Questions tagged [kubernetes]
For questions about Kubernetes, an open-source system for automating deployment, scaling, and management of containerized applications.
889 questions
-1
votes
1
answer
13
views
In kubernetes, I want to restrict my pod scheduling on worker node if memory utilisation of worker node goes above 50% of its capacity?
For eg: worker node(W) have 64GB of memory and 16vCPUs
resources assigned to a pod : cpu - 4 , memory- 8GB
Now only 4 pods can be scheduled on worker node(W).
How can i achieve this ?
Node affinity , ...
0
votes
0
answers
6
views
keda-add-ons-http-interceptor pods are in CrashLoopBackOff - not sure what is missing here [closed]
{"level":"info","ts":1733906885.9611363,"caller":"interceptor/main.go:44","msg":"starting interceptor","timeoutConfig":{&...
0
votes
0
answers
2
views
how to connect react to springboot in K8s? frontend not visible on Loadbalancer IP!! React+SpringBoot+AKS,
Both pod's logs are clear, so not have anything to show! i can share the YAML file, in that i have mention
frontend.yml
env:
- name: REACT_APP_BACKEND_URL
value: "http://backend-service:...
- 1
0
votes
0
answers
6
views
Limiting Access to logs on a specific cluster to Grafana Admins
I have 3 cluster (A-B-C), I installed loki on cluster A using the grafana/loki helm chart, and on cluster B and C I have promtail installed pushing logs to cluster A, how can I make logs collected ...
- 1
0
votes
1
answer
14
views
Automatic volume migration following the pod
I have k8s test cluster with 1 master and 2 worker nodes. I created a PersistentVolumeClaim resource using the Hetzner Cloud csi driver. This driver only allows you to create ReadWriteOnce volumes.
...
0
votes
0
answers
11
views
Cannot perform nslookup inside kubernetes pod
I have installed k3s to some raspberry pis using this ansible script however when i go to install anything, the pods cannot query the coredns pod
tom.mclean@node-0:~$ kubectl run coredns-test --image=...
- 101
0
votes
0
answers
12
views
Preventing HPA Auto-Scaling during Kubernetes deployments when using custom metrics
We have an app that automatically sets up Kubernetes HPA to our customers.
We are now using metrics from Prometheus as targets to HPA. These metrics are exported from our Java applications using the ...
- 101
0
votes
0
answers
15
views
Kubernetes Ingress rule with Exact behaves like Prefix
I have a Kubernetes ingress configuration that uses nginx as Ingress Controller.
The Ingress template has a for loop that picks up the paths that I define in the values.yaml file as well as the type ...
- 1
0
votes
0
answers
13
views
Metric to track actual CPU usage
I've been a bit confused by the metrics available for monitoring CPU usage and what I'm looking for is to track actual CPU usage (not just increases) over time.
kube-state-metrics exposes a ...
- 101
0
votes
1
answer
14
views
Understanding Kubernetes serviceaccounts and mounted secrets
I am new to Kubernetes and I am trying to understand some basic concepts such as serviceaccounts and secrets. As explained in the Kubernetes docs each pod associated with a serviceaccount has its ...
- 101
0
votes
1
answer
72
views
ingress failing due to error: path /?(.*) cannot be used with pathType Prefix
I'm trying to deploy this ingress service on AWS EKS. it works locally, but not when deployed to EKS.
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: ingress-service
annotations:
...
0
votes
1
answer
15
views
security risk with reusing the same UID:GID for users when creating docker containers all deployed to the same cluster
Thanks for taking the time to read my question.
I am having trouble understanding the risks with using the same UID and GID for multiple containers deployed in the same kubernetes cluster. Lets say ...
0
votes
1
answer
17
views
PostgreSQL Pod and Image Pull Issues in AWS EKS Deployment
I am working on deploying Violet Labs' Helm chart on an AWS EKS cluster. Following the setup instructions provided by Violet Labs, the deployment encounters two primary issues:
PostgreSQL Pod ...
- 1
0
votes
0
answers
21
views
Can't get Hetzner CI/CD deployment working - what machines are available? Is there some other issue?
TL;DR: I can't seem to find working CX22s/32s or CAX11s/21s anywhere. What machine + location combinations are actually available currently? Or do I have some other problem?
Main issue:
I am a ...
- 101
0
votes
0
answers
18
views
EKS DR Strategy - How to control container activation in warm standby region
I have an EKS cluster with a warm standby in another AWS region for disaster recovery. Some of my containerized applications process data and forward it to other systems - I need to ensure these ...
0
votes
1
answer
15
views
How to force shell interpolation in kubernetes environment variables
I'm using Helm and kubernetes to deploy a number of apps, i'm trying to inject a number of environmental variables using envFrom pointing to an already defined secret.
Some of the environmental ...
