breezy-airplane-38347
03/23/2024, 9:38 PMbreezy-airplane-38347
03/23/2024, 9:39 PMfast-butcher-35499
03/24/2024, 1:01 AMfast-butcher-35499
03/24/2024, 1:06 AMbored-farmer-36655
03/24/2024, 1:09 AMfast-butcher-35499
03/24/2024, 1:12 AMsalmon-morning-84088
03/25/2024, 8:24 AMnarrow-lawyer-49835
03/26/2024, 9:24 AMnarrow-lawyer-49835
03/26/2024, 9:25 AMnarrow-lawyer-49835
03/26/2024, 9:31 AMnarrow-lawyer-49835
03/26/2024, 9:32 AMnarrow-lawyer-49835
03/26/2024, 10:02 AMtall-hydrogen-17043
03/26/2024, 12:51 PMbright-smartphone-36388
03/26/2024, 2:40 PMcrooked-cat-21365
03/26/2024, 3:14 PMMar 26 16:00:04 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:04+01:00" level=info msg="Removing S3 snapshot: <s3://rancher02/kube005/etcd-snapshot-kube005c00.ac.aixigo.de-1711105204>"
Mar 26 16:00:04 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:04+01:00" level=info msg="Reconciling ETCDSnapshotFile resources"
Mar 26 16:00:06 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:06+01:00" level=info msg="Deleting ETCDSnapshotFile for etcd-snapshot-kube005c00.ac.aixigo.de-1711105204"
Mar 26 16:00:06 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:06+01:00" level=info msg="Reconciliation of ETCDSnapshotFile resources complete"
Mar 26 16:00:21 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:21+01:00" level=info msg="Connecting to proxy" url="<wss://172.19.96.54:9345/v1-rke2/connect>"
Mar 26 16:00:21 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:21+01:00" level=info msg="Handling backend connection request [kube005c02.ac.aixigo.de]"
Mar 26 16:00:23 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:23+01:00" level=info msg="Updating TLS secret for kube-system/rke2-serving (count: 18): map[field.cattle.io/projectId:c-m-8gb8bnjk:p-c54dp listener.cattle.io/cn-10.43.0.1:10.43.0.1 listener.cattle.io/cn-127.0.0.1:127.0.0.1 listener.cattle.io/cn-172.19.96.44:172.19.96.44 listener.cattle.io/cn-172.19.96.45:172.19.96.45 listener.cattle.io/cn-172.19.96.54:172.19.96.54 listener.cattle.io/cn-2a00_fe0_30_60__2c-aa8739:2a00:fe0:30:60::2c listener.cattle.io/cn-2a00_fe0_30_60__2d-8a7792:2a00:fe0:30:60::2d listener.cattle.io/cn-2a00_fe0_30_60__36-7193d4:2a00:fe0:30:60::36 listener.cattle.io/cn-__1-f16284:::1 listener.cattle.io/cn-kube005c00.ac.aixigo.de:kube005c00.ac.aixigo.de listener.cattle.io/cn-kube005c01.ac.aixigo.de:kube005c01.ac.aixigo.de listener.cattle.io/cn-kube005c02.ac.aixigo.de:kube005c02.ac.aixigo.de listener.cattle.io/cn-kubernetes:kubernetes listener.cattle.io/cn-kubernetes.default:kubernetes.default listener.cattle.io/cn-kubernetes.default.svc:kubernetes.default.svc listener.cattle.io/cn-kubernetes.default.svc.cluster.local:kubernetes.default.svc.cluster.local listener.cattle.io/cn-localhost:localhost listener.cattle.io/fingerprint:SHA1=1F54835EA0967FF7C1BA1A6F56A9431174D2AB77]"
