👋 Hi everyone! I am new to the rancher desktop tool and need few inputs on the k8s networking, I have a spring boot app deployed in rancher desktop, this app need to communicate to outside world i.e. calling some external services, currently I am gettign an error 'unknownhostexception: ...' am i missing something in configurations?

Hi guys, today I need your help I’ve deployed a RabbitMQ at Rancher and now I want to expose it through an Istio Ingress Gateway. I’ve deployed an Istio DestinationRule, Istio Gateway and an Istio Virtual Service, all pointing to the RabbitMQ Service. Also I’ve associated the worker IP address with an URL in AWS Route53. But when I get to that URL from the browser doesn’t get me anywhere. Also I did a curl -I MyURL and gives me a 404 Not Found (I port-forwarded the service and worked perfectly) Any suggestion/idea?

Hi, I want to use k3d for my local development on docker desktop container for windows10. Can someone please help?

Does anyone know if it is possible to create projects via yaml? We are looking for a way to automate this, perhaps via argocd ... But somehow i only find solutions via ui oder with this rancher cli tool

hi everyone! I'm trying to import a generic cluster in rancher (2.6.8) but this downstream cluster and the local cluster are located in different places and each one is linked to his own registry. When i'm applying the yaml to deploy the agent on the downstream cluster, two options look wrong for my use case and i can't find a way to edit them: • the cluster-agent image, pulled from the registry related to my local cluster instead of the downstream 's one. • CATTLE_CLUSTER_REGISTRY, defined by a value from my rancher helm chart (systemDefaultRegistry). This settings are in my clusters.management.cattle.io crd but i can't edit them as this is somehow controlled by someting else

Hi, how do we change rke template to use a specific coredns version, we have k8s v1.20.15-rancher1-4 version. Want to test coredns1.7.0 with it. Default coredns with that version is 1.8.0

Hi all, is there anyway that we can add and remove admission controllers in RKE /RKE2 cluster ?

Upgraded to 2.6.8 successfully, now getting this error in the UI over and over.. but everything seems to work fine. Any suggestions? Websocket Disconnected The connection to wss://rancher.domain.com/v3/subscribe closed unexpectedly Thu, Oct 20 2022 81416 am. Retrying...

Hi, I've got rancher manager set up with AD, but I have issues with users that are a member of a nested group outside the Group Search Base, they can't login. It seems as if the User Member Attribute (value: memberOf) doesn't get set every time, because I can't find it back in the variables and if I want to edit the config, the field shows empty. Does anybody recognize this problem?

hello guys, We're not able to add new nodes to the cluster. The node appears in Registering state in Rancher UI and nothing happens after. in Rancher logs we have this

2022/10/20 13:26:17 [INFO] Handling backend connection request [c-qfkfg:m-7dde54e01d9f]
2022/10/20 13:26:17 [DEBUG] cluster [c-qfkfg]: created node plan for node [m-7dde54e01d9f]
2022/10/20 13:26:17 [DEBUG] getDockerInfo for node [m-7dde54e01d9f] dockerInfo [/var/lib/docker]
2022/10/20 13:52:41 [DEBUG] Failed to get node for machine [m-7dde54e01d9f], preparing to delete

on a new node agent logs

time="2022-10-20T13:50:15Z" level=info msg="Starting plan monitor, checking every 120 seconds"

We see no other errors. Any ideas how could we get nodes join cluster again?

Hello I am trying to run a simple pod which uses longhorn volume

[3:55 PM]   Type     Reason              Age                  From                     Message
  ----     ------              ----                 ----                     -------
  Normal   Scheduled           4m9s                 default-scheduler        Successfully assigned default/wav-pod to sec-hv017.stt.internal
  Warning  FailedMount         2m6s                 kubelet                  Unable to attach or mount volumes: unmounted volumes=[wav-storage], unattached volumes=[wav-storage kube-api-access-6fdkg]: timed out waiting for the condition
  Warning  FailedAttachVolume  116s (x9 over 4m8s)  attachdetach-controller  AttachVolume.Attach failed for volume "wav-pod-pv" : rpc error: code = InvalidArgument desc = volume wav2letter invalid frontend type iscsi
cat pvc.yaml 
apiVersion: v1
kind: Pod
metadata:
  name: wav-pod
spec:
  volumes:
    - name: wav-storage
      persistentVolumeClaim:
        claimName: wav-pod-pvc
  containers:
    - name: wav-pod-container
      image: nginx
      ports:
        - containerPort: 80
          name: "http-server"
      volumeMounts:
        - mountPath: "/usr/share/nginx/html"
          name: wav-storage

jgajra@sec-hv004 ~/pvc $

I created the volume, pv and pvc from Web UI Container long-share-manager is also not running and has following error message