0
votes
0
answers
17
views
the traefik 2.10 changed the x-real-ip and x-forwarded-for http header
I am using traefik 2.10 to forward the http request into kuberentes cluster, the http forward path is: web->openresty->traefik->service->pod, in the host (the forward step is openresty->...
- 171
0
votes
1
answer
23
views
Kubernetes stateful pods for individual streams
I have an application which processes a single stream of data. Each stream has a unique identifier and a URL. The number of streams is dynamic, but I only want one instance of the application to ...
- 101
2
votes
0
answers
50
views
Beginner at Kubernetes - cluster creation not finising - unable to work out why
I'm fairly new to K8s and learning through AWS EKS. I setup a cluster with:
cd <some dir>
CLUSTER_NAME=k8s-play
eksctl anywhere generate clusterconfig $CLUSTER_NAME --provider docker > $...
- 121
0
votes
1
answer
27
views
Has anyone gotten Kubernetes ImageVolume working, preferably in Minikube?
I'm trying to Use an Image Volume With a Pod, but having no luck. Wondering if someone has ever gotten it working?
My Setup:
bash-3.2$ minikube version
minikube version: v1.34.0
commit: ...
0
votes
0
answers
14
views
StatefulSet Status Conditions Field Not Populating
I'm running a StatefulSet in my Kubernetes cluster, but I noticed that the conditions field in the StatefulSet's status is not getting populated. However, when I use a Deployment instead of a ...
1
vote
0
answers
29
views
Client Kubernetes pod can't connect to server pod using internal svc name
I have 2 pods, one for server and one for client. both have services. both services is of type NodePort.
basic-to-do-client NodePort 10.110.80.200 <none> 80:32295/TCP 44h ...
- 11
0
votes
1
answer
17
views
kubernetes rancher - self singed certificate doesn't let me access the site
I want to use a self-signed certificate for Rancher, but instead of the Firefox error:
Warning: Potential Security Risk Ahead
Where I can usually accept the risk and continue, I get this:
Did Not ...
- 101
0
votes
0
answers
15
views
Is there a best practice around sharing a role with multiple namespaces or services?
I noticed that in our cluster, we have dozens of roles which are identical if you ignore unique fields like creationTimestamp, uid, resourcesVersion, labels, name and namespace:
The following will ...
- 101
0
votes
1
answer
17
views
question on the meaning of `{}` in k8s NetworkPolicy
I am referring to the below paragraph from Certified Kubernetes Security Specialist (CKS) Study Guide By Benjamin Muschko · 2023.
since I am a bit curious to know how the precedence of NetworkPolicy ...
- 101
0
votes
0
answers
13
views
What are the recommendations to manage Horizontal scaling and HA for Ingress Gateway/ Proxy pods for HTTP2?
Typically for ingress (proxy gateway), there would be proxy pods (For e.g IstioGateway, Nginx) and typically a load balancer service in front of it to expose them externally. The proxy pods could be ...
- 473
0
votes
1
answer
33
views
How to multiarch Docker build on Kubernetes Pod agents?
My organization uses Jenkins on Kubernetes (deployed with Helm; Pod based agents).
With emphasis on pod agent configuration - how can one build multiarchitecture Docker images (like with QEMU & ...
- 162
0
votes
0
answers
8
views
Luna HSM connection establishment from Kubernetes Setup
As you may already know, Luna HSM Clients establish a connection with both certificates and source ip with HSMs. While in the pod based deployment, the ips are dynamic this authentication is not ...
0
votes
0
answers
72
views
K3s NVIDIA Device Plugin Not Detecting GPUs: "No devices found" Error
I'm currently working with a K3s cluster and trying to set up GPU support using the NVIDIA device plugin. However, I'm encountering an issue where the plugin logs show:
E1004 13:11:10.866124 1 ...
- 31
2
votes
0
answers
66
views
k9s only shows around 50-100 lines of logs, despite more logs being available
I've started using k9s, a TUI for exploring a kubernetes cluster.
When I use it to view logs, it however only shows me around 50-100 lines, instead of all the logs, or at least a decent chunk of them. ...
- 121
0
votes
0
answers
18
views
Upgrade from Kubernetes 1.24 to 1.25 after repo deprecation
Hi as the title says I'm trying to upgrade to kubernetes cluster from 1.24 to 1.25
I've update the yum repo as stated by the kubernetes guide to this but I cant seem to get any kubeadm versions ...
- 1
0
votes
0
answers
22
views
Can you have kubevirt VMs failover automatically when a node fails?
By failover I mean the kubevirt VMs that were on the failed node should be rebooted back up on a live node.
This is similar to how VMs run in a VMware cluster with HA capabilities.
Kubernetes clusters ...
- 101
0
votes
0
answers
132
views
Unable to Access MediaMTX WebRTC Stream in Minikube Kubernetes Cluster
Mediamtx webrtc stream is not accessible while running inside k8s cluster in minikube
I am facing an issue while trying to access a MediaMTX WebRTC stream that is deployed inside a Minikube Kubernetes ...
