Skip to content
This repository has been archived by the owner on Sep 30, 2020. It is now read-only.

kube2iam resources improvement #1735

Merged
merged 1 commit into from
Sep 25, 2019
Merged

kube2iam resources improvement #1735

merged 1 commit into from
Sep 25, 2019

Conversation

jorge07
Copy link
Contributor

@jorge07 jorge07 commented Sep 25, 2019
edited

After 2y running this we faced some issues with the default kube2iam resources values.

CPU limits cause applications to run up to 100% slower, in this case can end in race conditions while touching the ip tables and also in timeouts.
Default CPU requests and memory are not enough for +50 nodes.
You can run the next query in prometheus to see if your kube2iam instances are throttling:

 100
  * sum by(container, pod, namespace) (increase(container_cpu_cfs_throttled_periods_total{container!=""}[5m]))
  / sum by(container, pod, namespace) (increase(container_cpu_cfs_periods_total[5m]))
  > 25

@jorge07
kube2iam resources improvement
4c78121 
After 2y running this we faced some issues with the default kube2iam resources values.

CPU limits cause applications to run up to 100% slower, in this case can end in race conditions touching while the ip tables and also in timeouts.
Default CPU requests and memory are not enough for +50 nodes.  
You can run the next query in prometheus to see if your kube2iam instances are throttling:
```
 100
  * sum by(container, pod, namespace) (increase(container_cpu_cfs_throttled_periods_total{container!=""}[5m]))
  / sum by(container, pod, namespace) (increase(container_cpu_cfs_periods_total[5m]))
  > 25
```
@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Sep 25, 2019
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
To complete the pull request process, please assign davidmccormick
You can assign the PR to them by writing /assign @davidmccormick in a comment when ready.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@jorge07
Copy link
Contributor Author

jorge07 commented Sep 25, 2019

/assign @davidmccormick

davidmccormick
davidmccormick approved these changes Sep 25, 2019
View reviewed changes
Copy link
Contributor

@davidmccormick davidmccormick left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great thanks! :)

@davidmccormick
Copy link
Contributor

/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Sep 25, 2019
@davidmccormick
Copy link
Contributor

/approved

@davidmccormick davidmccormick merged commit 119a2ad into kubernetes-retired:master Sep 25, 2019
@davidmccormick davidmccormick added this to the v0.15.0 milestone Sep 25, 2019
@jorge07 jorge07 deleted the patch-1 branch September 25, 2019 16:24
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@davidmccormick davidmccormick davidmccormick approved these changes

@danielfm danielfm Awaiting requested review from danielfm

Assignees

@davidmccormick davidmccormick

Labels
cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm Indicates that a PR is ready to be merged. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.
Projects
None yet
Milestone
v0.15.0
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@jorge07 @k8s-ci-robot @davidmccormick