Minikube "start" does not support unconnected cluster startup #2825
Comments
|
Issues go stale after 90d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
k8s-ci-robot
added
the
lifecycle/stale
|
Stale issues rot after 30d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
k8s-ci-robot
added
lifecycle/rotten
|
@ivan-section-io: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Environment: Windows 10 & Windows 7
Minikube version: 0.26.1
OS :Windows
VM Driver: virtual-box
ISO version: 0.26.0
Trying to spin up a k8s cluster using minikube when not connected to the Internet (either because one does not have an internet connection or one is behind a proxy) fails.
It's important for me to be able to do this as I need to run minikube in a corporate environment in which the dynamic downloading of software is not permitted.
Please note that setting the proxy env variables is not a viable solution to this problem as it does not cover the disconnected case or meet the corporate security requirements.
The would seem to be a number of possible ways to address this problem. My thoughts and current finding are noted below. I'd be interested in hearing what other people think or have found.
It appears that minikube (mk) on running "start" attempts to download a number of different items and cache them before calling kubeadm to start the cluster itself:
They are all required for mk "start" to succeed.
Precaching
The first thought is that one can simply do a run of "start" while connected to the net, cache the items, disconnect, delete the cluster and then run "start" again and all should work. The next step would be to take the cached items and have them scanned, approved and distributed as part of the internal minikube installation. However, this does not turn out to be true for two reasons.
mk fails to load the images into the docker daemon before "kubeadm init" due to it using an incorrect path in the "docker load" command e.g. "docker load -i \tmp\pause-amd64_3.0". The "\"s should be "/"s. This means that the docker daemon tries to load the images when kubeadm starts pods and these loads fail.
mk only dynamically generates the image names for the four static pods (scheduler, api-server, controller-manager and proxy) correctly appending the k8s version to them. Unfortunately, the versions for the other pods are hard-coded and are incorrect for v1.8.x, v1.9.x and v1.10.x. where the versions required differ and are not keyed on k8s version. The result is that "kubeadm init" would cause a download of pods even if the pre-caching had been successful. These loads would fail. See these links for background info - https://github.com/kubernetes/minikube/blob/master/pkg/minikube/constants/constants.go and https://kubernetes.io/docs/reference/setup-tools/kubeadm/kubeadm-init/#config-file
I have raised two issues against these items. #2826 #2827
Registry Mirror
IN the corporate env - an alternative - at least for the images - would be to use a registry mirror. This would not handle the ISO or the executables but- combined with the caching for ISO and exes - it would provide a simpler mechanism for pulling the images in dynamically through a secure image chain. I have not yet tried this but would like to once I have exhausted the "Pre-cached" option mentioned above. It would appear that the mk Registry-Mirror flag combined with a private secure registry with either preloading of the images required or dynamic loading and scanning would provide a good solution.
Regards
Mark
The text was updated successfully, but these errors were encountered: