Kubernetes cannot run pods without access to public internet #1545
Labels
area/kubelet
kind/bug
Categorizes issue or PR as related to a bug.
priority/important-soon
Must be staffed and worked on either currently, or very soon, ideally in time for the next release.
sig/node
Categorizes an issue or PR as relevant to SIG Node.
For environments that cannot access the DockerHub (banks, secure sites), there is no way to even run Kubernetes because you can't pull "kubernetes/pause".
A solution is probably a combination of changing the policy (#1458) for the net container (don't pull if it already exists?) as well as allowing the kubelet to be started with a parameter or env var for which image to use instead of kubernetes/pause:latest ("myregistry:5000/pause/latest").
Since we have people hitting this now I'm going to try to fix both - any potential issues folks see with that?
The text was updated successfully, but these errors were encountered: