Stack Overflow
Stack Overflow

Questions tagged [calico]

Project Calico is an open-source networking and security solution for Kubernetes. Use this tag to mark questions related to the project.

Project Calico

Project Calico is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports a broad range of platforms including Kubernetes, OpenShift, Docker EE, OpenStack, and bare metal services.

207 questions
1
vote
1 answer

Calico: How felix update the iptables rules and ip routes at host?

As known, the calico/node could run inside a contianer, including the fleix. I do not understand how it r/w the iptables rules and routes at the host, since both in different network namespace.
kingluo
  • 1,679
  • 1
  • 13
  • 31
1
vote
1 answer

Implicit Deny in calico global network policy?

I am puzzled about this behaviour of global network policies. Take the following. apiVersion: projectcalico.org/v3 kind: GlobalNetworkPolicy metadata: name: allow-dns-for-all-policy spec: namespaceSelector: has(projectcalico.org/name) &&…
Julian Dm
  • 363
  • 2
  • 17
1
vote
0 answers

Unable to create kubernetes with HA etc on Ubuntu 20.04

Since two days I am fighting with Kubernetes setup on Ubuntu 20.04. I created so called template vm on vSphere and I cloned three vm's out of it. I have following configurations for each master node: /etc/hosts 127.0.0.1 localhost 127.0.1.1…
wojcieh
  • 312
  • 1
  • 8
1
vote
1 answer

Calico node return nothing for command "/bin/calico-node -felix-ready"

I'm a beginner developer of k8s system. I want to check the readiness of calico node, so I sent a command to the node like below. $kubectl exec calico-node-d4tzk -n kube-system -- /bin/calico-node -felix-ready But nothing returns. I checked the…
Togomi
  • 139
  • 1
  • 10
1
vote
0 answers

Getting Intermittent timeout on EKS when pods are running on multiple Nodes

We have an application running with two pods , if each pod is running in each nodes then we are facing intermittent timeouts (tried with ALB and also on the node itself) , if the both pods are running on single node then we don't face any…
Kapil Yadav
  • 11
  • 4
1
vote
1 answer

Calico works well in my k8s, but I can't Ping clusterip on the node

I installed calico according to the steps on the official website, and it can run normally, and there is no error reported in the log. However, when I Ping the clusterip, the Ping fails, and there is no error in the pod log, so I can't locate the…
Esc
  • 521
  • 13
  • 30
1
vote
0 answers

Calico Dual Stack Setup Issue: Service not able to access pod of other node

I am trying to create a muli-node cluster with dual stack IPv4/IPv6 support using calico cni. Below are the configurations details: # for IPv4 master-node 192.168.122.163 worker-node 192.168.122.157 # for IPv6 master-node fd00:4000::1cd worker-node…
user27111987
  • 995
  • 2
  • 10
  • 26
1
vote
1 answer

Kubernetes - Calico CrashLoopBack on Containers

I have just started experimenting with K8S a few days back, try to learn K8S with specific emphasis on networking, service mesh etc. I am running 2 worker nodes and 1 master on VMs with Centos 7 and K8S, installed with kubeadm. Default CNI of…
spinach.teeth
  • 11
  • 1
1
vote
3 answers

containers with ipv6 addresses can't connect to outside in k8s/calico environment

I am trying to test ipv6 connectivity in k8s environment, and installed calico network plugin; the issue is that the container can't ping to the ipv6 gateway or other addresses of the cluster nodes, the version of k8s and calico is v1.18.2 and…
techer
  • 11
  • 3
1
vote
1 answer

I can't access the pod which scheduled to the another node. But i can access the pod which scheduled to the current node

I can't access the pod which scheduled to the another node. But i can access the pod which scheduled to the current node, vice versa, when I on the another node, I only can access the pod which scheduled on current node, And can't access the pod…
Esc
  • 521
  • 13
  • 30
1
vote
1 answer

kubernetes - migrate form calico to flannel

I have a K8S cluster versioned 1.11. I have calico installed as cni plugin. I need to replace it with flannel. I found guides online how to migrate from flannel to calico but not the other way around. Down any one have a tip/idea how to get by…
eran meiri
  • 1,322
  • 3
  • 12
  • 29
1
vote
1 answer

Troubles understanding dmesg output on nodes with a Kubernetes Cluster on ESX VMs

I configured a Kubernetes test cluster running on VMs on a ESX thanks to kubespray. In the configuration file, I told Kubespray to configure my cluster with calico as CNI with the default CIDR. When I access the VM using vSphere, or I run the…
Ryctus
  • 109
  • 2
  • 12
1
vote
2 answers

Kubernetes 1.17 containerd 1.2.0 with Calico CNI node not joining to master

I am setting up the kubernetes cluster on CentOS 8 with containerd and Calico as CNI. with kubeadm command setup the master node, its in Ready status. When I join the node to master, node not becoming ready status. I see below message the log…
sfgroups
  • 18,151
  • 28
  • 132
  • 204
1
vote
1 answer

Kubernetes API server is failing to start: api-server(master-host) host not found

I had set-up the Kubernetes cluster using kubeadm and it was working fine. I was able to deploy pods and service. I had tried restarting the cluster and it used to come up without any issues. Suddenly, after a few days, I had to restart my…
Sudhir Kumar
  • 163
  • 2
  • 15
1
vote
1 answer

kubernetes: pods cannot connect to internet

I cannot connect to internet from pods. My kubernetes cluster is behind proxy. I have already set /env/environment and /etc/systemd/system/docker.service.d/http_proxy.conf, and confirmed that environment variables(http_proxy, https_proxy,…
altblanc
  • 69
  • 1
  • 9
1 2 3
13 14