#C3ASABBD1 getting stuck at initializing, how to resolve this?

Hi all, since updating to rancher 2.12 the UI sometimes hangs on "Loading" forever when selecting "pods" or other resources. Other times it does work. kubectl works as usual. Now it seems to have something to do with calico's tigera-operator as there are 1000+ tigera-operator pods in Evicted state. Also the deployment often says "deployment does not have minimum availabilty". Has anyone experienced the same and found a solution?

Any idea how to limit pod logs size? On rancher 2.7, I tried adding KUBELET_EXTRA_ARGS with the value of "--container-log-max-size=10Mi --container-log-max-files=6" to my cluster configuration, but it doesn't seem to be applied to running kubelet processes on worker nodes.

Hi , in Loghorn v1.10.0 , is V2 Data Engine feature GA or still experimental ?

Im doing the ImagePolicyWebhook Setup in the CKS. All the steps are correct according to the solution. Non existing server set in kubeconf

```
~AdmissionConfiguration points to kubeconf~
```"kubeConfigFile": "/etc/kubernetes/policywebhook/kubeconf",

kube-apiserver.yaml has the plugin enabled

- --enable-admission-plugins=NodeRestriction,ImagePolicyWebhook

- --admission-control-config-file=/etc/kubernetes/policywebhook/admission_config.json

yet pods can still be created even though no service is running on localhost:1234

Hi all! I don’t know if one is supposed to introduce oneself? Anyway, https://gitlab.epfl.ch/ runs out of a 5-node RKE2 cluster that is wrangled by a single-node Rancher Manager.

Hello,

Hi everyone, I have created eks cluster uat-rancher-use1 and installed rancher server there. I have imported existing eks downstream cluster and created project and added 2 namespaces there. I am using Rancher backup for backup and restore. I have backed up, deleted project manually and tried to restore. Project is being restore but no namespaces under that project. Is it expected behavior or project should have restored with namespaces. I was hoping that when I restore, deleted projects with namespaces and project role bindings will be also fully restored. Could someone please help me with this? Thank you 🙂

Hey guys, we are struggeling with connecting NeuVector and Entra via OpenId connect? Is there any good documentation for that? We are running in an infinite loop. I hope this is the correct channel

Hey @creamy-pencil-82913, following up on your comment github.com/rancher/rancher/issues/52131#issuecomment-3416365174. The api-server and the node containing the pod are in the same VPC and same subnet. How should the routing table look like?

Hello, looking for advice or others' experiences with regards to setting up infra as code for Rancher cluster configurations. The goal: save rancher rke2 cluster configuration in git and have a CI/CD pipeline for applying the configuration. One option we considered is terraform-provider-rancher2. Another option I considered was using fleet and adding a git repo to

fleet-local

and having it apply

<http://clusters.provisioning.cattle.io|clusters.provisioning.cattle.io>

resources to the management server cluster. This worked except that it doesn't provide a straightforward way for fleet to "take over" a cluster that was instantiated in the UI.

Hi team 👋 I’m currently facing an issue with Rancher Desktop — it’s stuck on “Waiting for Kubernetes API”. I’ve already tried restarting Rancher Desktop and my machine, but the problem persists. Has anyone encountered this before or knows any workaround to fix it?

Hello Team I desperatly trying to install rancher desktop on my mac M1 I download rancher from here https://rancherdesktop.io/ (this first link Download for macOS (Apple Silicon) Then i opened it I have this error

Error: /Applications/Rancher <http://Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl|Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl> exited with code 1

Last command run: /Applications/Rancher Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl start --tty=false /Users/my username/Library/Application Support/rancher-desktop/lima/_config/0.yaml

Error: /Applications/Rancher <http://Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl|Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl> exited with code 1
'/Users/my username here/Library/Application Support/rancher-desktop/lima/_config/0.yaml'
  ],
  stdout: '',
  stderr: 'time="2025-10-21T09:09:52-04:00" level=info msg="Terminal is not available, proceeding without opening an editor"\n' +
    'time="2025-10-21T09:09:52-04:00" level=fatal msg="instance name \\"0\\" too long: \\"/Users/my username /Library/Application Support/rancher-desktop/lima/0/ssh.sock.1234567890123456\\" must be less than UNIX_PATH_MAX=104 characters, but is 114"\n',
  code: 1,
  signal: undefined,
  [Symbol(child-process.command)]: '/Applications/Rancher <http://Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl|Desktop.app/Contents/Resources/resources/darwin/lima/bin/limactl> start --tty=false /Users/my username here/Library/Application Support/rancher-desktop/lima/_config/0.yaml'
}

