Stack Overflow
Stack Overflow

Questions tagged [calico]

Project Calico is an open-source networking and security solution for Kubernetes. Use this tag to mark questions related to the project.

Project Calico

Project Calico is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports a broad range of platforms including Kubernetes, OpenShift, Docker EE, OpenStack, and bare metal services.

207 questions
0
votes
0 answers

Calico-node not running between master and work node

I using kubeadm to create cluster and successfully join the work node to master's control-plane. But there are two calico-node pods in master's kube-system namespace can not run, I check into these two pod and they are all have the same error…
ccd
  • 5,788
  • 10
  • 46
  • 96
0
votes
2 answers

Calico node cannot build with server's ip address

When I add the k8s work node to the master control-plane, the pod of calico-node report a error show that the server's ip connection is unhealthy. Warning Unhealthy 36s kubelet, izbp1a13o0oyyyt66ldcdhsj Readiness probe failed: calico/node is…
ccd
  • 5,788
  • 10
  • 46
  • 96
0
votes
0 answers

NetworkPolicies on Kubernetes not always getting source IP

I'm currently securing my EKS cluster through NetworkPolicies and Calico, so I'm doing some tests to see how these work, I deployed a structure as follows for a PoC: Internet -> NLB -> Nginx Pod The Nginx pod was deployed using deployment.yaml with…
Robin xd
  • 1
0
votes
1 answer

how to change PODcidr on specifiec nodes Kubernetes

I have setup a kubernete cluster with kubeadm in baremetal. the cluster works well. Next I connected some workers nodes. But for some reason other IP addresses of Pods were assigned. now when you deploy a service, if it is installed on one of…
cryptoparty
  • 345
  • 1
  • 5
  • 20
0
votes
0 answers

k8s with Calico,POD container can't ping outside ip

My k8s use Calico. In my Container, I can only ping the node,and other pod.When I try to access my gitserver,it failed. sh-4.1$ ping stash PING hoffman.domain.local (192.168.33.106) 56(84) bytes of data. <-- not return ,until ctrl+c Here are…
clara
  • 182
  • 1
  • 2
  • 13
0
votes
1 answer

GKE deny statement with network policy + calico

I'm running managed cluster with Google Cloud, so it has option to enable NetworkPolicy, and on the backend it uses calico. Problem I have, it looks like I can use only api version networking.k8s.io/v1. I'm trying to create policy that will disable…
Sarkis Arutiunian
  • 1,281
  • 3
  • 17
  • 34
0
votes
1 answer

EKS GlobalNetworkPolicies default-deny with pod exceptions

Currently I have a GlobalNetworkPolicy 'default-deny' to limit all traffic within my cluster, all ingress/egress is set to deny for all(). I have attempted to allow exceptions for certain labels pods, using 'order'. When I don't specify 'action'…
alaika sokawk
  • 1
0
votes
1 answer

Kubernetes with Calico Gitlab Runner Pods can't reach external API

I've deployed a bare-metal Kubernetes cluster with Calico networking. I'm successfully able to communicate between pods and from external network to pods using Ingress. When I use Dashboard EXEC function the pod is able to fetch external resource…
Jan Zahradník
  • 2,417
  • 2
  • 33
  • 44
0
votes
2 answers

Kubernetes Ingress cannot fetch cluster ip of service

I setup a kubernetes single node master plane with calico and haproxy. Now whenever I am going to create an Ingress, the address remains empty and the server returns a 503 error. The following shows my kubernetes deployments. apiVersion:…
Pascal K.
  • 138
  • 1
  • 3
  • 12
0
votes
1 answer

Installing Kubernetes on IPV6

I am trying to install Kubernetes 1.14.3 on IPV6 environment. I don't have any IPV4 interface on this environment , only IPV6. I tried with p-lain kubeadm config file and it seems to work but when I try to apply the calico cni the calico-node keeps…
eran meiri
  • 1,322
  • 3
  • 12
  • 29
0
votes
1 answer

Calico between virtual machines as Kubernetes nodes

I have a kubernetes cluster of some virtual machines running on top of Vsphere. I deployed Calico IP-IP plugin for connectivity and every thing is Ok. My questions are : 1) As calico performs BGP routed between the nodes , Does that also happen in…
Sam
  • 21
  • 1
  • 2
0
votes
1 answer

I create a single master cluster with kubeadm, everything is fine but CoreDNS didn't work

I create a single master cluster with kubeadm, according to doc, I did it like this: kubeadm init --pod-network-cidr=172.20.0.0/16 kubectl apply -f rbac-kdd.yaml kubectl apply -f calico.yml Now, everything is fine, all pods and services are…
Juey
  • 123
  • 1
  • 6
0
votes
0 answers

Do we need to have all ports opened between kubernetes nodes

I have a master node and two worker node kubernetes cluster. I see all pods running fine. When I run iptable rules, restart of pod is failing. Calico is used for networking. kuberuntime_sandbox.go:54] CreatePodSandbox for pod "" failed: rpc error:…
Deepa Yr
  • 33
  • 3
0
votes
2 answers

Will that cause any problem using flannel and calico in same kubernetes cluster?

I have installed kubernetes on digital ocean cloud. I installed both flannel and calico as CNI. Will, that causes any problems in my cluster?
AATHITH RAJENDRAN
  • 4,689
  • 8
  • 34
  • 58
0
votes
1 answer

calico-etcd not scheduled on GKE 1.11 k8s

I recently upgraded my GKE cluster from 1.10.x to 1.11.x and since then my calico-node pods fail to connect to the etcd cluster and end up in a CrashLoopBackOff due to livenessProbe error. I saw that the calico-etcd DaemonSet has desired state 0 and…
SoJeN
  • 429
  • 5
  • 7
1 2 3
13
14