Type     Reason     Age               From     Message
  ----     ------     ----              ----     -------
  Normal   Pulling    34s               kubelet  Pulling image "longhornio/longhorn-share-manager:v1_20221003"
  Normal   Pulled     32s               kubelet  Successfully pulled image "longhornio/longhorn-share-manager:v1_20221003" in 2.114492891s
  Normal   Created    32s               kubelet  Created container share-manager
  Normal   Started    31s               kubelet  Started container share-manager
  Warning  Unhealthy  4s (x5 over 24s)  kubelet  Readiness probe failed: cat: /var/run/ganesha.pid: No such file or directory

jgajra@sec-hv004 ~/pvc $ kubectl describe pods share-manager-wav2letter -n longhorn-system

I even tried updating the longhorn version to latest

Any help on this will be appreciated

Hello. I have a requirement to customize the name of the SSL certificates for etcd..is it possible to do this with an RKE1 template ? Is there a variable to hard-code this? Thank You in advance.

root@rancher-stg1:/etc/kubernetes/ssl# ls | grep -i kube-etcd-172-16-154
kube-etcd-172-16-154-36-key.pem
kube-etcd-172-16-154-36.pem
root@rancher-stg1:/etc/kubernetes/ssl#

Hey, am I understanding right that Rancher requires an IAM User to provision EKS clusters? Or is there a way to make it assume an IAM Role for those operations? Basing this question off what I'm reading here: https://docs.ranchermanager.rancher.io/pages-for-subheaders/amazon-eks-permissions

With Rancher Desktop running Kubernetes, I seem to have broken my local DNS somehow... I used to be able to use a "magic domain" sslip with the IP address assigned to the ingress load balancer, but it's no longer working.

curl <http://helloworld-go.default.192.168.5.15.sslip.io/>
curl: (6) Could not resolve host: <http://helloworld-go.default.192.168.5.15.sslip.io|helloworld-go.default.192.168.5.15.sslip.io>

I did recently bump from version 1.5.0 to 1.6.0 so maybe that has something to do with it?

I am having some trouble with a Rancher-managed RKE(1) cluster running on Harvester, provisioning fails to add new etcd-role members because it first tries to remove members that no longer exist (it already succeeded in removing them, but doesn’t seem to have noticed this, and just keeps trying). I can’t figure out where the state is that remembers that these members exist (they are no longer in the Rancher cluster as Machines or references in the ManagmentCluster, they are not in the managed cluster’s etcd, VMs are not in Harvester) such that it is trying to remove them.

Good afternoon. I’m running into a problem in my cluster. 2 days ago my team tried to conduct an upgrade to 2.6.8. In the process it looks like a ClusterRolebinding called

cattle-unauthenticated

was created on the local cluster. This triggered some security alarm bells and I need to confirm whether or not it was us. I cannot find this in the helm chart so I’m wondering if an operator did this.

Hi everyone!! Does anyone use jenkins on master + slave architecture with rancher? Is it possible to create the slave pod on a different namespace than the default namespace within system/local? (i am using the kubernetes plugin on jenkins)

Got a curiosity question: I need to install a registry proxy for my gitlab runner ci/cd. I’m debating on if I should use the basic docker registry or if I should go with something like harbor?

Hi, Any terraform code reference to deploy rancher with custom certificate on AWS. Cert must be protected and preferably sourced from Secret

hi folks. I have some troubles with an harvester upgrade from 1.0.2. Does anyone of you ever deleted an pending, stuck upgrade in phase 4 of the harvester upgrade? My problem is, that existing annotations from that upgrade prohibits an new upgrade rerun. Has anyone an good advise for me? (https://github.com/harvester/harvester/issues/2972). thanks in advance

Hi! Anyone of you stumbled over those errors with an Rancher-created EKS Cluster? The AWS clusters are stable and I can create new clusters (even with same type and zone, named in the first message) and they won’t have this error message. Those errors are very sticky for months now and neither K8s (

1.19

-> `1.20`; triggered via Rancher) nor Rancher Update (

Rancher 2.5.9

-> `Rancher 2.6.7`; running on k3s) did solve this issue. Rancher is using

rancher/eks-operator:v1.1.5

to handle the AWS communication atm. Any ideas besides recreating the AWS clusters and migrate the workload? Do you think it’s worth opening an issue in the eks-operator project?

Hello Everyone, I have rancher monitoring enabled in my cluster. I would like to send/forward metrics to different destination. Could you please send me some configuration ideas or links.

Hello, If someone were to give a sales pitch with points to use Rancher to manage three GKE clusters what would that pitch be? What would we gain?

k3s weekly is up! https://github.com/k3s-io/k3s/discussions/6313

Hi All, I'm in a bit of a pickle, I am missing all the

np-default

networkpolicies in a rke2 cluster that is imported as a generic kubernetes cluster in rancher 2.6.9

Now I know rancher should give me those network policies but it is probably turned off somewhere and I am at a loss where too look. Hopefully somebody here knows what i'm talking about? 🙏

On other clusters where it is working (also rke2) when i look at the cluster.yaml I see the annotation: