kube-apiserver

Inquiring pod and service subnets from inside Kubernetes cluster

痞子三分冷 提交于 2021-02-11 13:50:25
问题 How can one inquire the Kubernetes pod and service subnets in use (e.g. 10.244.0.0/16 and 10.96.0.0/12 respectively) from inside a Kubernetes cluster in a portable and simple way? For instance, kubectl get cm -n kube-system kubeadm-config -o yaml reports podSubnet and serviceSubnet . But this is not fully portable because a cluster may have been set up by another means than kubeadm . kubectl get cm -n kube-system kube-proxy -o yaml reports clusterCIDR (i.e. pod subnet) and kubectl get pod -n

Kubernetes OIDC: No valid group mapping

佐手、 提交于 2021-01-01 09:36:47
问题 I have the problem that I can log on to my dashboard via OIDC, but then the oidc group information is not mapped correctly and I cannot access the corresponding resources. Basic setup K8s version: 1.19.0 K8s setup: 1 master + 2 worker nodes Based on Debian 10 VMs CNI: Calico Louketo Proxy as OIDC proxy OIDC: Keycloak Server (Keycloak X [Quarkus]) Configurations I have configured the K8s apiserver with these parameters. kube-apiserver.yaml - --oidc-issuer-url=https://test.test.com/auth/realms

Service “kube-dns” is invalid: spec.clusterIP: Invalid value: “10.10.0.10”: field is immutable

不问归期 提交于 2020-03-21 06:38:02
问题 I setup my cluster by kubeadm. At the last step i exec kubeadm init --config kubeadm.conf --v=5 . I get the error about the clusterIp value. Here is the part of the output: I0220 00:16:27.625920 31630 clusterinfo.go:79] creating the RBAC rules for exposing the cluster-info ConfigMap in the kube-public namespace I0220 00:16:27.947941 31630 kubeletfinalize.go:88] [kubelet-finalize] Assuming that kubelet client certificate rotation is enabled: found "/var/lib/kubelet/pki/kubelet-client-current

Service “kube-dns” is invalid: spec.clusterIP: Invalid value: “10.10.0.10”: field is immutable

只谈情不闲聊 提交于 2020-03-21 06:37:17
问题 I setup my cluster by kubeadm. At the last step i exec kubeadm init --config kubeadm.conf --v=5 . I get the error about the clusterIp value. Here is the part of the output: I0220 00:16:27.625920 31630 clusterinfo.go:79] creating the RBAC rules for exposing the cluster-info ConfigMap in the kube-public namespace I0220 00:16:27.947941 31630 kubeletfinalize.go:88] [kubelet-finalize] Assuming that kubelet client certificate rotation is enabled: found "/var/lib/kubelet/pki/kubelet-client-current

Where is kube-apiserver located

风格不统一 提交于 2019-11-30 06:51:12
Base question: When I try to use kube-apiserver on my master node, I get command not found error. How I can install/configure kube-apiserver? Any link to example will help. $ kube-apiserver --enable-admission-plugins DefaultStorageClass -bash: kube-apiserver: command not found Details: I am new to Kubernetes and Docker and was trying to create StatefulSet with volumeClaimTemplates. My problem is that the automatic PVs are not created and I get this message in the PVC log: "persistentvolume-controller waiting for a volume to be created". I am not sure if I need to define DefaultStorageClass and

Where is kube-apiserver located

匆匆过客 提交于 2019-11-29 02:48:38
问题 Base question: When I try to use kube-apiserver on my master node, I get command not found error. How I can install/configure kube-apiserver? Any link to example will help. $ kube-apiserver --enable-admission-plugins DefaultStorageClass -bash: kube-apiserver: command not found Details: I am new to Kubernetes and Docker and was trying to create StatefulSet with volumeClaimTemplates. My problem is that the automatic PVs are not created and I get this message in the PVC log: "persistentvolume
订阅 kube-apiserver