All Questions
Tagged with azure kubernetes
90
questions
0
votes
0
answers
106
views
Auto-Instrumentation of application using OpenTelemetry
I have an AKS cluster where I am running a test Python-Django based web application.
I also have Grafana and Prometheus configured. I need to use OpenTelemetry to get the metrics data from the test ...
- 163
0
votes
0
answers
110
views
OpenTelemetry Collector Data not being fetched by Prometheus in Grafana
I have a requirement where I have some container workload in Azure AKS cluster and I need to use OpenTelemetry to gather data like metrics, logs and traces. I also have Grafana as the visualisation ...
- 163
0
votes
0
answers
14
views
How to fix access denied error for aks kubernetes commands?
with service principal logged in with azure cli. Below command got this error.
az aks command invoke --resource-group rg-licanltcs-aks-prod --name aks-licanltcs-prod-eastus --command "kubectl ...
0
votes
0
answers
39
views
OpenTelemetry K8s Operator Collector - Exporter Configuration for Prometheus
I have some container workloads in Azure AKS cluster. I need to use OpenTelemetry to get the metrics, logs and trace data from the container workload and get it collected by the OTEL collector.
I have ...
- 163
0
votes
1
answer
21
views
What happens to Pod-Workload if a Node gets destroyed
when running pod-workload on an AKS-cluster with autoscaling enabled, what happens, if the pool gets scaled down? If a Pod is running workload on a node, and this node is being removed because of ...
- 15
0
votes
0
answers
11
views
How to use single signon of nodejs app using kubernetes deployment?
I have tried setting up single signon on a sample node.js app with express and Microsoft authentication.
This is the steps and source code link
When I run locally, it is working.
When I kept in ...
- 1
0
votes
0
answers
35
views
AKS System Node Pool and number of nodes
The AKS docs mention that 3 nodes are recommended in Production for System Node Pool.
What is the rationale behind this?
Does the fact that the cluster is a private cluster change anything in the ...
- 111
0
votes
0
answers
53
views
Kubernetes yaml not working on Rabbitmq cluster
I have a Rabbitmq Kubernetes cluster version 3.10.2 running on Azure AKS. I have applied cluster operator using.
kubectl apply -f "https://github.com/rabbitmq/cluster-operator/releases/latest/...
- 101
0
votes
0
answers
22
views
Restrict access to a Prometheus server in AKS can only be achieved with nginx-ingress?
Prometheus server with its respective Loadbalancer in AKS.
I wanted to secure the access to /metrics through network rules...but it doesn't work. I can still acess to the endpoint with any device.
...
- 1
0
votes
1
answer
143
views
Why do my AKS node have public IP even though "enableNodePublicIP" is set to false?
I have an AKS cluster where I added a new node pool. While creating the node pool, I set the option "Enable public IP per node" as Disabled. However, I still notice that my nodes in the VMSS ...
- 98
0
votes
0
answers
84
views
HTTP 502/404 with Grafana in Kubernetes, using AGIC
I'm trying to deploy Grafana in Azure Kubernetes service (AKS), through Helm. I'm using the Helm charts provided by Bitnami. I've been following this Microsoft tutorial to set up the application ...
- 123
0
votes
0
answers
65
views
Cannot install cluster autoscaler manually in an AKS cluster
I want to install Cluster Autoscaler for an AKS cluster manually (not enable cluster autoscale) but it doesn't work.
I tried many ways: using helm chart, using yaml files, but no one works.
I referred ...
- 169
0
votes
0
answers
148
views
There is no pod with name "cluster-autoscaler-xxx" in AKS cluster with enabled cluster autoscale
I enabled cluster autoscale in 2 node pools of my AKS cluster (using Azure Portal). It works well.
But I check running pods in kube-system namespace and there is no pod with name "cluster-...
- 169
0
votes
0
answers
30
views
How do you instrument a nodepool in AKS to use their public ip for all communication outbound?
How do you go about configuring two nodes in AKS to use their public ip in a request/response type setting?
Say you have two nodes in AKS, A and B. A hosts a API and B consumes it. B is configured ...
- 753
0
votes
0
answers
73
views
How to use service account to deploy objects(deployments, configmaps etc) in Kubernetes
I have a deploy-pipeline in Azure devops. I am using this to deploy some objects to our k8s cluster (microk8s). I connect to the cluster with the help of a service connection that uses a kube-config.
...
- 111
0
votes
0
answers
37
views
How to use Azure Arc to deploy containers to local k8s cluster?
We have a local k8s(microk8s) cluster installed at our client.
We use Azure build pipelines and release pipelines to build and deploy to this cluster using a deployment group, that is, we have ...
