Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [amazon-eks]

92 questions
8
votes
1 answer

Worker Group VS Node Group EKS

I am trying to use https://registry.terraform.io/modules/terraform-aws-modules/eks/aws/12.2.0(Terraform AWS EKS provider) What is the difference between worker nodes and node group?
Alex Kok
  • 83
  • 1
  • 3
6
votes
1 answer

Kubernetes pod has unbound immediate PersistentVolumeClaims (eks)

I have following StorageClass defined for aws eks cluster (3 nodes) kind: StorageClass apiVersion: storage.k8s.io/v1 metadata: name: aws-gp2 annotations: storageclass.kubernetes.io/is-default-class: "true" provisioner:…
roy
  • 119
  • 1
  • 2
  • 15
4
votes
1 answer

EKS ARM Node stuck in NotReady status - runtime network not ready cni config uninitialized

I have an EKS Cluster (AWS) named cluster-main running on Kubernetes version: 1.16 Platform version: eks.4 CNI version v1.6.1 There are two node groups in the cluster Cluster Name Instance Type AMI…
argyrodagdileli
  • 101
  • 2
  • 8
3
votes
1 answer

HTTP/2 for ALB with EKS on AWS

I'm experimenting with AWS EKS and have created the following setup: EKS cluster with a single service/pod/node AWS ALB ingress controller ALB I try to configure the ALB to: create access logs provide HTTP/2 support My alb ingress controller…
chrisvdb
  • 1,279
  • 2
  • 12
  • 15
3
votes
2 answers

How can I get Egress Static IP per namespace within a EKS cluster

My current setup involves an EKS Cluster with multiple namespaces (multi-tenant) across many different EKS nodes in private subnets. I would like the egress traffic from the pods to have a dedicated EIP per namespace. AFAIK there are no off the…
Karthik Balasubramanian
  • 151
  • 1
  • 5
3
votes
0 answers

EKS - Use IAM roles for service accounts on multiple clusters

I am trying to use IAM roles for service accounts in EKS. https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html When it comes to create the IAM role to be assigned to a service account, I have to create it with a trust…
signaleleven
  • 31
  • 1
3
votes
3 answers

Kubectl error You must be logged in to the server (Unauthorized) when using kubectl

I proceeded with the work referring to the following site (I don't use EKS.I create k8s on ec2 using kops) Getting Started with kOps on AWS When I tried to call kubectl get service I got the message: error: You must be logged in to the server…
likesmartphone
  • 41
  • 1
  • 1
  • 4
2
votes
2 answers

Kubernetes: run aws s3 sync/rsync against persistent volume on demand

Is there a way in Kubernetes to trigger a job to run on my containers on demand? The use case is to be able to have the containers sync from S3 to a persistent volume on demand. In the application's current architecture, new content is added to S3…
yossarian2004
  • 143
  • 4
  • 9
2
votes
1 answer

EKS suddenly failing with disk pressure

We have an EKS cluster with two t3.small nodes with 20Gi of ephemeral storage. The cluster runs only two small Nodejs (node:12-alpine) applications for now. This worked perfectly for a few weeks, and now suddenly we're getting disk pressure…
chrisvdb
  • 1,279
  • 2
  • 12
  • 15
2
votes
2 answers

Debugging Prometheus OOMkilled despite 6Gi limits

I'm at the end of my patience with a prometheus setup leveraging kube-prometheus-stack 44.3.0 (latest being 45). I have two environments, staging and prod. In staging, my prometheus runs smoothly. In prod it has started crashing with OOMKilled…
Liquid
  • 131
  • 3
2
votes
1 answer

How do i fix terraform invalid JSON policy

I am trying to use a file which contains load balancer iam policy for my AWS in terraform. However when i run the terraform script, i get an error stating: Error: "policy" contains an invalid JSON policy │ │ with…
eagercoder
  • 123
  • 1
  • 4
2
votes
0 answers

How do you route to a mix of HTTP and HTTPS backends from an ALB Ingress?

I have a Kubernetes cluster running in EKS (on AWS.) In the cluster I have Elasticsearch, Kibana and various other web services. I would like to set up a single ALB loadbalancer such that: Requests to /_kibana/* is routed to service:…
Zorlack
  • 395
  • 1
  • 5
  • 13
2
votes
2 answers

creating k8s secret results in public private key not matching

I have created a certificate using ACM. Now, I want to create a TLS secret using kubernetes, so that I can use the secret to configure Ingress Resource. I am trying to create a TLS secret using kubectl create secret tls fsi-secret…
Cricket
  • 41
  • 1
  • 2
  • 3
2
votes
1 answer

Why would you want worker node traffic to leave a VPC? (AWS EKS)

When setting up AWS EKS, I came across a configuration option I don't understand. What is the use case for the "public" option as shown in this screenshot? This is the only option that makes worker node traffic leave the VPC in order to connect to…
Savvly
  • 23
  • 2
2
votes
1 answer

Mounting EKS EFS with CSI Times Out before Pod Comes Up

I am using EKS with Kubernetes version 1.15 and when I create a Storageclass, Persistent-Volume, Persistent-Volume-Claim, and Deployment the pod fails with: Warning FailedAttachVolume 71s (x2 over 3m11s) attachdetach-controller …
Thingable
  • 21
  • 2
1
2 3 4 5 6 7