Stack Overflow
Stack Overflow

Questions tagged [google-kubernetes-engine]

Google Kubernetes Engine (formerly known as Container Engine) takes care of provisioning and maintaining the underlying virtual machine cluster, scaling your application, and operational logistics like logging, monitoring, and health management.

Google Kubernetes Engine takes care of provisioning and maintaining the underlying virtual machine cluster, scaling your application, and operational logistics like logging, monitoring, and health management.

6757 questions
2
votes
1 answer

Internal error occurred: failed calling webhook "validation.istio.io"

Playing around with GCP Anthos, I installed Anthos 1.11 on the GKE cluster and installed the Online Boutique application it was working as expected. Then tried to upgrade to Anthos 1.12, after upgrading was able to inject the new envoy sidecar into…
Sanjay M. P.
  • 919
  • 1
  • 16
  • 33
2
votes
1 answer

Private GKE cluster behind firewall getting calls from external IP

We are getting logs that calls to k8s are being made, despite our cluster being private, as well as being behind the gcp firewall with a rule that blocks all ingress except IAP IPs (and ICMP). What am I missing? "protoPayload":{ …
Pat
  • 1,193
  • 1
  • 11
  • 36
2
votes
1 answer

Pods are evicted due to Container airflow-worker exceeded its local ephemeral storage limit "10137Mi" in google composer

I'm using google Composer version 1.18.0 which is having Airflow version 2.2.3 and the worker node count is set to 4 with a Disk Size of 100 GB and machine type n1-standard-2 and Web server machine type=composer-n1-webserver-2 (2 vCPU, 1.6 GB…
chethi
  • 699
  • 2
  • 7
  • 23
2
votes
1 answer

Elasticsearch cluster on Kubernetes - nodes are not communicating

I have an Elasticsearch cluster (6.3) running on Kubernetes (GKE) with the following manifest file: --- # Source: elasticsearch/templates/manifests.yaml apiVersion: v1 kind: ConfigMap metadata: name: elasticsearch-configmap labels: …
Pascal Delange
  • 417
  • 5
  • 17
2
votes
0 answers

Kubernetes: Unable to attach or mount volumes - timed out waiting for the condition

Thanks for reading this, i'm in a real trouble here. After GKE upgrade of K8 version to 1.21.6, I get this error on some of my pods: Unable to attach or mount volumes: unmounted volumes=[pentahotspot-fs], unattached volumes=[pentahotspot-fs…
Nicolás Liendo
  • 21
  • 1
  • 2
2
votes
2 answers

GCP CloudSQL, IAM and Hasura

I'm rolling out Hasura on GKE, and I need for it to connect to CloudSQL via IAM. While most of the tutorials online describe the use of k8s secrets for usernames and passwords, I would like for Hasura to connect via IAM. That means no…
Tom K
  • 145
  • 1
  • 13
2
votes
2 answers

GCP Alerting Policy for failed GKE CronJob

What would be the best way to set up a GCP monitoring alert policy for a Kubernetes CronJob failing? I haven't been able to find any good examples out there. Right now, I have an OK solution based on monitoring logs in the Pod with ERROR severity.…
joeltine
  • 1,610
  • 17
  • 23
2
votes
1 answer

Terraform GKE node-pools spin up with reduced auth access scopes

Using Terraform I spin up the following resources for my primary using a unique service account for this cluster: resource "google_container_cluster" "primary" { name = var.gke_cluster_name location = var.region # We can't create a…
CertainlyNotAdrian
  • 337
  • 2
  • 16
2
votes
3 answers

Why I can't see pause containers in GKE containerd CRI?

I am using a GKE cluster with Ubuntu nodes & containerd as CRI. I am not able to see any pause containers the way we used to see in docker. Are they no more exists in containerd? Anything changed or I am not aware…
Asad Khan
  • 31
  • 1
  • 5
2
votes
0 answers

Automatically attach a custom firewall rule to GKE created loadbalancer

Question Is it possible to attach a custom firewall rule to a GKE created load balancer? Here are the default firewall rules created. I have done something similar in AWS in the past, but I am currently having trouble finding a similar annotation…
Ismail
  • 21
  • 2
2
votes
1 answer

How to increase gcloud re-authentication timeout , currently it expires every 1 hr

I run below commands to authenticate to google cloud with my corporate email id (ldap) to update my kubeconfig file on my on-premis machine access to k8s control plane from on-premis machine using kube-api-proxy. ( I use this proxy to reach control…
My IT GURU
  • 144
  • 1
  • 7
2
votes
0 answers

Kubernetes Network Policy - allow Google managed services

My Setup I have GKE cluster with network policy enabled. I have a network policy to block all ingress and egress: apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: default-deny-all-traffic spec: podSelector: {} policyTypes: …
Montoya
  • 2,819
  • 3
  • 37
  • 65
2
votes
1 answer

for GKE how can we control the configuration of the control plane?

I am creating a GKE cluster (4 nodes) and deploying applications on it. While doing that the API server become unresponsive for a few minutes. Want to create a GKE cluster with scaled control plane.
RoRRe
  • 291
  • 2
  • 10
2
votes
1 answer

Helm lookup always empty

While deploying a Kubernetes application, I want to check if a resource is already present. If so it shall not be rendered. To archive this behaviour the lookup function of helm is used. As it seems is always empty while deploying (no dry-run). Any…
Cem Philipp Freimoser
  • 699
  • 5
  • 19
2
votes
1 answer

Setting kubernetes audit policies within Google Kubernetes Engine

I have created a k8s cluster in GKE. But I want to configure API server for k8s audit purposes so I have to set --audit-policy-file flag and --audit-webhook-config-file flags as arguments in the API server. How do I do that?
Ajinkya16
  • 227
  • 2
  • 11
1 2 3
99 100