Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [amazon-eks]

92 questions
0
votes
0 answers

Can i access an EKS cluster , if i don't have access to iam user that created it?

An AWS admin , created an IAM user , and that user created an EKS cluster. Now , we don't have access to that IAM user. If , we try to execute , kubectl , commands on that EKS cluster from a new IAM user that has admin level permissions, we still…
Dawood Abbas
  • 1
  • 1
0
votes
2 answers

Postfix behind AWS NLB with Proxy Protocol does not send banner until CRLF is sent

I've redeployed my mail stack as a Kubernetes pod. This pod is on an EKS cluster in the private subnet, behind an NLB. Postfix and the NLB are configured to speak proxy protocol v2. Originally I had this setup without proxy protocol, and the Postfix…
Routhinator
  • 13
  • 1
  • 8
0
votes
1 answer

AWS EKS: load balancer service stuck in external ip pending

I have a EKS cluster (1.19) with a public and private subnets. I deployed ingress nginx with the following annotations: service.beta.kubernetes.io/aws-load-balancer-backend-protocol:…
chingis
  • 243
  • 3
  • 14
0
votes
1 answer

Can't configure RBAC to users in EKS

I have deployed EKS using eksctl following this docs. As the user who created the cluster I have full access control. Trying to grant system:masters permissions to a specific user doesn't work this way: kubectl edit -n kube-system…
itaied
  • 123
  • 1
  • 3
0
votes
1 answer

Filebeat on ECK with AWS Module Fails Due To Metadata Error

We are running an Elastic Stack with ECK in EKS (7.8). We noticed that our filebeat daemonset and the AWS module were not processing logs from S3 and our SQS queues backing up. Looking at the logs on our FileBeat containers, we noticed the following…
JGG Xm8
  • 1
0
votes
1 answer

Can 1 namespace span across multiple EKS clusters?

I am trying to understand the relation between namespaces and clusters in EKS. Can 1 namespace span across multiple EKS clusters? Is that possible?
Biju
  • 125
  • 1
  • 4
0
votes
2 answers

Single IP to access Kubernetes cluster ingress

I have an amazon EKS cluster that I'm using to host multiple websites, I have an ingress controller and a load balancer that spins up more pods as needed. I normally use CNAME type "eg alias or aname" to point a domain to the dynamic cluster,…
nzimpossible
  • 101
  • 2
0
votes
1 answer

Running kubectl commands as cronjobs in the Kubernetes cluster results in a connection refused error

When running a kubectl command using the bitnami/kubectl image from inside a kubernetes (EKS based) cluster I am expecting the command to pick up the KUBERNETES_SERVICE_HOST and KUBERNETES_SERVICE_PORT environment variables and connect to the local…
Adam C
  • 5,222
  • 2
  • 30
  • 52
0
votes
2 answers

Why root user is allowed by default in public cloud Kubernetes services?

In a Kubernetes environment, I suppose that the root user should not be allowed by default to mitigate the risk in case the host OS was accessed from inside a container. This setting should be done by writing in PodSecurityPolicy. Considering this,…
rks
  • 1
  • 1
0
votes
1 answer

Is aws-iam-authenticator still needed with EKS?

I've created a cluster (eks.3) through the console and then used aws eks update-config to generate the kubeconfig configuration. I immediately had access to the cluster through kubectl but the EKS user guide talks about aws-iam-authenticator as if…
gtirloni
  • 5,746
  • 3
  • 25
  • 52
0
votes
1 answer

why AKS,EKS,GKE better than k8s .can we say k8s architecture is base of these 3. How they leverage each other?

I am trying to learn k8s, and 1 question always coming as to why we need GKE, aks, or EKS. In the cloud, Can we do container orchestration without the above services means can we have compute instances like ec2/VM and install k8s (open source…
anant
  • 3
  • 1
0
votes
1 answer

HTTPS for EKS LoadBalancer

I have LoadBalancer setup for a Deployment on EKS. I can access the app behind the classic load balancer AWS setup with the DNS name ..elb.amazonaws.com. I would like to add an HTTPS listener to this load balancer. The guide I…
bovus
  • 3
  • 3
0
votes
0 answers

In Kubernetes, how can I create a CronJob to test mysql database connectivity from a standard docker image?

I'm trying to create a cronjob in EKS to test the database connection, but it's no working. I tried with the mysql-client docker image. This is the cronjob definition: apiVersion: batch/v1beta1 kind: CronJob metadata: name: mysql-test namespace:…
McCo0L
  • 1
0
votes
1 answer

How pass dotenv file to my deployment using Gitlab's Auto DevOps

Recently I was deployed a EKS cluster and connect it with our Gitlab.com group, I already deployed some examples and templates from Gitlab and all works fine. Now I’ll want to deploy my Node.js based app. I set STAGING_ENABLED because I’m interest…
Rodrigo Moreno
  • 243
  • 1
  • 2
  • 11
0
votes
1 answer

How to change the security group of Amazon EKS worker nodes?

I want to add a security group to the worker nodes of Amazon EKS. It seems that I can change "Additional security group" to add the security group to the worker nodes. But I cannot find any way to modify "Additional security group" in AWS…
Brian
  • 111
  • 1
  • 7
1 2 3 4 5
6
7