- 111
0
votes
0
answers
222
views
Kubernetes Nginx Ingress url rewrite for dynamic id in url
I'm running a Kubernetes cluster on Azure Kubernetes Service(Aks). Currently, I'm having a service called product-service and I have exposed it to the outside using Nginx Ingress. My current ingress ...
0
votes
1
answer
208
views
Azure - AKS integration with API Manager for JWT authentication
I am trying to implement the following workflow to setup in the Azure:
Private AKS cluster to deploy my applications - Already provisioned
An ingress controller (AGIC preferably) for routing traffic ...
- 171
0
votes
0
answers
102
views
Firebird horizontally scaling using containers
I am trying to setup a firebird server within K8s and using docker containers. This has worked well with using Azure Files as a persistent volume storage, however when I try scaling past 1, there are ...
- 101
0
votes
1
answer
359
views
nginx-ingress returns 502 After upgrading to kubernetes v1.24.6
When trying to upgrade from kubernetes v1.23.X to v1.24.X.
I has been seen that the health probe needs to be changed to be /healthz (azure)
I have a configuration that works in 1.23 but not 1.24
I ...
- 11
0
votes
0
answers
89
views
Does velero backup only persistent volume of the Azure kubernetes cluster and restore backup one or more persistent volumes on to the same cluster?
I did little research on the AKS Backup using velero. I want to take only the persistent volume backup of the aks cluster and restore on the same aks cluster. is it possible?.in case of restore of ...
- 1
0
votes
0
answers
198
views
Terraform running Helm deploy against AKS fails with "failed to find any PEM data in key input"
I'm setting up a one-click deploy of an environment for some webservices, in which Terraform is used to deploy the infrastructure and then run Helm to populate it. The Terraform step is working fine ...
- 51
13
votes
1
answer
6k
views
Kubernetes v1.24.3 upgrade broke ingress-nginx
After upgrading our AKS kubernetes cluster to from v1.23.8 to v1.24.3 our ingress stopped working properly. No errors logged in events and the ingress-nginx pod does not report any errors on the ...
- 421
1
vote
1
answer
175
views
azure kubernetes service - not able to pull images from ACR - connection refused - inconsistent
the issue started out of nowhere without any apparent change that we did. All of a sudden, deployments to our AKS (Kubernetes Version 1.23.8) clusters would randomly fail with errors like the below. ...
- 131
1
vote
2
answers
3k
views
How does Azure Loadbalancer work with Azure AKS
I recently tried to figure out how an Azure Loadbalancer in front of an Azure AKS cluster actually routes traffic to the cluster nodes.
Our (quite basic) setup:
AKS cluster version 1.23.x with the ...
- 113
0
votes
1
answer
527
views
Azure fails to attach disk to VM
I have a VM in zone 1 and 2 and a disk in zone 1, but when I run my script it fails with the following message:
AttachVolume.Attach failed for volume "disk-name" : rpc error: code = Unknown ...
- 3
1
vote
1
answer
8k
views
How to cleanup namespace in kubernetes?
We have one cluster in aks.
Where we deployed consul helm chart in consul namespace.
It created many CRDs.
The using these CRDs internally created one more namespace applicationns
When we deleted ...
- 155
1
vote
0
answers
953
views
ETCD snapshots causing etcdserver: leader changed
For a while now we've experienced regular errors from operations on kube API in AKS resulting in etcdserver: leader changed message. From what we've learned there is an ETCD snapshot performed every ...
0
votes
0
answers
44
views
How are Kubernetes persistent volumes related to AzureDisks in AKS?
Say I have One K8s node with Two pods. Each pod claims 5Gi of PV storage. The provisioned AKS VM (node) has a 32GiB SKU SSD AzureDisk data drive.
Will/can both of the 5Gi K8s volumes be located on the ...
- 101
0
votes
1
answer
1k
views
How to launch a sql file on kubernetes pod creation?
We have our database either in aws rds or azure postgres or even on a different online server based on customer.
But our product will be running in azure kubernetes as a pod and service with database ...
- 56
1
vote
1
answer
620
views
How to expose services in private AKS cluster?
I've created a private cluster on AKS and deployed some workloads to it, but I'm not sure how to connect to the services. They are all NodePort services, both TCP & UDP.
Initially, I thought that ...
- 21
0
votes
2
answers
1k
views
Kubernetes NGINX Ingress Controller Failure using Helm on AKS
When going through the setup of a K8 ingress controller, which is documented here
I am unable to get past the step of "Create an Ingress Controller"
During the Helm command step and placing ...
- 153
1
vote
1
answer
2k
views
What is the right way to assign Network Contributor Role to an AKS cluster via ARM / Bicep template?
I'm trying to configure a Load Balancer for my AKS server using Bicep/ARM. I am using the NGinx Ingress Controller in kubernetes and it does seem to work but when I first spin things up I am ...
