堆栈内存溢出
  简体   繁体   English

EKS Anywhere 集群证书管理器 io 超时

[英]EKS Anywhere Cluster cert-manager io-timeout

 原文  2022-04-25 19:25:33       amazon-eks/ eksctl

问题描述

First time trying EKS Anywhere docker provider deployment as given in below link https://anywhere.eks.amazonaws.com/docs/getting-started/local-environment/第一次尝试 EKS Anywhere docker 提供程序部署,如下链接https://anywhere.eks.amazonaws.com/docs/getting-started/local-environment/

It gets stuck at 'waiting for cert-manager'.它卡在“等待证书管理器”。 Working on CentOS 7.System is behind proxy.工作在 CentOS 7. 系统在代理后面。

Installing cert-manager Version="v1.5.3+66e1acc"
Using Override="cert-manager.yaml" Provider="cert-manager" Version="v1.5.3+66e1acc"
Waiting for cert-manager to be available...
Error: timed out waiting for the condition

Only cert-manager pods are not able to pull images只有 cert-manager pod 无法拉取镜像

   NAMESPACE            NAME                                                              READY   STATUS             RESTARTS   AGE
  cert-manager         cert-manager-7988d4fb6c-bjhsv                                     0/1     ImagePullBackOff   0          5m54s
  cert-manager         cert-manager-cainjector-6bc8dcdb64-hvdx5                          0/1     ImagePullBackOff   0          5m55s
  cert-manager         cert-manager-webhook-68979bfb95-q8ttt                             0/1     ImagePullBackOff   0          5m54s
  kube-system          coredns-745c7986c7-2wrx5                                          1/1     Running            0          5m57s
  kube-system          coredns-745c7986c7-kx594                                          1/1     Running            0          5m57s
  kube-system          etcd-dev-cluster-eks-a-cluster-control-plane                      1/1     Running            0          5m52s
  kube-system          kindnet-4jcvt                                                     1/1     Running            0          5m57s
  kube-system          kube-apiserver-dev-cluster-eks-a-cluster-control-plane            1/1     Running            0          5m52s
  kube-system          kube-controller-manager-dev-cluster-eks-a-cluster-control-plane   1/1     Running            0          5m52s
  kube-system          kube-proxy-4dk2r                                                  1/1     Running            0          5m57s
  kube-system          kube-scheduler-dev-cluster-eks-a-cluster-control-plane            1/1     Running            0          5m52s
  local-path-storage   local-path-provisioner-666bfc797f-nkhqf                           1/1     Running            0          5m57s

same images are getting pulled using docker pull使用 docker pull 拉取相同的图像

 public.ecr.aws/eks-anywhere/jetstack/cert-manager-webhook      v1.5.3-eks-a-6                 194bcfda671e   3 months ago    46MB
 public.ecr.aws/eks-anywhere/jetstack/cert-manager-controller   v1.5.3-eks-a-6                 1e6749016508   3 months ago    61.3MB
 public.ecr.aws/eks-anywhere/jetstack/cert-manager-cainjector   v1.5.3-eks-a-6                 45723d794a88   3 months ago    42.4MB

kubectl describe gives below (i/o timeout) error as well as 'server misbehaving' error kubectl describe 给出以下(i/o 超时)错误以及“服务器行为不当”错误

 Failed to pull image "public.ecr.aws/eks-anywhere/jetstack/cert-manager-controller:v1.5.3-eks-a-6": rpc error: code = Unknown desc = failed to pull and unpack image "public.ecr.aws/eks-anywhere/jetstack/cert-manager-controller:v1.5.3-eks-a-6": failed to resolve reference "public.ecr.aws/eks-anywhere/jetstack/cert-manager-controller:v1.5.3-eks-a-6": failed to do request: Head "https://public.ecr.aws/v2/eks-anywhere/jetstack/cert-manager-controller/manifests/v1.5.3-eks-a-6": dial tcp: lookup public.ecr.aws on 172.19.0.1:53: read udp 172.19.0.2:38941->172.19.0.1:53: i/o timeout

1 个解决方案

解决方案1
 1 已采纳  2022-05-07 15:27:20

It was a proxy related issue.这是一个代理相关的问题。 Resolved by adding proxy config in containerd service of docker container of node and restarting containerd service.通过在node的docker容器的containerd服务中添加代理配置并重启containerd服务解决。

docker exec -it <container name> bash

Inside container内部容器

cd /etc/systemd/system/
mkdir containerd.service.d
touch http-proxy.conf
cat <<EOF >/etc/systemd/system/containerd.service.d/http-proxy.conf    
[Service]    
Environment="HTTP_PROXY=http://proxy ip:proxy port"    
Environment="HTTPS_PROXY=http://proxy ip:proxy port"    
Environment="NO_PROXY=${NO_PROXY:-localhost},${LOCAL_NETWORK}"    
EOF
systemctl daemon-reload
systemctl restart containerd

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 创建集群时 EKS Anywhere 超时 - EKS Anywhere timeout on create cluster 如何为证书管理器设置标志 - How to set a flag for cert-manager AKS 中的 Cert-manager ClusterIssuer 问题 - Issue with Cert-manager ClusterIssuer in AKS cert-manager:没有配置的挑战解决者可以用于这个挑战 - cert-manager: no configured challenge solvers can be used for this challenge 证书管理器在升级到 AKS 1.20.7 后停止更新 Let'S Encrypt 证书 - Cert-manager stopped renewing Let'S Encrypt certificates after upgrading to AKS 1.20.7 带有 EKS 集群的 PV 和 PVC - PV & PVC with EKS Cluster 备份 AWS EKS 集群配置 - Backup AWS EKS cluster configuration EKS 集群核心服务上的 ErrImagePull - ErrImagePull on EKS cluster core services EKS 集群的 RDS 连接问题 - RDS Connectivity Issue with EKS Cluster coredns 没有部署在新的 EKS 集群中? - coredns not deploying in new EKS cluster?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM