Stack Overflow
Stack Overflow

Questions tagged [kube-proxy]

kube-proxy is a component of kubernetes that is responsible for `service` and load balance.

The Kubernetes network proxy runs on each node. This reflects services as defined in the Kubernetes API on each node and can do simple TCP,UDP stream forwarding or round robin TCP,UDP forwarding across a set of backends.

124 questions
2
votes
1 answer

Outbound connection intermittent failed to response

I'm experiencing intermittent failed to response when make an outbound connection such as RPC call, it is logged by my application (Java) like this : org.apache.http.NoHttpResponseException: RPC_SERVER.com:443 failed to respond ! Outbound…
Heru Sebastian
  • 21
  • 2
2
votes
1 answer

what parameters can impove kube-proxy performance?

We are having problems on kube-proxy loading iptables. It locks docker when there's a large number of services. Is there a way to tune this with its parameters? From its documentation, I can only find --iptables-min-sync-period and…
reachlin
  • 3,525
  • 5
  • 15
  • 20
2
votes
1 answer

What does kube-proxy `--masquerade-all=true` mean?

The kube-proxy admin page says: --masquerade-all If using the pure iptables proxy, SNAT everything But it does explain in detail. When should I set --masquerade-all to true? And what problem it solves? What could happen if it set…
cizixs
  • 9,843
  • 5
  • 43
  • 58
1
vote
1 answer

Kube-Proxy-Windows CrashLoopBackOff

Installation Process I am all new to Kubernetes and currently setting up a Kubernetes Cluster inside of Azure VMs. I want to deploy Windows containers, but in order to achieve this I need to add Windows worker nodes. I already deployed a Kubeadm…
Twan Veldhuis
  • 13
  • 3
1
vote
1 answer

AKS Kube Proxy doesn't expose metrics

I'm trying to scrape the AKS kube-proxy metrics with Prometheus without success, the reason is that some of the metrics are only exposed to localhost as the following example: tcp LISTEN 0 16384 127.0.0.1:10249 *:* AKS…
Tommy Jimmy Emiliano
  • 59
  • 7
1
vote
1 answer

What does it means "can't set sysctl net/ipv4/vs/conn_reuse_mode" when set ipvs mode whith k8s?

When I modify kube-proxy mode from iptales to ipvs, after restart the kube-proxy, "kubectl logs kube-proxy" return the following error: server.go:485] unable to create proxier: can't set sysctl net/ipv4/vs/conn_reuse_mode: open…
juzip
  • 11
  • 1
1
vote
1 answer

Inconsistent response from kubernetes api service and getting no route to host error sometimes

I have configured kubernetes cluster using the steps as kubernetes the hard way by kelsey tower Unfortunately i'm seeing inconsistent response when i hit the kubernetes service ip to check the version from worker nodes here are my cluster…
JPNagarajan
  • 482
  • 4
  • 11
1
vote
1 answer

Are there two levels of load balancing when using Istio Destination Rules?

As far as I understood, Istio Destination Rules can define load balancing policies to reach a subset of a service, e.g. subset based on different versions of the service. So the Destination Rules are the first level of load balancing. The request…
M. Buil
  • 409
  • 4
  • 16
1
vote
1 answer

k8s: forwarding from public VIP to clusterIP with iptables

I'm trying to understand in depth how forwarding from publicly exposed load-balancer's layer-2 VIPs to services' cluster-IPs works. I've read a high-level overview how MetalLB does it and I've tried to replicate it manually by setting…
morgwai
  • 1,699
  • 2
  • 22
  • 26
1
vote
1 answer

Balancing traffic using least connection in Kubernetes

I have a Kubernetes cluster with a deployment like the next one: The goal here is to deploy an application in multiple pods exposed through a ClusterIP service named my-app. The same deployment is made in multiple namespaces (A, B and C), changing…
David Moreno García
  • 3,983
  • 5
  • 44
  • 77
1
vote
1 answer

Does kube-router IPVS-least connection algorithm, does load balancing across pods in same node or different nodes?

The application which I am working on runs as a deployment in kubernetes cluster. Pods created for this deployment is spread across various nodes in the cluster. Our application can handle only one TCP connection at a time and would reject further…
LPT
  • 11
  • 2
1
vote
1 answer

IP Blacklisting in Istio

The IP whitelisting/blacklisting example explained here https://kubernetes.io/docs/tutorials/services/source-ip/ uses source.ip attribute. However, in kubernetes (kubernetes cluster running on docker-for-desktop) source.ip returns the IP of…
vishnuvp
  • 267
  • 4
  • 16
1
vote
2 answers

where is Kube-proxy executable on Minikube

minikube ssh $ ps ax | grep kube-proxy 4191 ? Ssl 1:36 /usr/local/bin/kube-proxy --config=/var/lib/kube-proxy/config.conf --hostname-override=minikube 22000 pts/0 S+ 0:00 grep kube-proxy $ ls -l /usr/local/bin/kube-proxy ls:…
dgunjetti
  • 13
  • 3
1
vote
1 answer

kubernetes DNS - Let service contact itself via DNS

Pods in a kubernetes cluster can be reached by sending network requests to the dns of a service that they are a member of. Network requests have to be send to [service].[namespace].svc.cluster.local and get load balanced between all members of that…
Aki
  • 1,436
  • 7
  • 17
1
vote
1 answer

kubernetes service can not send request to itself

I have a service that, in some contexts, sends requests to itself. I can reach the service from outside the cluster, but the self-requests fail (time-out). Environment: minikube v0.34.1 Linux version 4.15.0 (jenkins@jenkins) (gcc version 7.3.0…
David Pennell
  • 91
  • 7
1 2
3
8 9