This message was deleted Rancher Users #general

Join Slack

This message was deleted.

# general

adamant-kite-43734

01/11/2023, 4:30 PM

This message was deleted.

creamy-pencil-82913

01/11/2023, 4:36 PM

wait are you trying to register an existing cluster with the rancher server, or deploy an entirely new cluster?

big-jordan-45387

01/11/2023, 4:39 PM

new cluster

creamy-pencil-82913

01/11/2023, 4:43 PM

you’ll see that until rke2 starts up. If it’s not starting, check the rke2-server logs

big-jordan-45387

01/11/2023, 4:55 PM

ok, all log entries for rke2 are info level so it is hard for me to tell which of the errors is causing this issue since I am not familiar with the installation process details. I can see this

Copy code

Waiting to retrieve agent configuration; server is not ready: \"overlayfs\" snapshotter cannot be enabled for \"/var/lib/rancher/rke2/agent/containerd\", try using \"fuse-overlayfs\" or \"native\": failed to mount overlay: invalid argument"

and

Copy code

Failed to test data store connection: context deadline exceeded

creamy-pencil-82913

01/11/2023, 4:56 PM

yeah that would do it

creamy-pencil-82913

01/11/2023, 4:56 PM

What OS is this, and what is the backing filesystem for /var/lib/rancher/rke2? Why is overlayfs broken?

big-jordan-45387

01/11/2023, 4:56 PM

it is suse enterprise

creamy-pencil-82913

01/11/2023, 4:57 PM

which version

big-jordan-45387

01/11/2023, 4:57 PM

SUSE Linux Enterprise Server 15 SP3

big-jordan-45387

01/11/2023, 4:57 PM

15.3

creamy-pencil-82913

01/11/2023, 4:58 PM

that should work, we test our releases on that. Is there anything else going on with this node? Has it been hardened, has a shared filesystem at /var/lib, anything like that?

big-jordan-45387

01/11/2023, 4:59 PM

I can see certs under this directory

/var/lib/rancher/rke2/server/tls/

creamy-pencil-82913

01/11/2023, 5:00 PM

yes it is complaining about the overlayfs for containerd, not the certs

big-jordan-45387

01/11/2023, 5:01 PM

creamy-pencil-82913

01/11/2023, 5:01 PM

but you won’t get all the certs created until the pods can run, and that requires that containerd be functional

big-jordan-45387

01/11/2023, 5:01 PM

this is a diskless machine

big-jordan-45387

01/11/2023, 5:01 PM

fs is in ram

creamy-pencil-82913

01/11/2023, 5:01 PM

and that is what the agent is complaining about

big-jordan-45387

01/11/2023, 5:01 PM

not sure this may be the issue

creamy-pencil-82913

01/11/2023, 5:01 PM

that is not going to work…

creamy-pencil-82913

01/11/2023, 5:01 PM

you need actual disk, not just a tmpfs

creamy-pencil-82913

01/11/2023, 5:02 PM

the cluster requires storing data to a persistent filesystem, I’m not sure how a diskless ephemeral node would even work?

big-jordan-45387

01/11/2023, 5:07 PM

yeah, well I am just testing things not really hoping to have a production system or so

big-jordan-45387

01/11/2023, 5:07 PM

ok, thank you I will see if I can use another machine or maybe mount a block device from the network

creamy-pencil-82913

01/11/2023, 5:08 PM

I would probably test on a more traditional install. like, one with a disk.

👍 1

big-jordan-45387

01/11/2023, 6:24 PM

I have mounted a ceph rbd on the node, how can I clean it?

creamy-pencil-82913

01/11/2023, 6:26 PM

run the uninstall script?