Mar 26 16:00:23 kube005c01.ac.aixigo.de rke2[1313]: time="2024-03-26T16:00:23+01:00" level=info msg="Active TLS secret kube-system/rke2-serving (ver=71265216) (count 18): map[field.cattle.io/projectId:c-m-8gb8bnjk:p-c54dp listener.cattle.io/cn-10.43.0.1:10.43.0.1 listener.cattle.io/cn-127.0.0.1:127.0.0.1 listener.cattle.io/cn-172.19.96.44:172.19.96.44 listener.cattle.io/cn-172.19.96.45:172.19.96.45 listener.cattle.io/cn-172.19.96.54:172.19.96.54 listener.cattle.io/cn-2a00_fe0_30_60__2c-aa8739:2a00:fe0:30:60::2c listener.cattle.io/cn-2a00_fe0_30_60__2d-8a7792:2a00:fe0:30:60::2d listener.cattle.io/cn-2a00_fe0_30_60__36-7193d4:2a00:fe0:30:60::36 listener.cattle.io/cn-__1-f16284:::1 listener.cattle.io/cn-kube005c00.ac.aixigo.de:kube005c00.ac.aixigo.de listener.cattle.io/cn-kube005c01.ac.aixigo.de:kube005c01.ac.aixigo.de listener.cattle.io/cn-kube005c02.ac.aixigo.de:kube005c02.ac.aixigo.de listener.cattle.io/cn-kubernetes:kubernetes listener.cattle.io/cn-kubernetes.default:kubernetes.default listener.cattle.io/cn-kubernetes.default.svc:kubernetes.default.svc listener.cattle.io/cn-kubernetes.default.svc.cluster.local:kubernetes.default.svc.cluster.local listener.cattle.io/cn-localhost:localhost listener.cattle.io/fingerprint:SHA1=1F54835EA0967FF7C1BA1A6F56A9431174D2AB77]"
Mar 26 16:04:11 kube005c01.ac.aixigo.de rke2[1313]: 2024/03/26 16:04:11 ERROR: [transport] Client received GoAway with error code ENHANCE_YOUR_CALM and debug data equal to ASCII "too_many_pings".
Mar 26 16:09:01 kube005c01.ac.aixigo.de rke2[1313]: 2024/03/26 16:09:01 ERROR: [transport] Client received GoAway with error code ENHANCE_YOUR_CALM and debug data equal to ASCII "too_many_pings".
Sorry for asking, but what is this supposed to tell me?
Rancher is version 2.8.2, self-hosted cluster, rke2 1.27.11calm-cartoon-40596
03/26/2024, 4:00 PMcalm-cartoon-40596
03/26/2024, 4:00 PMabundant-hair-58573
03/26/2024, 7:47 PMable-salesclerk-52921
03/26/2024, 10:04 PMadmission webhook "<http://rancher.cattle.io.clusters.management.cattle.io|rancher.cattle.io.clusters.management.cattle.io>" denied the request: cannot enable PodSecurityPolicy(PSP) or use PSP Template in cluster which k8s version is 1.25 and above
brave-van-86625
03/27/2024, 7:54 AMlively-solstice-77492
03/27/2024, 8:37 AMblue-fireman-26022
03/27/2024, 10:44 AMcalm-cartoon-40596
03/27/2024, 5:04 PMhelpful-leather-35210
03/27/2024, 6:31 PManonymous
03/28/2024, 1:22 AMalert-judge-46997
joined #general. Also, victorious-appointment-2033
joined.polite-ghost-31061
03/28/2024, 8:22 AMsalmon-morning-84088
03/28/2024, 1:16 PMkubectl explain GlobalRoles.inheritedClusterRoles
says:
> InheritedClusterRoles are the names of RoleTemplates whose permissions are granted by this GlobalRole in every cluster besides the local cluster.
Does that mean that built-in ClusterRoles
, like cluster-admin
, cannot inherited using this field?
EDIT: Never mind, cluster-admin
is indirectly referenced in a RoleTemplate with the same name. So problem solved.brave-furniture-15184
03/28/2024, 3:46 PMstrong-midnight-41266
03/28/2024, 3:59 PMastonishing-oyster-73922
03/28/2024, 6:28 PM