- 113
0
votes
1
answer
191
views
Use fwmark in iptables on a container running in Azure K8S
I have a weird use case, where a pod running in Azure Kubernetes needs to route traffic from specific ports to specific targets through a dedicated VPN tunnel. But those targets are private IPs and ...
- 11
0
votes
1
answer
1k
views
AKS with Azure Key Vault - env variables don't load
I'm trying to use secrets from Azure Key Vault in my Kubernetes deployment as env variables and I'm struggling to do so. I'm using Azure pod identity and the secrets get mounted to the file and that ...
- 160
0
votes
1
answer
262
views
How to install Consul on azure kubernetes with policies enabled?
I have installed azure kubernetes with azure policy enabled.
I followed the steps in the getting started guide of consul as is: link
But when the consul is deployed, the pods are not deployed.
When I ...
- 471
0
votes
0
answers
171
views
Kubernetes Load balancer on Azure via kubeadm
We have created a Kubernetes cluster ( 1 master, 2 workers VMs) using kubeadm on Azure. The master and worker VMs have private IPs only.
We are bringing up an nginx pod of service type - Load balancer ...
- 139
1
vote
1
answer
216
views
Consul containers are creating as privileged containers, how to change that?
With the azure policy addon enabled(as per organization policy), we can’t create privileged containers on the aks, azure kubernetes.
Our application is set to security context as below.
...
- 362
0
votes
1
answer
573
views
Limit exceeded for cluster creation on Azure Kubernetes, where to cleanup?
I have deleted the old clusters by deleting the resource group completely.
But when I try to create a new cluster, I am getting error as limit exceeded.
As you can see in the below error.
{"code&...
- 362
0
votes
1
answer
1k
views
How to convert configmap to azure keyvault
I have a configmap like below.Which I will link to a config file in our application.
apiVersion: v1
kind: ConfigMap
metadata:
name: database-configmap
data:
config: |
dbport=5432
dcname=
...
- 362
0
votes
1
answer
491
views
How to use acr secret saved in azure vault for image pull?
With azure vault and csi driver, able to create secrets and access them as single files in container.
I followed this approach to create basic secrets.
Can accessible the secrets from the container as ...
- 362
0
votes
1
answer
2k
views
Azure key vault volume not accessible, how to fix that?
I have followed the walkthrough provided in this link
And at step 6, I have tried to create a pod with the volume linked to the keyvault.
But it is not able to access the volume.
kubectl get pods
NAME ...
- 362
2
votes
2
answers
2k
views
How to move kubernetes to a different subscription in azure?
I have two subscriptions under my account.
When I check today, the balance is low in my subscription where I deployed the cluster.
So, I click on change subscription option and selected the second ...
- 362
0
votes
1
answer
1k
views
Kubernetes clusters should not grant CAPSYSADMIN security capabilities
In Our AKS, found high severity alerts related to this in Azure Security Center.
What is CAPSYSADMIN meant for?
Is the pods by default enabled with this property?
Because we didnt specifically enabled ...
- 101
1
vote
2
answers
3k
views
I have deleted all the Azure AKS Kubernetes Nodes, how to restore back the Cluster to it's original state?
I am new to the Azure AKS Cluster world, and while messing with a test cluster i have deleted all its Nodes with kubectl delete node xxxx, thinking that the cluster will heal itself. Boy, was i wrong.
...
- 31
0
votes
1
answer
232
views
Dump an external database in Kubernetes
I have created a Kubernetes CronJob (in AKS) to run a database dump (the database is not located inside the Kubernetes cluster). This CronJob create a Job each day which will dump the database in a ...
- 3
1
vote
1
answer
2k
views
azure pipeline getting failed with below Failed to acquire a token Kubernetes Task
One of the stage in my azure pipeline getting failed with below error "Failed to acquire a token: failed acquiring new token: waiting for device code authentication to complete: autorest/adal/...
- 111
0
votes
0
answers
103
views
Using VMs as pods in Kubernetes
I have found KubeVirt.io project which allows you to manage VM as if being Pods in Kubernetes cluster. The problem with that is it is using KVM to create such VMs on the nodepool nodes. Is there any ...
- 101
0
votes
1
answer
781
views
Kubernetes Pod - DNS does not resolve after establishing OpenVPN client connection
I have a Kubernetes deployment that when deployed into Kubernetes in docker-desktop for Mac works fine, but the exact same configuration (config files, Docker images) in Azure Kubernetes does not.
...
- 101
0
votes
0
answers
654
views
Azure Service Bus TimedOut exception when running within K8S instance but not in docker on node host
I'm getting a "ServiceBusCommunicationException" reason "Connection timed out ErrorCode: TimedOut" with an Inner Exception of "SocketException" reason "Connection ...
- 133