Hello all! I'm new to the Suse/Rancher ecosystem and want to say thanks for this ecosystem and the Suse community at large for your contributions here. I would like to set up a reproducible homelab bootstrap process that I can do for me and then a bunch of folks in my neighborhood so they can run their own redundant homelabs (and maybe eventually we could add some community mirror redundancy fun later). I've wanted to use a simplified k8s toolset that would take the place of homelab staples like openmediavault, proxmox, and truenas which typically used Docker to deploy services to solve for single point of failure, inconsistent configurations, backups suck, and and RAID configurations have a terrible recovery rate when a disk crashes. So I'm glad the homelab community is moving towards more k8s under-the-hood options, as well as ZFS or Longhorn mirroring given how cheap storage is now. I knew about Rancher, but just learned about Harvester and so happy to find out that folks are already using this as their homelab foundation! So, my goal is to set up a reproducible way to install harvester + rancher (and likely other ecosystem tools) onto a single "beefy" (motherboard, cpus, mem, 5 x 18TB object storage disks, 4 x 2TB longhorn storage) homelab node that will serve as my initial virtualization and storage node bootstrap various physical edge clusters. These phsyical edge clusters will have various properties I won't get into, but some are SBC clusters that may be portable (temporarily airgapped), while others can be full blown servers on prem (below is a video of a pi cluster unit with poe I/O boards). Considering the Harvester + Rancher setup, I would really hope to approach building a guide and automate some pieces. 1. Am I thinking about these tools in the right way or am I losing the plot for how the community generally uses Rancher/Harvester together? 2. Are there circular dependency issues or production concerns with using Harvester VMs as the main k3s cluster nodes, to then have Rancher deployed on that cluster, which then manages the main cluster it runs on and any new cluster that gets created? a. If this does work, is there an order of operations that must be followed during backups for running this configuration? 3. Would it make sense to have a boot script that modifies the Harvester install to start with a local cluster of K3S that will pre-install a Rancher installation? a. Does this already exist and is maintained by Suse or a community member? 4. Any particularly good reading that might help me ask better questions or some recipe setups for deploying these from scratch? My hope is to treat Rancher as my single pane of glass that runs over my single-node Harvester cluster. I see this as a nice way to get the homelab community introduced to many of the kubernetes concepts without needing to do a lot of toiling with multiple node setups. I know HA is the ultimate way to ensure redundancy and availability, but I want to enable my guide in a series of steps that meets these communities where they're at and slowly encourage them to add physical redundancy with various nodes they can acquire over time and as different needs and use cases arise. I hope my goals and questions make sense. Looking forward to dig in more!

#C3ASABBD1 Facing telnet issue in Rancher 2.5.8, where Apache webserver is not able to connect to NodePort of Java Pods. Java application is accessible directly from NodePort, But web server connectivity is failing ( web server and rancher are in same subnet ) No changes made to the Application manifests or kubenetes configuration The cluster has minimal load with only 4 Pods running on 4 worker nodes ( avg memory usage is 4GB per pod ) Has anyone faced these issues earlier and what could be the reasons for this behaviour

set the channel topic: Hi there! Have questions or need support? We're here to help!

Hi all, I've some trouble with upgrading the Kubernetes version running Rancher (e.g.

local

cluster). We've tried to update the Kubernetes version using Rancher's cluster management. During this update somehow our CNI (cilium) Helm values where overwritten which causes Cilium to lost its network (kubeProxyReplacement was disabled but no kube-proxy was running). Next this caused our

local

cluster to get in a broken state. After redeploying Cilium with the correct Helm values, the

local

was recovering again. But due to the cluster being completely broken, the Kubernetes upgrade got stuck, where three nodes are still running the old version (v1.31.7+rke2r1), and the other nodes are running the updated version (v1.32.9+rke2r1). Rancher is now reporting that it tries to update one of the worker nodes still running v1.31.7+rke2r1 but nothing happens. Is there any possibility to force Rancher to retry the failing nodes?

