-
Notifications
You must be signed in to change notification settings - Fork 4.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Connectivity issue in newly spinned up cluster #16126
Comments
For anyone else coming here facing the same issue, The issue started appearing when kubernetes was updated to v1.24.x. The reason was kube-router was not able to disable source/dest for newly spinned ec2 instances because kube-router lacked the permissions to do so. Why these permissions got changed after upgrading kubernets version to 1.24.x? don't know. If anyone knows please leave a comment. |
The Kubernetes project currently lacks enough contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale |
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle rotten |
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues and PRs. This bot triages issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /close not-planned |
@k8s-triage-robot: Closing this issue, marking it as "Not Planned". In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/kind bug
1. What
kops
version are you running? The commandkops version
, will displaythis information.
Client version: 1.27.0 (git-v1.27.0)
2. What Kubernetes version are you running?
kubectl version
will print theversion if a cluster is running or provide the Kubernetes version specified as
a
kops
flag.1.24.16
3. What cloud provider are you using?
aws
4. What commands did you run? What is the simplest way to reproduce this issue?
`#create a new cluster
Wait for cluster to spin up
#update the cluster
Change min and max nodes to 2
In above commands I am trying to from debugger pod on a worker node to ping debugger pod on newly added worker node in the same region and the connectivity fails.
If I restart kube-router on the master node, the connectivity begins to work.
5. What happened after the commands executed?
Pods on newly added nodes were not pingable from nodes in the same subnet.
6. What did you expect to happen?
I expected that pods on newly added nodes are pingable from nodes in the same subnet
7. Please provide your cluster manifest. Execute
kops get --name my.example.com -o yaml
to display your cluster manifest.You may want to remove your cluster name and other sensitive information.
8. Please run the commands with most verbose logging by adding the
-v 10
flag.Paste the logs into this report, or in a gist and provide the gist link here.
9. Anything else do we need to know?
The issue does not appear with kubernetes version 1.23.17 but appears with kubernets 1.24.16. Can anyone please confirm if they face the same issue with kops 1.27.0 and with kubernetes version 1.24.16 and kube-router as CNI running in default mode as it comes with Kops.
The text was updated successfully, but these errors were encountered: