KUBESPRAY QUESTIONS MUST BE PROGRAMMING RELATED. Use this tag when you have questions about developing for the Kubespray project (see https://kubespray.io), a tool to to provision infrastructure and install Kubernetes clusters. Questions about deploying Kubernetes clusters are OFF TOPIC for Stack Overflow; consider asking on Server Fault (https://serverfault.com/) or DevOps Stack Exchange (https://devops.stackexchange.com).
Questions tagged [kubespray]
137 questions
1
vote
1 answer
Kubernetes Multus: No macvlan connectivity between pods on different nodes (can't ping)
I have a problem where I have a Kubernetes cluster with two worker nodes, and one master. Let's lab them W1, W2, and M. I have a deployment that creates a set of CentOS7 pods, some on each worker. I use Multus so that there is an extra net1…
Linus Narva
- 11
- 3
1
vote
1 answer
Using Kubespray in download_localhost, download_file error
I'm currently trying to use Kubespray in the download_localhost: true mode. I also have download_run_once set to true. Some info, I'm running this behind a proxy on our network, nothing else is allowed out of our network at 443. Everything runs…
ngpriddy
- 66
- 10
1
vote
0 answers
How do you correctly enable and connect the MetalLB addon for Kubespray?
I am trying to get my cluster up an running with Kubespray, and I have to say it is a fantastic tool, but I cannot get it quite working correctly for me. Specifically, I am trying to enable the metalLB addon, but it does not seem to work.
After my…
MarkA
- 1,132
- 1
- 11
- 21
1
vote
1 answer
Kubernetes Persistent Volume never created by local path provisioner
In my Kubernetes cluster, Rancher never creates Persistent Volumes after creating a Persistent Volume Claim and applying a Pod.
Solution/Work around available under second update.
The cluster has been installed with Kubespray. The configuration for…
erwineberhard
- 309
- 4
- 17
1
vote
1 answer
Kubernetes kubelet-certificate-authority on premise with kubespray causes certificate validation error for master node
I'm setting up a k8s cluster on premise using kubespray.
I'm trying to harden the kubernetes cluster using CIS Benchmark documentation.
For the --kubelet-certificate-authority argument I set up the TLS connection between the apiserver and kubelets.…
nixmind
- 2,060
- 6
- 32
- 54
1
vote
0 answers
kube-apiserver is not using docker-dns
I'm using kubespray 2.14 to deploy a k8s cluster. Most of the configuration is default. I've configured OIDC authentication for kubectl. I'm using Keycloak as a locally deployed auth server. Traffic is secured by a self-signed certificate and the…
Mikolaj Wrzesinski
- 11
- 3
1
vote
0 answers
Edit the audit policy in kubernetes 1.15 cluster
Using kubespray 2.11 to install K8s 1.15.7, it works fine if I set the audit related flags at the time of install (ie cluster.yml). But on an already running cluster, if I change the pod manifest to add audit flags(ie policy file, log path), it…
swetad90
- 784
- 1
- 13
- 34
1
vote
1 answer
Kubeadm replace node
I have K8s cluster with 3 nodes "VMs" doing both master/worker with Etcd installed on all of the 3 nodes "untainted master" installed via kubespray "kubeadm based tool"
Now I would like to replace one VM with another.
Is there a direct way to do so…
Swiftree
- 11
- 1
1
vote
0 answers
Kubernetes Vsphere Provisioner: Failed to provision volume with StorageClass "fast": Cloud provider not initialized properly
Summary
I have provisioned kubernetes on several vcenter vms using kubespray and everything there is working perfectly. However I am running into trouble with setting up Vsphere as the cloud provider and dynamically provisioning persistent volumes.…
thewooster
- 807
- 1
- 9
- 23
1
vote
0 answers
Docker: TypeError: unsupported operand type(s) for -=: 'Retry' and 'int'
I am trying to run below Dockerfile steps and getting TypeError: unsupported operand type(s) for -=: 'Retry' and 'int' in pip3 upgrade:
I am using kubespary 2.7.0, docker latest, python3.5.
FROM ubuntu:16.04
RUN apt-get update
RUN apt-get install…
Ranvijay Sachan
- 2,407
- 3
- 30
- 49
1
vote
1 answer
Kubespray disable 'swapoff' command failed with returning 'non-zero return code'
I ran Kubespray in lxc containers with below configuration:(server_ram:8G | all nodes in ubuntu:18.04)
| NAME | STATE | IPV4
+---------+---------+-------------------
| ansible | RUNNING | 10.21.185.23 (eth0)
| node1 |…
Sajjad Hadafi
- 347
- 1
- 7
- 18
1
vote
1 answer
kubespray deployment Failed to download key at https://apt.dockerproject.org/gpg: HTTP Error 404: Not Found
In Ubuntu 16.04 I'm trying to deploy Kubespray2.5 using Ansible Playbook(2.9.7) command and getting error:
I have deployed kubespray many times with version 2.5 but this time only i am getting this error.
Please help to me.
ansible-playbook -i…
Ranvijay Sachan
- 2,407
- 3
- 30
- 49
1
vote
1 answer
Move kubernetes (kubespray) nodes to another IP range
I installed a kubernetes cluster by using kuberspray on my internal network, 192.168.0.0/24.
Now I need more nodes and these nodes will be located on other networks.
So I will set up a VPN between the current nodes and the new nodes.
The problem is…
Paul
- 20,883
- 7
- 57
- 74
1
vote
1 answer
Can we setup a k8s bare matal server to run Bind DNS server (named) and have an access to it from the outside on port 53?
I have setup a k8s cluster using 2 bare metal servers (1 master and 1 worker) using kubespray with default settings (kube_proxy_mode: iptables and dns_mode: coredns) and I would like to run a BIND DNS server inside to manage a couple of domain…
Chris
- 23
- 1
- 5
1
vote
1 answer
Unit systemd-resolved.service is masked
I am trying to install kubernetes with kubespray on my VPS servers.
When I execute the playbook, I've got the following error message:
fatal: [k8s-m-1]: FAILED! => {"changed": true, "msg": "non-zero return code", "rc": 1, "stderr": "Shared…
softshipper
- 32,463
- 51
- 192
- 400