Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CNI Applications Aren't Allocated ServicePort #4548

Closed
ozdanborne opened this issue Oct 4, 2016 · 6 comments
Closed

CNI Applications Aren't Allocated ServicePort #4548

ozdanborne opened this issue Oct 4, 2016 · 6 comments
Assignees
@jdef

Comments

@ozdanborne
Copy link

ozdanborne commented Oct 4, 2016
edited by marcomonaco
Loading

In order to map a marathon task to a service entry in Marathon-LB, it must be allocated a servicePort by Marathon. I have noticed that Marathon is only allocating servicePorts to Docker Containerizer tasks. It is not allocating servicePorts to Unified Containerizer tasks.

As a base case, the the following sample app.json launches a docker containerizer task, which is correctly given a servicePort:

{
  "id": "docker-task",
  "container": {
    "type": "DOCKER",
    "docker": {
      "image": "nginx",
      "network": "USER",
      "portMappings": [{"containerPort": 80}]
    }
  },
  "ipAddress": {
      "networkName": "dcos"
  }
}

I see the task's assigned servicePort in its marathon information:

[vagrant@a1 ~]$ curl m1.dcos:8080/v2/apps/docker-task
{"app":{"id":"/docker-task","cmd":null,"args":null,"user":null,"env":{},"instances":1,"cpus":1,"mem":128,"disk":0,"gpus":0,"executor":"","constraints":[],"uris":[],"fetch":[],"storeUrls":[],"backoffSeconds":1,"backoffFactor":1.15,"maxLaunchDelaySeconds":3600,"container":{"type":"DOCKER","volumes":[],"docker":{"image":"nginx","network":"USER","portMappings":[{"containerPort":80,"servicePort":10101,"protocol":"tcp","labels":{}}],"privileged":false,"parameters":[],"forcePullImage":false}},"healthChecks":[],"readinessChecks":[],"dependencies":[],"upgradeStrategy":{"minimumHealthCapacity":1,"maximumOverCapacity":1},"labels":{},"acceptedResourceRoles":null,"ipAddress":{"groups":[],"labels":{},"discovery":{"ports":[]},"networkName":"dcos"},"version":"2016-10-04T21:10:23.736Z","residency":null,"secrets":{},"taskKillGracePeriodSeconds":null,"versionInfo":{"lastScalingAt":"2016-10-04T21:10:23.736Z","lastConfigChangeAt":"2016-10-04T21:10:23.736Z"},"tasksStaged":0,"tasksRunning":1,"tasksHealthy":0,"tasksUnhealthy":0,"deployments":[],"tasks":[{"id":"docker-task.f74113c8-8a76-11e6-8a4d-70b3d5800001","slaveId":"f4a920f7-29dd-411c-8181-d77d7d92fb0f-S3","host":"192.168.65.111","state":"TASK_RUNNING","startedAt":"2016-10-04T21:10:25.181Z","stagedAt":"2016-10-04T21:10:24.041Z","ports":[],"version":"2016-10-04T21:10:23.736Z","ipAddresses":[{"ipAddress":"9.0.1.130","protocol":"IPv4"}],"appId":"/docker-task"}]}}

When the above application is launched with the necessary HAPROXY_* labels, it works as expected with Marathon-LB.

However, the following similar Unified Containerizer task is not assigned a servicePort:

{
  "id": "unified-task",
  "container": {
    "type": "MESOS",
    "docker": {
      "image": "nginx",
      "portMappings": [{"containerPort": 80}]
    }
  },
  "ipAddress": {
      "networkName": "dcos"
  }
}

No servicePort is assigned:

