Questions tagged [project-calico]

Project Calico aims to simplify, scale, and secure cloud networks.

Per the project website, Project Calico aims to be:

Simple

Let's remove the complexity

Traditional SDNs are complex, making them hard to deploy and troubleshoot. Calico removes that complexity, with a simplified networking model designed for the demands of today's cloud-native applications.

Scalable

From dev/test to enterprise deployment

Unlike SDNs that require a central controller, limiting scalability, Calico is built on a fully distributed, scale-out architecture. So it scales smoothly from a single developer laptop to large enterprise deployments.

Secure

Policy-based micro-segmentation

Defining secure network policy used to be reserved for skilled network engineers. Calico's powerful micro-segmentation capabilities build on a simple policy language that naturally expresses the developer's intent.

160 questions

vote

1 answer

What exactly happens when we try to ping an External IP for a service of type Load balancer (kubernetes)?

My cluster is running on-prem. Currently when I try to ping the external IP of service type LoadBalancer assigned to it from Metal LB. I get a reply from one of the VM's hosting the pods - Destination Host unreachable. Is this because the pods are…

kubernetes project-calico metallb

asked Jun 06 '20 at 21:10

Dravid S Sundaram

vote

1 answer

Kubernetes on mixed os Linux and windows with Calico opensource

I came across an article which States that we can have mixed os in cluster. Article talk about having flannel as networking plugin but i want to use Calico opensource plugin instead as it provides encryption. Any idea if this is possible using…

linux windows kubernetes project-calico

asked May 12 '20 at 23:23

Shrijan Tiwari

vote

1 answer

Why is my GKE cluster upscaling when I create a namespace?

I'm observing a strange behaviour of a newly created cluster in GKE. Just after creating it, there is one node. When I create my first namespace, it autoscales up to 2 nodes, although the resources on the first node are still very low. What could be…

google-kubernetes-engine project-calico

asked May 07 '20 at 14:53

Alain B.

vote

1 answer

GKE update calico-node-vertical-autoscaler image version

I am using GKE cluster with master version 1.15.9-gke.24 and linkerd2 as proxy for my gRPC services. From my cluster I saw calico node vertical autoscaler pod is in CrashLoopBackOff state. From log I see following $ kubectl logs -f…

kubernetes google-kubernetes-engine project-calico linkerd

asked May 03 '20 at 10:48

hoque

3,884
1
10
22

vote

4 answers

Kubernetes - Calico-Nodes 0/1 Ready

We are deploying Jenkins on the K8s env, with 1 master and 4 worker nodes using calico network plugin, the pods are created on the time of Job run in Jenkins, but the issue is hostnames don't resolve, no error logs in Jenkins, on checking the pods,…

jenkins kubernetes project-calico cni

asked Apr 14 '20 at 05:30

Sanjay M. P.

vote

1 answer

Kubernetes with Calico on AWS -- Cannot ping pods on on different nodes

Just getting started with Kubernetes. I cannot seem to connect pods running on different nodes to communicate with each other. I set up a Kubernetes Cluster with Calico networking on three AWS EC2 instances (one master, two workers all with…

amazon-web-services kubernetes project-calico

asked Mar 23 '20 at 00:58

Tim de Vries

vote

2 answers

Calico & K8S on Azure - can't access pods

I'm starting with K8S. I installed 2 Debian 10 VMs on Azure (1 master node & 2 slaves). I installed the master node with this doc: https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/ I installed Calico with this…

linux azure kubernetes project-calico

asked Feb 14 '20 at 08:02

tzouintzouin

vote

2 answers

How to explicitely define an Endpoint of an Kubernetes Service

I've provisioned a kubernetes cluster on my own couple of virtual machines via kubespray. Kubespray uses project-calico as default network-plugin which fits my requirements of proxying services in the cluster network to the outer world pretty…

kubernetes kubernetes-service project-calico kubespray

asked Dec 19 '19 at 15:41

Jürgen Zornig

vote

2 answers

No route to host from some Kubernetes containers to other containers in same cluster

This is a Kubespray deployment using calico. All the defaults are were left as-is except for the fact that there is a proxy. Kubespray ran to the end without issues. Access to Kubernetes services started failing and after investigation, there was no…

kubernetes project-calico coredns kubespray

asked Nov 14 '19 at 15:48

user179763

vote

2 answers

How can I reach a Kubernetes service from a node using calico networking

I've setup a bare metal cluster and want to provide different types of shared storage to my applications, one of which is an s3 bucket I mount via goofys to a pod that exports if via NFS. I then use the NFS client provisioner to mount the share to…

networking kubernetes nfs project-calico goofys

asked Nov 11 '19 at 17:38

Assis Ngolo

vote

0 answers

Relationship between cali*(veth) and flannel.1(vxlan) in Canal CNI

I'm using Canal as the CNI for my Kubernetes cluster. In worker nodes, using ip addr I can see veth interface like cali*. I know this interface will communicate with flannel.1 # ip addr 18: flannel.1: mtu 1450 qdisc…

kubernetes flannel project-calico

asked Sep 27 '19 at 08:46

biao

vote

1 answer

Kubernetes NetworkPlugin cni failed to set up pod

regarding to below logs which I used describe pod, my pods stuck in pending state due to “FailedCreatePodSandBox” there is some key note: -I use calico as CNI. -this log repeat multple time, I just past here this one as sample. -the ip…

kubernetes project-calico calico cni

asked Aug 25 '19 at 08:44

alireza71

vote

2 answers

what are the Kubernetes modules directly communicating with etcd

I was trying to understand how exactly the kubernetes modules interacts with etcd. I understand kubernetes modules by themselves are stateless and they keep the states in etcd. But I am confused when it comes to how modules are interacting with…

kubernetes google-kubernetes-engine kubernetes-ingress etcd project-calico

asked Jun 24 '19 at 06:48

joe

1,033
8
17

vote

1 answer

How kubernetes decides which network plugin to call for IPAM?

I am trying to understand how kubernetes knows whom to call to get IP address to the pod? Is it mentioned in the ConfigMap? Can you share any pointers to learn more on this?

kubernetes flannel project-calico

asked Feb 05 '19 at 18:41

Bharath Thiruveedula

vote

1 answer

Kubernetes Services reachable only on POD's host

I have a 3-nodes bare metal cluster installed with KUBEADM (buildt with intel NUC running CentOS 7). The master node is provided with 2 different network interfaces, one for external access and the second is configured to be the DHCP server of the…

docker networking kubernetes kubeadm project-calico

asked Sep 11 '18 at 14:11

luke035

Prev 1 2 3

…

10 11 Next