Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The vpcrouter tool uses the AWS API endpoints to make changes to the routing tables within a VPC.
To look up the API endpoint, it needs DNS.
However, kube-dns runs as a service, and some of the the pods providing that service might be running in a different region before vpcrouter has created the routes to access pods there.
It isn't immediately noticeable in some installs, because the first instance of kube-dns runs on a directly-reachable master node.
It becomes a problem when kube-dns is scaled up to more pods - some reachable, some not.
This PR changes the vpcrouter pod to use
hostNetwork: true
to ensure it is always able to look up the AWS API endpoint addresses and bring the pod network into a fully routed state.