0
votes
1
answer
42
views
cert-manager and cluster issuer - not registering subdomain
I have this issue with one particular domain.
I have a setup in AWS where I deploy apps in EKS via helm-charts (ArgoCD) and if the helm chart has ingress defined ... it registers the domain in Route53 ...
- 1
0
votes
1
answer
60
views
why all my aws-node Pods in CrashLoopBackOff State in Kubernetes Cluster
I'm currently facing an issue with my Kubernetes cluster where all the aws-node pods in the kube-system namespace are in a CrashLoopBackOff state. Here are the details of my setup:
Kubernetes Version: ...
0
votes
0
answers
24
views
How to import running helm release into ArgoCD
For our production clusters we want to adopt ArgoCD for the managemend of the cluster state.
We currently have many custome helm-charts deployed into this cluster, some of these are quite old. Let's ...
- 101
0
votes
0
answers
22
views
Cannot access the service on k3s
I'm new to Kubernetes and I'm setting up my first project. The application responds with a hello world message on the '/' route. Here is my deployment file:
apiVersion: apps/v1
kind: Deployment
...
- 1
0
votes
0
answers
430
views
How to resolve ‘The node was low on resource: ephemeral-storage’?
I am currently trying to run a kubernetes job. The job has several pods, and these pods run on 3 different nodes. I am constantly running into This issue -
Message: The node was low on resource: ...
0
votes
0
answers
13
views
Running bash scripts against a K8S Manifest file which uses Helm templating
I want to run a kubesec scan against some of my K8S manifest files, the issue is that I'm using Helm templating in my files and when I try to execute a simple bash script I get errors like these
...
1
vote
0
answers
11
views
Prioritizing scheduling with Kubernetes
I have a case where I create 1000 low-priority pods on 20 nodes (one pod can run on one node), to run all 1000 pods will take a few days. Meanwhile, I want to run another high-priority pod and ensure ...
- 111
0
votes
0
answers
24
views
Getting Empty reply from server when curling using Consul - Config entry not found for \"proxy-defaults\" / \"global\"
This question is related to Consul.
I am struggling with Consul for a while to get things working. To summarize I have 1 K8S and 1 Nomad cluster. I also have 1 Consul Server deployed externally of the ...
0
votes
0
answers
21
views
Kubernetes HPA not working with Datadog metric
I am trying to autoscale PODs based on custom metric from DatadogMetric. I have followed the documentation on Datadog to create a DatadogMetric and the use it in your HPA as External metric. My ...
0
votes
0
answers
32
views
Jfrog artifactory helm upgrade to newer version
I have JFrog Artifactory version 7.16 installed via Helm in my Kubernetes cluster, and I want to upgrade it to version 7.90. What is the best way to do this?
The documentation only mentions a simple ...
- 1
-1
votes
3
answers
222
views
I created an Amazon EKS Kubernetes cluster using Terraform, but now I do not have access to any of the resources, and kubectl fails due to credentials
This question seeks a solution for the following errors
If you create an EKS cluster using terraform, and then use the same credentials you used to create the cluster, but see these errors, then what ...
- 153
0
votes
0
answers
48
views
Assign static IP to Kubevirt VM pod
I'm trying to assign a static IP address to a Kubevirt VM pod. My goal is to be able to access the pod using the static IP over the network outside of Kubernetes. Here's my config:
apiVersion: ...
- 101
0
votes
0
answers
21
views
Skewed (but deterministic) load distribution on OpenShift 4
We are migrating from OpenShift 3 to 4. Our application has an NGINX proxy in the DMZ namespace and the app is running in another namespace, exposed as services with ClusterIP. The NGINX simply refers ...
0
votes
2
answers
36
views
Passing ENV VAR via ConfigMap does not work
apiVersion: v1
kind: ConfigMap
metadata:
name: time-config
data:
TIME_FREQ: "6"
---
apiVersion: v1
kind: Pod
metadata:
name: time-check
spec:
containers:
- name: time-check
...
0
votes
0
answers
15
views
Issue static wildcard certificate with cert-manager
Is there a way to issue custom static wildcard certificate with cert-manager? We have a wildcard certificate and we want cert-manager to issue all Ingress certificates with this wildcard certificate.
...
- 101
0
votes
0
answers
108
views
After installing the cilium network, the node is in NotReady for a long time. It can be updated to Ready after restarting
I created a container network through helm in the installed kubernetes cluster, but the node was always in NotReady after creation. I accidentally restarted the server and found that the node status ...
0
votes
1
answer
86
views
Kubernetes: Mapping a Service to a Deployment with YAML files
I’m new to Kubernetes and learning about Deployments, Services, and Ingress as part of a CKAD video course. I created a YAML file for a Deployment, and a separate YAML file for a Service, and I’d ...
