Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [google-kubernetes-engine]

Google Kubernetes Engine is a cluster manager and orchestrator for running Docker containers. It schedules your containers into the cluster and manages them automatically based on requirements you define (such as CPU and memory). It's built on the open source Kubernetes system, giving you the flexibility to take advantage of on-premises, hybrid, or public cloud infrastructure. It was formerly called Google Container Engine.

553 questions
2
votes
2 answers

GKE metrics agent logging many errors

We have created GKE cluster and we are getting errors from gke-metrics-agent. The errors shows up every cca 30 minutes. It's always the same 62 errors. All the errors have label k8s-pod/k8s-app: "gke-metrics-agent". First error is: error …
Melchy
  • 63
  • 1
  • 7
2
votes
1 answer

How is GCP GKE VPC native cluster IP alias implemented?

How does the GCP/GKE VPC native network implement the alias IP assignment to each pod? As in Google Kubernetes Engine – Networking, each Pod will have an IP from secondary IP CIDR range of the subnet (e..g 10.4.1.1). Each pod in a Linux instance…
mon
  • 235
  • 3
  • 10
2
votes
1 answer

What does buffered, cached, free, slab and used mean when monitoring memory use on GKE?

I am running some compute nodes on GKE and when I look on their memory usage in metrics explorer I see: It is clear to me what used and free mean. But how about the other states? The official documentation is quite terse on the subject.
Johan Wikström
  • 123
  • 3
2
votes
0 answers

Does slow file IO impact networking?

We are using php7, php-fpm, nginx on gke, services communicated by clusterIP. In php7, we found out that occasionally writing the log needed to take 1~2 seconds to complete, it usually took less than 1ms. And there is latency between our services,…
Tim
  • 21
  • 1
2
votes
3 answers

Getting "x509: certificate signed by unknown authority" in GKE on pulling image (a private registry) when a pod is created

I generated a CA certificate, then issued a certificate based on it for a private registry, that located in the same GKE cluster. Put the server certificates to the private registry and the CA certificate to all GKE nodes and…
Max Koshel
  • 31
  • 1
  • 1
  • 6
2
votes
1 answer

Terraform on gcloud: serviceaccounts is forbidden: User "system:anonymous" cannot create resource "serviceaccounts"

I am trying to write terraform code for bootstrapping a GKE cluster (with RBAC) on Google Cloud. The GKE cluster successfully created, but I want to create a service account as wel which I can reuse for my later kubernetes provider…
Niels Hofmans
  • 59
  • 8
2
votes
1 answer

Spikes on External Metric scales HPA when it shouldn't

I have a metric that I’m using for a HPA, the problem is that the metric has spikes and to avoid so, I’m using an average over time in a record rule on prometheus, but to export it to stackdriver(on gke) I’m using stackdriver-prometheus-sidecar and…
José Pedro Machado
  • 21
  • 3
2
votes
0 answers

Istio egress gateway HANDSHAKE_FAILURE_ON_CLIENT_HELLO with custom certs

What we ware trying to achieve is point mesh traffic to an external service via an egressgateway. We tried several iterations, and now trying with an egressgateway in between. The external service is running with our certificates. Mesh >…
MrVentzi
  • 121
  • 1
2
votes
1 answer

GKE k8s cluster storage.googleapis.com sporadic Temporary failure in name resolution

I am trying to run a snakemake pipeline on a kubernetes cluster (GKE). The job is being initiated from a GCE VM. Sometimes it works, mostly it doesn't. Steps I took were gcloud container clusters get-credentials snakemake-k8s-demo kubectl delete pod…
Peter Evans
  • 133
  • 2
  • 10
2
votes
1 answer

List NTP information of gcloud kubernetes

Is there an option to show, that metadata.google.internal is used as NTP when i connect to a pod or to the kubernetes VM? I tried the following: ntpq -p, which results in command not found, but was listed on…
mc_plectrum
  • 121
  • 2
2
votes
1 answer

stackdriver severity in GKE sending all to stderr

Tell me whether it is possible to make a separation by severity in stackdriver. All messages in the container are displayed in stderror and in stackdriver, they are marked as errors. The task is to separate messages from logs (laravel) into…
James M
  • 210
  • 1
  • 3
  • 13
2
votes
2 answers

GCP Kubernetes engine - crash of nginx-ingress-controller after large file upload

I'm trying luck here to solve my problem happening on Google Cloud Kubernetes Engine. Problem in short: When I upload file via my PHP application of 15-20MB, nginx ingress controller crashes, disk IO goes rapidly UP, then CPU goes up and takes about…
Jan Dominik
  • 31
  • 3
1
vote
1 answer

kubectl not showing new context created in GCP

From client A, I created a new kubernetes cluster in GCP as follows: $ gcloud container clusters create my-new-cluster --num-nodes 3 From client A, I can see the new context was created: $ kubectl config get-contexts CURRENT NAME …
jersey bean
  • 125
  • 1
  • 8
1
vote
1 answer

Kubenet Style Networking in GKE

I was doing some research on GKE, and was trying to understand the way the pod networking was set up. It surprised me to see that pods received IPs in the GKE cluster's subnet, and that those IPs were addressable from other devices in the VPC. I was…
Workman
  • 11
  • 2
1
vote
0 answers

SQL The operation has timed out

I have 3 K8S clusters and 3 databases (Postgres 11) in 3 VPC (dev, stage, stage2). All databases have INTERNAL IPs. When I connect on dev to database - it's ok. When I try to connect on stage/stage2 I have time out. On all ENVs have equal auth, user…
Alexander SKyzZz
  • 11
  • 1
1 2 3
36 37