hundreds-evening-84071
05/18/2023, 10:27 PM# kubectl get svc -n cattle-neuvector-system
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
neuvector-service-webui NodePort 10.43.84.36 <none> 8443:31179/TCP 103m
neuvector-svc-admission-webhook ClusterIP 10.43.135.174 <none> 443/TCP 103m
neuvector-svc-controller ClusterIP None <none> 18300/TCP,18301/TCP,18301/UDP 103m
neuvector-svc-crd-webhook ClusterIP 10.43.142.225 <none> 443/TCP 103m
quaint-candle-18606
05/19/2023, 8:47 PMcontroller.federation.mastersvc.type
and controller.federation.mastersvc.type
to [NodePort | LoadBalancer | ClusterIP]hundreds-evening-84071
05/19/2023, 8:53 PMk3s:
enabled: true
controller:
replicas: 1
pvc:
enabled: true
storageClass: vsphere-csi
federation:
mastersvc:
type: NodePort
cve:
scanner:
replicas: 1
manager:
ingress:
enabled: true
host: <http://neuvector.mydomain.org|neuvector.mydomain.org>
annotations:
<http://nginx.ingress.kubernetes.io/backend-protocol|nginx.ingress.kubernetes.io/backend-protocol>: "HTTPS"
tls: true
secretName: neuvector-tls-cert-secret
quaint-candle-18606
05/19/2023, 9:14 PMmanagedsvc:
type: NodePort
toohundreds-evening-84071
05/22/2023, 2:12 PMneuvector-service-controller-fed-master
or neuvector-service-controller-fed-worker
...
k3s:
enabled: true
controller:
replicas: 1
pvc:
enabled: true
storageClass: vsphere-csi
federation:
mastersvc:
type: NodePort
managedsvc:
type: NodePort
cve:
scanner:
replicas: 1
manager:
ingress:
enabled: true
host: <http://neuvector.mydomain.org|neuvector.mydomain.org>
annotations:
<http://nginx.ingress.kubernetes.io/backend-protocol|nginx.ingress.kubernetes.io/backend-protocol>: "HTTPS"
tls: true
secretName: neuvector-tls-cert-secret
This is the exact helm command I am running:
helm install neuvector neuvector/core --namespace cattle-neuvector-system -f ./neuvector-values.yaml
I started with RKE2 v1.25... so thought maybe that is too new?
uninstalled and created new cluster with RKE2 v1.24.13
I am using RPM method to install RKE2, could that be it?
This is what I have:
# kubectl get po -n cattle-neuvector-system
NAME READY STATUS RESTARTS AGE
neuvector-controller-pod-57f9b45dcc-5kmmt 1/1 Running 0 34m
neuvector-enforcer-pod-c6tvz 1/1 Running 0 34m
neuvector-enforcer-pod-p8nfl 1/1 Running 0 34m
neuvector-enforcer-pod-xn76j 1/1 Running 0 34m
neuvector-manager-pod-7b6d594bdd-8mdff 1/1 Running 0 34m
neuvector-scanner-pod-7f4556856f-nlxfm 1/1 Running 0 34m
quaint-candle-18606
05/22/2023, 2:14 PMhundreds-evening-84071
05/22/2023, 2:14 PM# kubectl get svc -n cattle-neuvector-system
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
neuvector-service-webui NodePort 10.43.201.156 <none> 8443:31695/TCP 37m
neuvector-svc-admission-webhook ClusterIP 10.43.147.128 <none> 443/TCP 37m
neuvector-svc-controller ClusterIP None <none> 18300/TCP,18301/TCP,18301/UDP 37m
neuvector-svc-controller-fed-managed NodePort 10.43.161.107 <none> 10443:32590/TCP 37m
neuvector-svc-controller-fed-master NodePort 10.43.47.223 <none> 11443:32279/TCP 37m
neuvector-svc-crd-webhook ClusterIP 10.43.234.163 <none> 443/TCP 37m
quaint-candle-18606
05/22/2023, 2:15 PMhundreds-evening-84071
05/22/2023, 2:19 PM10.43.161.107
10.43.47.223
acoustic-sugar-94270
05/22/2023, 5:52 PM