Questions tagged [calico]
68 questions
4
votes
0 answers
Kubernetes setup with different networks for intra and inter-cluster communication
I have this use case: Setup multiple k8s clusters that can communicate with each other. I also have one network per cluster for intra-cluster communication and another network for inter-cluster communication and for external access in general. Like…
Laurentiu Soica
- 75
- 1
- 6
3
votes
3 answers
Does Amazon EKS support IPv6 networking?
I have been searching for hours, but can't find any direct information on this topic.
Here is what I know:
Calico can be deployed into EKS
Configuring IPv6 networking is possible with Calico.
Configuring IPv6 networking with Calico requires the…
klebs
- 31
- 1
- 2
3
votes
0 answers
Kubernetes: route traffic to a subnet via a pod (accesing management VPN clients from pods)
Given two pods deployed on different nodes:
myapp pod deployed on apps node
wireguard pod deployed on vpn node, using a subnet like 172.16.30.0/16
I need myapp to be able to be able to route traffic to the wireguard peers (VPN clients) having IPs…
nemesisdesign
- 137
- 7
3
votes
2 answers
How can I get Egress Static IP per namespace within a EKS cluster
My current setup involves an EKS Cluster with multiple namespaces (multi-tenant) across many different EKS nodes in private subnets. I would like the egress traffic from the pods to have a dedicated EIP per namespace. AFAIK there are no off the…
Karthik Balasubramanian
- 151
- 1
- 5
3
votes
1 answer
New Kubernetes cluster setup Calico: "Failed to stat() nodename file: stat /var/lib/calico/nodename: no such file or directory"
i have trouble to add a CNI to a kubernetes master node, the CNI plugin does not have access to certain files or folders.
The logs from Calico and Flannel say that certain files or folders are not accessable (In the post I only refer to Calico).
I…
Kokos Bot
- 63
- 1
- 2
- 6
2
votes
0 answers
Connects to OpenVPN but no access to local network or internet in Kubernetes GKE with Calico
I've been using VPN (openvpn in helm) to access internal services in my cluster for development.
I enabled network policy in nodes in GKE to manage access of services, that enabled Calico network in my network, after this my openvpn connection…
animekun
- 121
- 3
2
votes
1 answer
Kubernetes Cluster on CentOS 7 with kubeadm 1.24 - calico => coredns stuck in ContainerCreating
In order to install a master kubernetes node on centos7 with containerd and calico :
I followed this steps : https://computingforgeeks.com/install-kubernetes-cluster-on-centos-with-kubeadm/
After the kubeadm init --pod-network-cidr=192.168.0.0/16 …
awot83
- 71
- 2
- 6
2
votes
0 answers
iptables REDIRECT to Kubernetes NodePort causes request to hang
I am attempting to direct client traffic to a kubernetes cluster NodePort listening on 192.168.1.100.30000 (https port).
Client's needs to make a request to 192.168.1.100.8000 so I added the following REDIRECT rule in iptables:
iptables -t nat -I…
tiger_groove
- 153
- 5
2
votes
2 answers
What's necessary for a bare metal dual stack kubernetes setup?
We are about to start setting up a new kubernetes cluster on bare metal at our own datacenter. The documentation for the k8s moduls and services is great, however I was not able to find any comprehensive top view documentation on the components…
Daniel Becker
- 123
- 3
2
votes
2 answers
How can I delete manually calicoctl and iptables created by calico from my k3s setup
I have a K3s setup with calico pods [calico-node- & calico-kube-controllers-] running. On uninstalling K3s, calico pods get deleted but I see that calicoctl and iptables -S commands still running and shows data.
I want to delete calico (including…
solveit
- 265
- 1
- 4
- 12
2
votes
0 answers
Calico node remains not ready when a new node with a 192.168.178.x IP joins a K8s cluster
kube-system pod/calico-node-9czgm 0/1 Running 3 42d
kube-system pod/calico-node-msfjk 0/1 Running 0 5m37s
...is what I get when a let "moon" to…
Alex
- 131
- 5
2
votes
1 answer
Calico network policy in Kubernetes based on Domain name Regex Matching
I have a application running with kubernetes orchestrator. I want to implement calico network policy based on domain name Regex matching. I am seeing in calico doc that they are using ip range(CIDR) to control incoming and outgoing calls.
Can same…
solveit
- 265
- 1
- 4
- 12
2
votes
1 answer
VPN to a Kubernetes-cluster from a remote network
I need to build a VPN connection between a network and a Kubernetes-cluster, so the applications hosted in this in this network could address to K8S-services via a secured tunnel.
So, I have a bunch of K8S-nodes in a self-hosted environment. I've…
Volodymyr Melnyk
- 577
- 1
- 5
- 19
2
votes
0 answers
Kubernetes and iptables not mixing: connection content dropped?
I'm playing around with a bare-metal Kubernetes cluster (using the calico CNI plugin) and having troubles redirecting external traffic into the node. I've set up the nginx kubernetes ingress controller in order to expose an HTTPS service via a…
kestrel
- 163
- 1
- 8
2
votes
1 answer
How to change the k8s internal ip addresses?
I provisioned a kubernetes cluster on my own couple of virtual machines via kubespray.
The VM's network is bridged adapter and kubespray uses calico as default network-plugin.
Before sometime, I've switched to another network and as a result of the…
Sara Ben Shabbat
- 59
- 1
- 3
- 7