Stack Overflow
Stack Overflow

Questions tagged [calico]

Project Calico is an open-source networking and security solution for Kubernetes. Use this tag to mark questions related to the project.

Project Calico

Project Calico is an open source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports a broad range of platforms including Kubernetes, OpenShift, Docker EE, OpenStack, and bare metal services.

207 questions
11
votes
2 answers

Kubernetes Service not distributing the traffic evenly among pods

I am using Kubernetes v1.20.10 baremetal installation. It has one master node and 3 worker nodes. The application simply served HTTP requests. I am scaling the deployment based on the (HPA) Horizontal Pod Autoscaler and I noticed that the load is…
Anthony Vinay
  • 513
  • 5
  • 17
7
votes
1 answer

Kubernetes Health Checks Failing with Network Policies Enabled

When enabling only egress network policies, all readiness and liveness checks fail after pods are restarted. This is what I see when describing the pod: Warning Unhealthy 115s (x7 over 2m55s) kubelet, Readiness probe failed: Get…
nbrink
  • 436
  • 5
  • 14
7
votes
1 answer

After uninstalling calico, new pods are stuck in container creating state

After uninstalling calico, kubectl -f calico.yaml, not able to create new pods in the cluster. Any new pods in the cluster are stuck in container creating state. Kubectl describe shows the errors below: Warning FailedCreatePodSandBox 2m kubelet,…
qstack
  • 669
  • 1
  • 7
  • 14
7
votes
1 answer

Ufw firewall blocks kubernetes (with calico)

I'm trying to install a kubernetes cluster on my server (Debian 10). On my server I used ufw as firewall. Before creating the cluster I allowed these ports on ufw: 179/tcp, 4789/udp, 5473/tcp, 443 /tcp, 6443/tcp, 2379/tcp, 4149/tcp, 10250/tcp,…
pchmn
  • 524
  • 1
  • 5
  • 16
7
votes
3 answers

kubernetes networkpolicy namespaceSelector select when namespace has no labels

I am trying to add a calico network policy to allow my namespace to talk to kube-system namespace. But in my k8s cluster kube-system has no labels attached to it, so I am not able to select pods in there. Below is what I tried but its not…
Hemant_Negi
  • 1,910
  • 1
  • 20
  • 25
6
votes
1 answer

Calico IPs Confusion

I am bit confused about Calico IPs : If I add calico to kubernetes cluster using kubectl apply -f https://docs.projectcalico.org/v3.14/manifests/calico.yaml The CALICO_IPV4POOL_CIDR is 192.168.0.0/16 So IP Range is 192.168.0.0 to…
Ankit Bansal
  • 2,162
  • 8
  • 42
  • 79
6
votes
0 answers

Calico node status returns Calico process is not running

I've problems getting with the BGP Peers of my Kubernetes clusters. My Cluster is built with 3 master nodes and 2 worker nodes on premise running on Unbuntu 18.04. The etcd is external configurered but running on 2 Master Nodes. Initialy…
Marcel Beeker
  • 163
  • 1
  • 13
6
votes
2 answers

Calico: Kubernetes pods can't ping each other use Cluster IP

I installed kubernetes using kubeadm v1.14.0 and added two working nodes via the join command. kubeadm config apiVersion: kubeadm.k8s.io/v1beta1 kind: ClusterConfiguration kubernetesVersion: v1.14.0 controlPlaneEndpoint:…
Cliven
  • 359
  • 3
  • 10
6
votes
3 answers

how to delete/remove calico cni from my kubernetes cluster

I have installed my kubernetes cluster(1master, 3worker)in the digital ocean. The problem is I installed both flannel and calico in this cluster. I want to remove the calico completely from my cluster or is it ok to have multiple CNI?
AATHITH RAJENDRAN
  • 4,689
  • 8
  • 34
  • 58
6
votes
1 answer

Kubernetes overlay network comparison

I was wondering if someone could give me a brief overview of the differences/ advantages between all of the different Kubernetes network overlays. The getting started guide (http://kubernetes.io/docs/getting-started-guides/scratch/#network) mentions…
David Newswanger
  • 1,073
  • 1
  • 10
  • 11
5
votes
2 answers

How to make the pod CIDR range larger in kubernetes cluster deployed with kubeadm?

I deployed my cluster with the --pod-network-cidr added, and have created the new ip pool using calicoctl to change the pods to this range. The problem I am having is exactly what I need to change on the kubernetes side to make the pod cidr range…
mmiara
  • 305
  • 1
  • 4
  • 14
5
votes
1 answer

Calico pod Readiness probe and Liveness probe always failed in Kubernetes1.15.4

I hit the issue after I had upgraded rancher from v2.2.8 to v2.3. The cluster was deployed by using rke v0.3.0 . The first issue I got was Readiness probe failed: HTTP probe failed with statuscode: 503 the logs below and there is an issue…
Aisuko
  • 193
  • 1
  • 11
5
votes
1 answer

what is the difference between l2 cni plugin vs l3 plugin?

what is the difference between l2 cni plugin vs l3 cni plugin? Does L2 CNI plugin doesn't provide public access to the pods?What are the examples of L2 and L3 plugins
Bharath Thiruveedula
  • 391
  • 1
  • 4
  • 14
4
votes
1 answer

calico-kube-controllers and calico-node are not ready (CrashLoopBackOff)

I deployed a brand new k8s cluster using kubespray, everything works fine but all of the calico related pods are not ready. And after many hours of debugging I couldn't find the reason why calico pods are crashing. I even disabled/stopped the entire…
HoseinGhanbari
  • 1,058
  • 1
  • 11
  • 23
4
votes
2 answers

Why my ClusterIP does not work with the ip assigned?

I have defined a new service with a ClusterIP. [ciuffoly@master-node ~]$ kubectl get services NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE kubernetes ClusterIP 10.96.0.1 443/TCP …
andrea ciuffoli
  • 151
  • 10
1
2 3
13 14