calico无法ping通使用calico网络创建的其他PODs
calico无法ping通使用calico网络创建的其他PODs
提问于 2020-07-13 05:32:11
我设置了在2个不同的工作节点上运行的有状态pod,但我无法ping通这些pod。以下是池文件:
apiVersion: projectcalico.org/v3
kind: IPPool
metadata:
name: rack.ippool-1
spec:
cidr: 192.168.16.0/24
blockSize: 24
ipipMode: Never
natOutgoing: true
disabled: false
nodeSelector: all()第1个pod上的IP配置
ip addr show
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc pfifo_fast state UP group default qlen 1000
link/ether 3e:a6:cb:15:cf:1a brd ff:ff:ff:ff:ff:ff
inet 192.168.16.41/32 brd 192.168.16.41 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::3ca6:cbff:fe15:cf1a/64 scope link
valid_lft forever preferred_lft forever另一个节点上的IP会议
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc pfifo_fast state UP group default qlen 1000
link/ether 1a:3c:c1:1a:fa:03 brd ff:ff:ff:ff:ff:ff
inet 192.168.16.42/32 brd 192.168.16.42 scope global eth0
valid_lft forever preferred_lft forever
inet6 fe80::183c:c1ff:fe1a:fa03/64 scope link
valid_lft forever preferred_lft foreverPing状态
ping 192.168.16.41
PING 192.168.16.41 (192.168.16.41) 56(84) bytes of data.它不起作用。
我尝试了ipipMode: Always和CrossSubnet,但都不起作用。我不确定我错过了什么。此外,当我给出块大小为24的时候,我也不确定为什么IP在/32 CIDR中。它们不在/24 CIDR的范围内吗?
[root@k8master-1 ~]# calicoctl node status
Calico process is running.
None of the BGP backend processes (BIRD or GoBGP) are running.Calico IPam结果
calicoctl ipam show
+----------+-----------------+-----------+------------+--------------+
| GROUPING | CIDR | IPS TOTAL | IPS IN USE | IPS FREE |
+----------+-----------------+-----------+------------+--------------+
| IP Pool | 10.244.0.0/16 | 65536 | 1 (0%) | 65535 (100%) |
| IP Pool | 192.168.16.0/24 | 256 | 3 (1%) | 253 (99%) |
+----------+-----------------+-----------+------------+--------------+Calico ipam块
[root@k8master-1 ~]# calicoctl ipam show --show-blocks
+----------+-----------------+-----------+------------+--------------+
| GROUPING | CIDR | IPS TOTAL | IPS IN USE | IPS FREE |
+----------+-----------------+-----------+------------+--------------+
| IP Pool | 10.244.0.0/16 | 65536 | 1 (0%) | 65535 (100%) |
| Block | 10.244.0.0/26 | 64 | 1 (2%) | 63 (98%) |
| IP Pool | 192.168.16.0/24 | 256 | 3 (1%) | 253 (99%) |
| Block | 192.168.16.0/24 | 256 | 3 (1%) | 253 (99%) |
+----------+-----------------+-----------+------------+--------------+Calico的借用IP列表
[root@k8master-1 ~]# calicoctl ipam show --show-borrowed
+---------------+----------------+-----------------+-------------+------+--------------------+
| IP | BORROWING-NODE | BLOCK | BLOCK OWNER | TYPE | ALLOCATED-TO |
+---------------+----------------+-----------------+-------------+------+--------------------+
| 192.168.16.39 | k8worker-2 | 192.168.16.0/24 | | pod | default/racnode1-0 |
| 192.168.16.41 | k8worker-2 | 192.168.16.0/24 | | pod | default/racnode1-0 |
| 192.168.16.42 | k8worker-1 | 192.168.16.0/24 | | pod | default/racnode2-0 |
+---------------+----------------+-----------------+-------------+------+--------------------+回答 1
Stack Overflow用户
发布于 2020-07-21 20:30:29
我也有类似的问题。我在同一个命名空间中创建了两个pod nginx和busybox,但我无法使用calico网络插件从busybox ping nginx pod。如果我暴露为节点端口,我可以从运行nginx pod的节点连接到pod。如果您尝试从其他k8群集节点访问节点端口,它将无法工作。我仍在努力找出原因,但到目前为止还没有线索。
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/62866660
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号