[vagrant@a1 ~]$ curl m1.dcos:8080/v2/apps/unified-task
{"app":{"id":"/unified-task","cmd":null,"args":null,"user":null,"env":{},"instances":1,"cpus":1,"mem":128,"disk":0,"gpus":0,"executor":"","constraints":[],"uris":[],"fetch":[],"storeUrls":[],"backoffSeconds":1,"backoffFactor":1.15,"maxLaunchDelaySeconds":3600,"container":{"type":"MESOS","volumes":[],"docker":{"image":"nginx","credential":null,"forcePullImage":false}},"healthChecks":[],"readinessChecks":[],"dependencies":[],"upgradeStrategy":{"minimumHealthCapacity":1,"maximumOverCapacity":1},"labels":{},"acceptedResourceRoles":null,"ipAddress":{"groups":[],"labels":{},"discovery":{"ports":[]},"networkName":"dcos"},"version":"2016-10-04T21:13:48.557Z","residency":null,"secrets":{},"taskKillGracePeriodSeconds":null,"versionInfo":{"lastScalingAt":"2016-10-04T21:13:48.557Z","lastConfigChangeAt":"2016-10-04T21:13:48.557Z"},"tasksStaged":0,"tasksRunning":1,"tasksHealthy":0,"tasksUnhealthy":0,"deployments":[],"tasks":[{"id":"unified-task.714cab29-8a77-11e6-8a4d-70b3d5800001","slaveId":"f4a920f7-29dd-411c-8181-d77d7d92fb0f-S3","host":"192.168.65.111","state":"TASK_RUNNING","startedAt":"2016-10-04T21:13:51.107Z","stagedAt":"2016-10-04T21:13:48.806Z","ports":[],"version":"2016-10-04T21:13:48.557Z","ipAddresses":[{"ipAddress":"9.0.1.2","protocol":"IPv4"}],"appId":"/unified-task"}]}}

When the above application is launched with the necessary HAPROXY_* labels, it is not mapped to a service in Marathon-LB (since it does not have a servicePort to assign it to.)

cc: @jdef
This was referenced Oct 4, 2016
Closed
Closed
@aquamatthias aquamatthias added this to the 1.3 milestone Oct 10, 2016
@nfnt
Copy link
Contributor

nfnt commented Oct 18, 2016

The current Unified Containerizer support in Marathon does not support port mappings. Only host networking is possible at the moment.

@jdef jdef modified the milestones: 1.4, 1.3 Oct 27, 2016
jdef added a commit that referenced this issue Oct 28, 2016
@jdef
move Container.Docker.PortMapping to Container.PortMapping
e512ac3 
Summary:
Port mappings are supported (by Mesos) for more than just Docker, so move PortMapping into Container (as a first step).

related to #4548

Test Plan: sbt test

Reviewers: nfnt, jasongilanfarr

Reviewed By: jasongilanfarr

Subscribers: jenkins, marathon-team

Differential Revision: https://phabricator.mesosphere.com/D123
@akamalov
Copy link

akamalov commented Nov 2, 2016

@jdef, do we have an ETA when this problem will be solved ? What Marathon ver will the bug fix go under ?

Thanks again.

@akamalov
Copy link

akamalov commented Nov 3, 2016

@jdef, docker containerizer

@jdef jdef modified the milestones: Marathon 1.5, Marathon 1.4 Dec 3, 2016
@jdef
Copy link
Contributor

jdef commented Dec 3, 2016

bumping the milestone on this. should land in master sooner than later, but won't make the cutoff for marathon 1.4 :(

@nfnt nfnt mentioned this issue Dec 7, 2016
Closed
@jejer jejer mentioned this issue Jan 20, 2017
Closed
@marcomonaco
Copy link

#4972

@meichstedt
Copy link
Contributor

Note: This issue has been migrated to https://jira.mesosphere.com/browse/MARATHON-1687. For more information see https://groups.google.com/forum/#!topic/marathon-framework/khtvf-ifnp8.

@mesosphere mesosphere locked and limited conversation to collaborators Mar 27, 2017
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@jdef jdef

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@aquamatthias @meichstedt @nfnt @jdef @ozdanborne @akamalov @marcomonaco