack k8s cluster on node with only IPv6 network
I am trying to understand if it is possible to install a dual stack k8s cluster on nodes with only IPv6 network. Nodes don't have any IPv4 addressing. I am using kubespray to install k8s cluster but ...
- 21
2
votes
0
answers
507
views
Change UID in influxdb Docker container when running in Kubernetes
When mounting persistent storage for influxdb container the NFS storage ownership is changed to uid 1000 when container is run. Need to have a known RHEL host user (2000) have ownership of the file ...
- 21
2
votes
0
answers
95
views
Cloudflare instead of nodebalancer in linode kubernetes cluster
there is a similar question regarding cloudflare as a load balancer for the VPS.
But in my case I'm looking for using cloudflare as a nodebalancer replacement for the linode kubernetes cluster.
Is ...
- 171
2
votes
4
answers
917
views
Creating replicated gluster volume always gives Distributed-Replicate volume
Peace upon you,
I am trying to create a replicated gluster volume but always it gives me Distributed-Replicate volume
i followed the following commands
Pool Peers
root@tiny1:~# gluster peer status
...
- 121
2
votes
0
answers
675
views
Access of K8s service within WSL2 + Docker Desktop from Linux machine over HTTPS
I've setup an authentication service in a Kubernetes cluster which lives in a Docker Desktop + WSL2 environment on a Windows 11 Pro machine.
It can be reached e.g. via CURL & PostMan requests from ...
- 121
2
votes
0
answers
635
views
istio sidecar injection not working
I have installed istio in my k8s cluster, and labeled my desired namespace with
istio-injection=enabled
However, when I install a pod, it doesn't inject the sidecar.
I followed the instructions on ...
- 143
2
votes
1
answer
1k
views
What does the MEMORY(bytes) value mean in "kubectl top nodes" on Windows AKS nodes?
When I run kubectl top nodes on my Azure Kubernetes Services cluster with Windows nodes, I get a value back for MEMORY(bytes):
PS >kubectl top nodes
NAME CPU(cores) ...
- 179
2
votes
0
answers
123
views
Kong-proxy not working inside Jelastic environment
We need a bit of help trying to install Kong in Kubernetes inside Jelastic environment. Me and My colleague have a production based kubernetes cluster with the following:
Load Balancer
1 Node with ...
- 21
2
votes
0
answers
214
views
What are the consequences of Kubernetes Deployment labels not being unique?
The documentation for .spec.selector says:
The .spec.selector field defines how the Deployment finds which Pods to manage. In this case, you select a label that is defined in the Pod template (app: ...
- 45.6k
2
votes
0
answers
162
views
Long latency to reply a TCP ACK
k8s environment(4 nodes, rke 1.21.5)
We noticed there is randomly significant latency in socket data transferring between different k8s pods. Latency could be as long as 15 seconds in some cases.
By ...
- 21
2
votes
1
answer
911
views
Ec2 Metadata updgrade from imdSV1 to imdSV2 causes 403 and 401 error- kube2iam
I recently updated my ec2 instances to use imdSV2 but had to rollback because of the following issue:
It looks like after i did the upgrade my init containers started failing and i saw the following ...
- 21
2
votes
0
answers
1k
views
k8s master node stuck in NotReady
I am trying to setup a single node k8s cluster, but I am having issues with it being stuck in NotReady
I get this if I run describe on the node
Conditions:
Type Status ...
- 383
2
votes
0
answers
6k
views
Pod coredns stuck in ContainerCreating state with Weave on k8s
First of all, let me thank you for this amazing guide. I'm very new to kubernetes and having a guide like this to follow helps a lot when trying to setup my first cluster!
That said, I'm having some ...
- 123
2
votes
0
answers
634
views
Share a dependency across helm charts
I am trying to launch two different Helm charts that share a common dependency (a MySQL database in this case).
Let's consider two different helm charts with the following setup in Chart.yaml:
Service ...
- 21
2
votes
1
answer
680
views
GitLab Helm Chart Minio use existing PVC
Previously in my helm chart, I had the snippet below...
minio:
replicas: 1
persistence:
enabled: true
existingClaim: minio
#size: 10Gi
serviceType: LoadBalancer
Because I do have an ...
- 613
2
votes
0
answers
1k
views
Find out specific Rancher RKE K8s image versions
I am wondering where I can find which containers versions will be deployed when I install a K8s Cluster with the following version combinations:
https://github.com/rancher/rancher/releases/tag/v2.6.4
...
- 21
2
votes
0
answers
663
views
iptables REDIRECT to Kubernetes NodePort causes request to hang
I am attempting to direct client traffic to a kubernetes cluster NodePort listening on 192.168.1.100.30000 (https port).
Client's needs to make a request to 192.168.1.100.8000 so I added the following ...
- 153
Related Tags
google-kubernetes-engine × 106
docker × 105
networking × 78
amazon-web-services × 71
kubeadm × 61
nginx-ingress × 52
nginx × 45
amazon-eks × 45
helm × 45
azure × 42
calico × 41
ingress × 38
aks × 38
kubectl × 37
linux × 35
ubuntu × 34
prometheus × 32
k3s × 30
domain-name-system × 29
load-balancing × 29
containers × 23
ssl × 22
cluster × 21
etcd × 19
more related tags
Hot Network Questions
- Do IDE data lines need pull-up resistors?
- Would a spaceport on Ceres make sense?
- What to do if you disagree with a juror during master's thesis defense?
- Issue with rendering Lightning progress indicator
- Why Owasp-crs does not allow Content-Type: application/x-www-form-urlencoded
- adding *any* directive above Include negates HostName inside that included file
- Folk stories and notions in mathematics that are likely false, inaccurate, apocryphal, or poorly founded?
- Different Bekenstein bound equations – what’s the difference?
- Is it better to show fake sympathy to maintain a good atmosphere?
- A 90s (maybe) made-for-TV movie (maybe) about a group of trainees on a spaceship. There is some kind of emergency and all experienced officers die
- Why did Geordi have his visor replaced with ocular implants between Generations and First Contact?
- Fantasy TV series with a male protagonist who uses a bow and arrows and has a hawk/falcon/eagle type bird companion
- What's Wrong With My Math - Odds of 3 Cards of the Same Suit When Drawing 10 Cards
- An alternative way to solve a classic problem of combinatorics
- What is the best catalog of black hole candidates?
- What does Athena mean by 'slaughtering his droves of sheep and cattle'?
- What is the original source of this Sigurimi logo?
- Is there any other reason to stockpile minerals aside preparing for war?
- Is automorphism on a compact group necessarily homeomorphism?How about N-dimensional torus?
- Are both vocal cord and vocal chord correct?
- How can a landlord receive rent in cash using western union
- Clip data in GeoPandas to keep everything not in polygons
- Can I tell a MILP solver to prefer solutions with fewer fractions?
- Tubeless tape width?