creamy-pencil-82913

01/11/2023, 6:27 PM

for both rke2 and the agent

big-jordan-45387

01/11/2023, 8:30 PM

ok, got a block device on the host, still giving the same error

Copy code

-- Logs begin at Wed 2023-01-11 21:00:16 CET, end at Wed 2023-01-11 21:28:03 CET. --
Jan 11 21:22:18 nid003205 systemd[1]: Started Rancher System Agent.
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Rancher System Agent version v0.2.13 (4fa9427) is starting"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Using directory /var/lib/rancher/agent/work for work"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Starting remote watch of plans"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Starting /v1, Kind=Secret controller"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Detected first start, force-applying one-time instruction set"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="[Applyinator] Applying one-time instructions for plan with checksum 1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="[Applyinator] Extracting image rancher/system-agent-installer-rke2:v1.24.8-rke2r1 to directory /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b84542151fcf4267b598
c701ff891f92444bcef90f7fbb47a7f_0"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Using private registry config file at /etc/rancher/agent/registries.yaml"
Jan 11 21:22:18 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:18+01:00" level=info msg="Pulling image <http://index.docker.io/rancher/system-agent-installer-rke2:v1.24.8-rke2r1|index.docker.io/rancher/system-agent-installer-rke2:v1.24.8-rke2r1>"
Jan 11 21:22:19 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:19+01:00" level=info msg="Extracting file installer.sh to /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0/installer.sh"
Jan 11 21:22:19 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:19+01:00" level=info msg="Extracting file rke2.linux-amd64.tar.gz to /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0/rke2.linux-amd64.t
ar.gz"
Jan 11 21:22:20 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:20+01:00" level=info msg="Extracting file sha256sum-amd64.txt to /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0/sha256sum-amd64.txt"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="Extracting file run.sh to /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0/run.sh"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[Applyinator] Running command: sh [-c run.sh]"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + SA_INSTALL_PREFIX=/usr/local"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + mkdir -p /var/lib/rancher/rke2"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + SAI_FILE_DIR=/var/lib/rancher/rke2/system-agent-installer"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + RESTART_STAMP_FILE=/var/lib/rancher/rke2/system-agent-installer/rke2_restart_stamp"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + RKE2_SA_ENV_FILE_NAME=rke2-sa.env"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + '[' '!' -d /var/lib/rancher/rke2/system-agent-installer ']'"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + mkdir -p /var/lib/rancher/rke2/system-agent-installer"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + check_target_mountpoint"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + mountpoint -q ''"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + check_target_ro"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + touch /usr/local/.rke2-ro-test"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + rm -rf /usr/local/.rke2-ro-test"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + test 0 -ne 0"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + SYSTEMD_BASE_PATH=/usr/local/lib/systemd/system"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + RKE2_SA_ENV_FILE_PATH=/var/lib/rancher/rke2/system-agent-installer/rke2-sa.env"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + RKE2_SA_ENV_SRV_REF=EnvironmentFile=-/var/lib/rancher/rke2/system-agent-installer/rke2-sa.env
"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + '[' -f /var/lib/rancher/rke2/system-agent-installer/rke2_restart_stamp ']'"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + '[' -n 14e342151591d92e3a3c812770b163f1bf24bfc0eec9e8099b20e59979b84725 ']'"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + '[' '' '!=' 14e342151591d92e3a3c812770b163f1bf24bfc0eec9e8099b20e59979b84725 ']'"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + RESTART=true"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + env INSTALL_RKE2_ARTIFACT_PATH=/var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b8454
2151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0 INSTALL_RKE2_TAR_PREFIX=/usr/local installer.sh"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stdout]: [INFO]  staging local checksums from /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b
84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0/sha256sum-amd64.txt"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stdout]: [INFO]  staging tarball from /var/lib/rancher/agent/work/20230111-212218/1f46a0b078bf7b84542151
fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0/rke2.linux-amd64.tar.gz"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stdout]: [INFO]  verifying tarball"
Jan 11 21:22:21 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:21+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stdout]: [INFO]  unpacking tarball file to /usr/local"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + '[' -f /var/lib/rancher/rke2/system-agent-installer/rke2-sa.env ']'"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + OLD_ENV_FILE_PATH_HASH=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + install -m 600 /dev/null /var/lib/rancher/rke2/system-agent-installer/rke2-sa.env"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: ++ env"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: ++ grep '^RKE2_'"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: ++ true"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + RKE2_ENV="
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: + '[' -n '' ']'"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: ++ env"
Jan 11 21:22:22 nid003205 rancher-system-agent[35560]: time="2023-01-11T21:22:22+01:00" level=info msg="[1f46a0b078bf7b84542151fcf4267b598c701ff891f92444bcef90f7fbb47a7f_0:stderr]: ++ grep -Ei '^(NO|HTTP|HTTPS)_PROXY'"

creamy-pencil-82913

01/11/2023, 8:31 PM

where did you mount the block device?

big-jordan-45387

01/11/2023, 8:31 PM

the mount device is mounted in /var/lib/rancher

creamy-pencil-82913

01/11/2023, 8:31 PM

I suspect that this is probably going to be a lot more trouble than its worth. Does your environment not offer nodes with traditional block volume storage for the root filesystem?