It seems like every time I log into the Rancher UI (We have multiple deployments) I have to refresh the page before any of the mouse clicks work. Is this a known issue? (LDAP auth)

Hello, The RK1 repository release page https://github.com/rancher/rke/releases mentions that in order to obtain access to the latest RKE1 images. One has to have a subscription to the SUSE RKE Extended Life program. (NOTE:

v1.32.9-rancher1-1

and

v1.31.13-rancher1-1

are not available without an active RKE Extended Life subscription. For more details, please refer to the SUSE EOL article.) By following the link, we cannot find a service to subscribe to by that name. Does someone have a link for us to follow and which subscription to get ? Which docs describe how to use that subscription and if the license supports distributing these images to our own clients ? Thanks in advance for any help

Hiya folks, here's wishing you all a great start to this week! 🎃 If any of you are headed to KubeCon NA, we invite you to join us at SUSE Rancher Day on 10th November and for an exclusive after-party at Don Boscas thereafter. 🦜 🎁 Use KCNA25RANCHER to sign up for the event free-of-cost 🎁

hi, pod exec issue – standard users can’t SSH into workload pods. whereas as a admin user im able to ssh into the pods in the rancher GUI.

Does Rancher’s paid offering (Rancher Prime ?) support role based auth instead of requiring an IAM user to provision EKS Clusters? Is this the pricing model? i.e • 5-15 nodes: $450 per node per month* • 16-50 nodes: $321 per node per month • 51-100 nodes: $221 per node per month • 101-250 nodes: $175 per node per month • 251-1000 nodes: $142 per node per month • >1000 nodes: $100 per node per month - And that’s for any node on an EKS cluster rancher deploys?

The rancher UI somettimes hangs on "loading" forever when listing pods or other resources. (kubectl get pods works). I had this before and it seemed gone after deleting 900 Evicted pods. Now it's back and after some digging it seems that the cattle-cluster-agent has an issue. It's emitting this every 30 seconds: time="2025-10-28T103303Z" level=error msg="Error in Store.Add for type _v1_Pod: transaction: begin tx: database is locked (5) (SQLITE_BUSY)" After restarting the pods it's working again but I'd like to know why. Does cattle-cluster-agent use SQLite internally?

Hello, after rotating the credentials of my GKE, Rancher no longer sees the imported cluster as healthy it shows "Cluster agent is not connected". I cannot see anything helpful in the logs, official docs or github issues. Is there a way to force refresh the cluster import since the GKE has new credentials ? I have tried to edit config and save to force a reconciliation without success. Thanks 🙏

Hello Rancher team, I have a Rancher cluster that is deployed on top of a Kubernetes K3s cluster. Currently, the disk usage on the worker VM/instance has reached 80%. Do you have any recommendations for the best cleanup practices to reduce disk usage for cleaning up logs on a VM/instance running K3s. I am using Ubuntu.

hi, as a user, im not able to exec to the pods from rancher gui. it shows as disconnected. any help is greatly appreciated.

Hello all, We're seeing security issues with

glibc

used in SUSE Docker images such as

<http://docker.io/rancher/fleet-agent|docker.io/rancher/fleet-agent>

. Some of the security issues are CVE-2025-4802, 2025:01702-1, and SUSE-SU-2025:0582-1. Anyone know if there will be updates to the usage of said images within the rancher fleet?

Hi Everyone. I am using windows 11 Enterprise Edition and installed Rancher Desktop 1.20.0. I an container that try to call "https://repo.maven.apache.org/maven2/". This url exists when I tried to do a docker build, it try to call the above url and it gives me following error: CWWKF1390E: The "https://repo.maven.apache.org/maven2/" configure Maven Repository cannot be reached. Verify that your computer has network access and firewalls are configured correctly, then try the action again. If the connection still fails, the repository server might be temporarily unavailable. Any help or hint would be greatly appreciated it!!