kubeadm iptables settings on centos #4340
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
k8s-ci-robot
added
the
cncf-cla: yes
|
Deploy preview ready! Built with commit 3cf1942 https://deploy-preview-4340--kubernetes-io-vnext-staging.netlify.com/ |
chenopis
suggested changes
Jul 10, 2017
| Note: Disabling SELinux by running `setenforce 0` is required to allow | ||
| containers to access the host filesystem, which is required by pod networks for | ||
| example. You have to do this until SELinux support is improved in the kubelet. | ||
| Note: |
There was a problem hiding this comment.
This should be in bold, so: **Note:**
| containers to access the host filesystem, which is required by pod networks for | ||
| example. You have to do this until SELinux support is improved in the kubelet. | ||
| Note: | ||
| - Disabling SELinux by running `setenforce 0` is required to allow containers to access the host filesystem, which is required by pod networks for example. You have to do this until SELinux support is improved in the kubelet. |
There was a problem hiding this comment.
Add a newline before the unordered list so that the markdown is rendered correctly. You can preview it here: https://deploy-preview-4340--kubernetes-io-vnext-staging.netlify.com/docs/setup/independent/install-kubeadm/#installing-kubelet-and-kubeadm
| Note: | ||
| - Disabling SELinux by running `setenforce 0` is required to allow containers to access the host filesystem, which is required by pod networks for example. You have to do this until SELinux support is improved in the kubelet. | ||
| - Some users on RHEL/CentOS 7 have reported issues with traffic being routed incorrectly due to iptables being bypassed. You should ensure `net.bridge.bridge-nf-call-iptables` is set to 1 in your `sysctl` config, e.g. | ||
| ``` bash |
There was a problem hiding this comment.
Add a newline before the code block so that it renders correctly. See the preview.
chenopis
approved these changes
Jul 10, 2017
GC now support custom resources
Deprecate system:nodes binding
…hub.io into release-1.8 * 'master' of https://github.com/kubernetes/kubernetes.github.io: Add noindex to vnext-staging Add note for 1.8 release. (#4632) fix create-cluster-kubeadm docs Update aws.md add newline above kube-apiserver Update scheduling-gpus.md Fix spacing with shell commands Documenting another (potential) callout issue (#4604) Update reference docs with most recent version of brodocs (#4600) Update kubernetes-api.md fix spelling mistake fix typos in fedration docs fix kubelet garbage collected typo fix typo in network-policies.md fix typo Add /_includes/glossary directory for snippets (#4628) Fixed typo in getting started guide using minikube Update to include Python library (#4624) Rename OWNERS assignees: to approvers:
…hub.io into release-1.8 * 'master' of https://github.com/kubernetes/kubernetes.github.io: fix command
…hub.io into release-1.8 * 'master' of https://github.com/kubernetes/kubernetes.github.io: include _headers (#4636) Update callouts.css Update callouts.css
…hub.io into release-1.8 * 'master' of https://github.com/kubernetes/kubernetes.github.io: fix noindex for vnext-staging (#4640) Add network overlay details to cloud routes flag Revert "Update volumes.md" add examples for interpod configurations (#4557) Update "readonly" in abac
…hub.io into release-1.8 * 'master' of https://github.com/kubernetes/kubernetes.github.io: Chenopis vnext staging noindex (#4641)
[1.8] StatefulSet `initialized` annotation is now ignored.
I updated this doc yesterday and I was absolutely sure I fixed this, but I just saw that this commit got lost somehow. This was introduced recently in #5440.
…hub.io into release-1.8 * 'master' of https://github.com/kubernetes/kubernetes.github.io: ZTE-SH-CN-debug-pod-replication-controller-2017-09-14-14 ZTE-SH-CN-define-command-argument-container (#5381) Update index.md Update Kompose docs Improve host aliases page (#5443) Add link to AlwaysPullImages admission controller Revert "create homepage for user journeys" create homepage for user journeys fix the command output ZTE-SH-CN-run-application-run-single-instance-stateful-application-pr-2017-… (#5363) Add a note to static pod manifest scanning revert WordPress and MySQL PV doc changes to use apps/v1beta2 APIs (#5461) Fix pod probes yaml file Redirect v1 docs. (#5460) Fix error link (#5459) Fix typo in deployment documentation # Conflicts: # docs/tutorials/stateful-application/basic-stateful-set.md
Add `kubeadm upgrade` docs
|
@fabriziopandini I don't think this will make it into the 1.8 release. We can leave it on the |
|
@chenopis Thanks for the update! |
luxas
approved these changes
Sep 27, 2017
|
@fabriziopandini Can you fix the merge conflict? |
k8s-ci-robot
added
the
size/XXL
|
Sorry screw up rebasing :-( . I Close this and send a new one... |
|
Deploy preview ready! Built with commit 483b438 https://deploy-preview-4340--kubernetes-io-master-staging.netlify.com |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
when running kubeadm on centos pre-fligth check fails due to
[preflight] Some fatal errors occurred: /proc/sys/net/bridge/bridge-nf-call-iptables contents are not set to 1this PR contains description of required step to fix this issue (solution was described in previous version of kubeadm documentation, reported here with few little improvements)
After updating docs, IMO we can close kubernetes/kubeadm#312
This change is