creamy-pencil-82913

01/11/2023, 8:32 PM

stop looking at the rancher-system-agent logs, that’s not going to have anything interesting. everything you want is in the rke2-server logs

big-jordan-45387

01/11/2023, 8:32 PM

with k3s works...

creamy-pencil-82913

01/11/2023, 8:33 PM

once that comes up the agent will be happy. the agent logs will not tell you anything different

big-jordan-45387

01/11/2023, 8:37 PM

ok, thank you for the tip, I am checking the rke2-server logs

big-jordan-45387

01/11/2023, 8:40 PM

I can see this

Copy code

Jan 11 21:23:12 nid003205 rke2[35719]: time="2023-01-11T21:23:12+01:00" level=error msg="error syncing 'kube-system/rke2-metrics-server': handler helm-controller-chart-registration: <http://helmcharts.helm.cattle.io|helmcharts.helm.cattle.io> \"rke2-metrics-server\" not found, requeuing"

and

Copy code

Jan 11 21:23:11 nid003205 rke2[35719]: time="2023-01-11T21:23:11+01:00" level=error msg="error syncing 'kube-system/rke2-ingress-nginx': handler helm-controller-chart-registration: <http://helmcharts.helm.cattle.io|helmcharts.helm.cattle.io> \"rke2-ingress-nginx\" not found, requeuing"

and

Copy code

Jan 11 21:23:10 nid003205 rke2[35719]: time="2023-01-11T21:23:10+01:00" level=error msg="error syncing 'kube-system/rke2-coredns': handler helm-controller-chart-registration: <http://helmcharts.helm.cattle.io|helmcharts.helm.cattle.io> \"rke2-coredns\" not found, requeuing"

big-jordan-45387

01/11/2023, 8:40 PM

also

Copy code

Jan 11 21:23:09 nid003205 rke2[35719]: time="2023-01-11T21:23:09+01:00" level=error msg="error syncing 'kube-system/rke2-calico': handler helm-controller-chart-registration: <http://helmcharts.helm.cattle.io|helmcharts.helm.cattle.io> \"rke2-calico\" not found, requeuing"

creamy-pencil-82913

01/11/2023, 8:43 PM

thats all normal

creamy-pencil-82913

01/11/2023, 8:43 PM

it sounds like it is coming up though?

creamy-pencil-82913

01/11/2023, 8:43 PM

what do you get from

kubectl get pod -A

big-jordan-45387

01/11/2023, 8:47 PM

Copy code

-bash: kubectl: command not found

creamy-pencil-82913

01/11/2023, 8:49 PM

you’ll need to put the rke2 binaries in your path

creamy-pencil-82913

01/11/2023, 8:50 PM

export PATH=/var/lib/rancher/rke2/bin/:$PATH

creamy-pencil-82913

01/11/2023, 8:50 PM

this is step 4 of the server quickstart: https://docs.rke2.io/install/quickstart#server-node-installation

creamy-pencil-82913

01/11/2023, 8:51 PM

the agent has handled the first 3 steps for you

big-jordan-45387

01/11/2023, 8:51 PM

Copy code

nid003205:~ # kubectl get pod -A
The connection to the server localhost:8080 was refused - did you specify the right host or port?

creamy-pencil-82913

01/11/2023, 8:57 PM

export KUBECONFIG=/etc/rancher/rke2/rke2.yaml

big-jordan-45387

01/11/2023, 8:57 PM

Copy code

nid003205:~ # kubectl get pod -A
NAMESPACE         NAME                                                    READY   STATUS             RESTARTS       AGE
calico-system     calico-kube-controllers-75979f6c8f-s4xp8                1/1     Running            0              33m
calico-system     calico-node-jmjkb                                       0/1     Running            0              33m
calico-system     calico-typha-9fbfb8cb6-bbht5                            1/1     Running            0              33m
cattle-system     cattle-cluster-agent-77ccc6f98d-lchpn                   0/1     CrashLoopBackOff   11 (39s ago)   34m
cattle-system     kube-api-auth-kk862                                     1/1     Running            0              34m
kube-system       cloud-controller-manager-nid003205                      1/1     Running            0              34m
kube-system       etcd-nid003205                                          1/1     Running            0              34m
kube-system       helm-install-rke2-calico-5lrdl                          0/1     Completed          2              34m
kube-system       helm-install-rke2-calico-crd-fdhkn                      0/1     Completed          0              34m
kube-system       helm-install-rke2-coredns-lbsnq                         0/1     Completed          0              34m
kube-system       helm-install-rke2-ingress-nginx-42gpw                   0/1     Completed          0              34m
kube-system       helm-install-rke2-metrics-server-xqsfr                  0/1     Completed          0              34m
kube-system       kube-apiserver-nid003205                                1/1     Running            0              34m
kube-system       kube-controller-manager-nid003205                       1/1     Running            0              34m
kube-system       kube-proxy-nid003205                                    1/1     Running            0              34m
kube-system       kube-scheduler-nid003205                                1/1     Running            0              34m
kube-system       rke2-coredns-rke2-coredns-58fd75f64b-rlw84              1/1     Running            0              34m
kube-system       rke2-coredns-rke2-coredns-autoscaler-768bfc5985-tcm7n   1/1     Running            0              34m
kube-system       rke2-ingress-nginx-controller-q4rlb                     1/1     Running            0              33m
kube-system       rke2-metrics-server-67697454f8-q82bj                    1/1     Running            0              33m
tigera-operator   tigera-operator-5dd8cf7c89-5wq4n                        1/1     Running            0              33m

