Hi All, Need help in listing the available projects in RKE1, In RKE2, I was able to list PROJECT CRs , which satisfied the need to know about the available projects using client-go. In RKE1, i was not able to find the PROJECT CR. Is there any way that i can list using client-go? (We don’t want to access it with via rancher client)

Hi ,Facing the issue with the wildcard certs . We have updated the wild card certs . for some reason they are reverting back to the old certs . and again we updated the new certs . This is happening on and off ..

Any inputs .

with

network {
  plugin = "none"
}

while I had previously

weave

enabled, shouldn"t this disable and uninstall the weave plugin?

Hi, Rancher pod never goes ready and health check fails. It has error log

failed to start cluster controllers c-dncdm: context canceled

Any suggestions on how to troubleshoot the issue?

Has anyone else run into issues with pods not starting when upgrading a cluster's K8 version, specifically

1.24.8-rancher1-1

to

1.24.9-rancher1-1

? I documented the specifics in an issue (https://github.com/rancher/rke/issues/3160), but wondering if this group has seen this issue in their own work.

Greetings, who do I talk to if i am looking for help with RKE ?

I'm getting a lot of unauthorized errors on my freshly installed 1.24 cluster, could this be related to the new service account behavior?

Hi, I’m adding cluster encryption using AWS KMS. The suggested way is to run the aws-encryption-provider as a static pod on the controller nodes. This is for a Rancher(2.5.8) manager created rke cluster. I can’t find a way to to add a static pod. The current encryption provider we run a docker container directly, not a pod, static or other. I have searched for examples on how to add AWS KMS encryption to a rancher created cluster with no luck. Any suggestions or ideas?

Hi, all

Hi all, i am facing an issue while installing RKE cluster on RHEL/centos based linux VMs can anyone please share the procedure to be followed for installing the RKE cluster on RHEL/centos based linux VMs

@billowy-lawyer-70273 has left the channel

Hi -- RKE 1.4.4 vs 1.4.3, its like those are two separate branches? Just saw that both got rc1 and rc7, respectively, releases today. Shouldn't be there one v1.4.X branch?

Hi. In our rke1 cluster the k8s default

option ndots:5

in /etc/resolv.conf is missing. Is there a way to set this on a cluster level? Thanks

Hi, I upgraded Rancher from 2.5.7 to 2.6.4. One of the managed clusters is getting error

The request is invalid: : {"Code":{"Code":"InvalidFormat","Status":422},"Message":"services=InvalidFormat 422: kubeApi=InvalidFormat 422: secretsEncryptionConfig=InvalidFormat 422: customConfig=InvalidFormat 422: resources=InvalidFormat 422: providers=InvalidFormat 422: kms=InvalidFormat 422: timeout=InvalidFormat 422: InvalidFormat 422: Value can not be converted to type duration: 3s","Cause":null,"FieldName":""}

This is a VmWare vShpere cluster. I know I need to update the yaml for this cluster, but I’m not able to through the ui. How can I edit this config, I want to remove the timeout: 3s from encryption?

me again. Another interesting error. After the upgrade, I’’m watching the rancher pod logs and there is a lot of errors trying to access a cluster that has been deleted. The cluster doesn’t show in the ui or the cli rancher cluster ls. But, it does show in the cli rancher context switch.

Hello, I’m hoping someone could assist or might have additional context to an issue we had. We have a cluster with separate nodepools for controlplane, etcd and workers. Our nodes are hosted in Openstack and we need to rebuild some of the nodes with updated nodeTemplate values. When we deleted 1x ControlPlane and 1x Etcd, new nodes were active but “waiting to register with k8s” but Rancher was stuck on error (I don’t have the specific error unfortunately but I recall with “Failed to communicate with API server” and also “connection refused in xyz session”). We tried to create redudancy by applying controlplane and etcd roles to one of other healthy nodepool in the same cluster via Rancher GUI. Doing so made things worst and Rancher started to “Remove” (but unable to complete and stuck) all etcd nodes. This caused our cluster to go into locked state and we followed [this](https://www.suse.com/support/kb/doc/?id=000020695) to restore our etcd from snapshot Would anyone seen similar issues or possibly be able to assist in understanding why Rancher was “removed” all etcd nodes? Info: Rancher: 2.4.8 etcd: 3.4.15

Hello seem the DNS in the upstream cluster is flipping when there are more than one node. Has someone faced this on a cluster with EC2 instances as nodes? Appreciate any help on this issue. https://github.com/rancher/rancher/issues/40762

Hi, can the kube-scheduler in RKE be replaced with a custom scheduler to map to specific requirements in the cluster being built? I’ve been looking at various guides on how to do this and built an image for the scheduler, then realised that putting it into RKE didn’t seem to match how the tutorials showed it? Any thoughts?

If with RKE i set network plugin to

none

network:
  plugin: none

That actually means no network plugin is added at all right? The cluster setup however seems to work nevertheless

One of my nodes is NotReady after reboot. Another run of

rke up

yields a message

Can't start Docker container [nginx-proxy] on host [srv08.xxx.yyy]: Error response from daemon: Unknown runtime specified nvidia

- any ideas what to do ? I am using the gpu operator in my cluster and cannot find nvidia-related stuff on the machine.

We’re running RKE in a couple of clusters with Rancher. I would like to put the kube-api of the nodes that listens on port 6445 behind a loadbalancer but can’t find where this endpoint configured. Is this something an agent reports to rancher?

@lively-psychiatrist-57066 has left the channel

@rapid-kite-65865 has left the channel

What could be a few cause for an error agent is disconnected. This is an airgap deployment where application RKE 2 cluster downloads image from private registry

New deployment of the cluster

Hello - running a snapshot-restore from an etcd backup, which I have done many times in the past. The logs indicated the download from s3 is successful but is failing at

open /backup/XXX-XXX-XXX.zip: permission denied

. I've tried creating the /`backup` directory, changing permissions, and using a local file in

/opt/rke/etcd-snapshots

to no avail. I don't recall seeing a

/backup

directory in the past either.

this is my article regarding LB in on premises, it’s using rancher actually and in house node watcher to written in rust https://kevinchou888.medium.com/in-house-k8s-load-balancer-architecture-on-premises-55d3b23867b9