Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
i-pushkin2021-08-12 10:27:49
Kubernetes
i-pushkin, 2021-08-12 10:27:49

How to fix calico problem in kubernetes?

I deployed a kubernetes cluster on hardware via kubespray.
Inventory.ini

[all]
dev-kube-master01 ansible_host=192.168.11.1
dev-kube-master02 ansible_host=192.168.11.2
dev-kube-node01 ansible_host=192.168.11.3
dev-kube-node02 ansible_host=192.168.11.4
dev-kube-node03 ansible_host=192.168.11.5
dev-kube-node04 ansible_host=192.168.11.6
dev-kube-etcd01 ansible_host=192.168.11.7
dev-kube-etcd02 ansible_host=192.168.11.8
dev-kube-etcd03 ansible_host=192.168.11.9



[kube-master]
dev-kube-master01
dev-kube-master02

[etcd]
dev-kube-etcd01
dev-kube-etcd02
dev-kube-etcd03

[kube-node]
dev-kube-node01
dev-kube-node02
dev-kube-node03
dev-kube-node04

[k8s-cluster:children]
kube-master
kube-node

[calico-rr]


group_vars/all/all.yml
...
etcd_kubeadm_enabled: true
...
## Internal loadbalancers for apiservers
loadbalancer_apiserver_localhost: true
# valid options are "nginx" or "haproxy"
loadbalancer_apiserver_type: nginx
...
## Option is  "script", "none"
cert_management: script

group_vars/k8s_cluster/k8s-cluster.yml
# configure arp_ignore and arp_announce to avoid answering ARP queries from kube-ipvs0 interface
# must be set to true for MetalLB to work
kube_proxy_strict_arp: true

group_vars/k8s-cluster/addons.yml
# Enable the deployment of NGINX Ingress
# But don't enable the HostNetwork stuff as we'll be using MetalLB as LoadBalancer
ingress_nginx_enabled: true
ingress_nginx_host_network: false


# MetalLB Config
# See https://github.com/kubernetes-sigs/kubespray/tree/master/roles/kubernetes-apps/metallb
metallb_enabled: true
metallb_ip_range:
  - "192.168.11.3-192.168.11.6" # Choose IP range MetalLB can give out on the L2 network segment
metallb_protocol: "layer2"


The cluster has successfully deployed and is working, however, calico periodically issues warnings:
Liveness probe failed:
Readiness probe failed:

At the same time, everything works, only sometimes the pods with calico are restarted.
What is the reason for these warnings and how to fix them?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
Dmitry Shitskov, 2021-08-12
@Zarom

I assume that this is the reason - The free range of addresses for issuing pods should be indicated here. You have MetalLB starting to intercept ARP for nodes in this range.

metallb_ip_range:
  - "192.168.11.3-192.168.11.6" # Choose IP range MetalLB can give out on the L2 network segment

In addition, you need to look at the logs of those who fell under calico, the fact that there are problems is not enough to diagnose

Similar questions
W
web_dev2021-12-14 10:06:20
How do you version public and private Helm Charts for the same application? 1Reply
D
Dmitriy2022-01-18 11:57:54
Why doesn't XDebug, Waiting for incoming connection work? 1Reply
S
shell_guy2022-01-19 14:07:44
How to run Local K8s cluster (Linux)? 0Reply
V
Vadim2022-01-24 15:59:49
What happens to a Kubernetes pod that uses a private image when a node dies? 0Reply
I
Iceforest2022-02-04 12:33:24
How to write psp k8s for service account? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question