big-jordan-45387

01/11/2023, 8:58 PM

big-jordan-45387

01/11/2023, 8:59 PM

logs says it can't access the rancher server

creamy-pencil-82913

01/11/2023, 9:02 PM

well that would do it.

creamy-pencil-82913

01/11/2023, 9:02 PM

does it say why?

big-jordan-45387

01/11/2023, 9:02 PM

Copy code

ERROR: <https://rancher-test.cscs.ch/ping> is not accessible (Could not resolve host: <http://rancher-test.cscs.ch|rancher-test.cscs.ch>)

creamy-pencil-82913

01/11/2023, 9:03 PM

do you have a real DNS entry for that?

big-jordan-45387

01/11/2023, 9:03 PM

but then

Copy code

curl -k <https://rancher-test.cscs.ch/ping>
pong

creamy-pencil-82913

01/11/2023, 9:03 PM

or did you just put it in the hosts file on the node

big-jordan-45387

01/11/2023, 9:03 PM

so I get a response from the server

big-jordan-45387

01/11/2023, 9:04 PM

I ticked the insecure checkbox when copying the command to register the node

creamy-pencil-82913

01/11/2023, 9:04 PM

are there any errors in the

rke2-coredns-rke2-coredns-58fd75f64b-rlw84

pod logs?

creamy-pencil-82913

01/11/2023, 9:04 PM

looks like for some reason that can’t be resolved from within a pod

big-jordan-45387

01/11/2023, 9:05 PM

I see a few of those in the rke2-coredns container

Copy code

[ERROR] plugin/errors: 2 <http://rancher-test.cscs.ch|rancher-test.cscs.ch>. A: read udp 172.16.62.129:43013->10.92.100.225:53: i/o timeout
[ERROR] plugin/errors: 2 <http://rancher-test.cscs.ch|rancher-test.cscs.ch>. A: read udp 172.16.62.129:45646->10.92.100.225:53: i/o timeout
[ERROR] plugin/errors: 2 <http://rancher-test.cscs.ch|rancher-test.cscs.ch>. AAAA: read udp 172.16.62.129:39659->10.92.100.225:53: i/o timeout

creamy-pencil-82913

01/11/2023, 9:06 PM

is that your internal dns server?

creamy-pencil-82913

01/11/2023, 9:07 PM

yeah that would sure do it

creamy-pencil-82913

01/11/2023, 9:07 PM

do you have something blocking that?

big-jordan-45387

01/11/2023, 9:07 PM

ah ok, so the dns config is not inherited from the host?

creamy-pencil-82913

01/11/2023, 9:07 PM

it is…

creamy-pencil-82913

01/11/2023, 9:07 PM

coredns uses the hosts’s dns servers

creamy-pencil-82913

01/11/2023, 9:08 PM

that should be the same as what the host is using?

big-jordan-45387

01/11/2023, 9:08 PM

ok, then firewall blocking the connection

creamy-pencil-82913

01/11/2023, 9:08 PM

firewalld/ufw/et cetera should be disabled. they are not supported for use with rke2.

big-jordan-45387

01/11/2023, 9:10 PM

local firewall on the host is disabled, ok, I will check with the guy managing the network tomorrow

big-jordan-45387

01/11/2023, 9:10 PM

thx!

big-jordan-45387

01/11/2023, 9:10 PM

thank you for your patience 🙂

creamy-pencil-82913

01/11/2023, 9:11 PM

gl!

815 Views

Open in Slack

Previous Next