I’m trying to find the answer of this question on KillerCoda, but I can’t figure out what’s happening… Someone can help me to find out about it?
when you run kubectl get nodes OR kubectl get pod
- The connection to the server 172.30.1.2:6443 was refused
- did you specify the right host or port?
need to wait for few seconds to make above command work again but above error will come again after few second
and also kube-controller-manager-controlplane pod continuously restarting Fix above issue
Expectation: kube-apiserver-controlplane pods running in kube-system namespace
It doesn’t help that node-port-issue is the name of this test, because as we will see, it is nothing to do with service node ports. Also this question can be considered in the “brutally hard” category and it would be extremely unlikely to get one like this in real exam due to the time needed to solve! The average time per question is 6 minutes.
ssh to control plane, then observe what is happening with controlplane pods
watch crictl ps
Note that several pods including API server are restarting periodically.
Next, let’s look at logs of API server to see if that gives a clue to why it is restarting. Open another terminal tab and ssh to control plane, leaving the watch running in the first tab so you can go back to it. To find API server logs, see this write up. There should be more than one log file in the log folder if you have left it for long enough, so examine the last-but-one which will be a complete log for an instance that has terminated.
From this log, it appears that the API server has done a normal shutdown as the last 30 or so lines of the log say “shutting down this, shutting down that, etc.”. The only way it will have done a normal shutdown as opposed to outright crashing is if it has been told to shut down by kubelet sending it a SIGTERM. This indicates a probe failure. Note also that other control plane pods like controller-manager will restart along with API server as they crash when they cannot contact API server. Only etcd does not recycle because API server talks to etcd, not the other way round.
Examine the probe settings in the API server manifest…
vi /etc/kubernetes/manifests/kube-apiserver.yaml
Note the port setting for the probes. Does it look right?
Fix this and wait for everything to restart (return to first tab that is running the watch). When everything has restarted, test again kubectl get nodes etc.
You must check config file by kubectl config view so by mistakakenly you changes the port of api server or check service of default k8s ok see its endpoint ok this is only problem nothing else or check firewall rules of cloud vm of control plane allowing tcp port or specific port of api server
Yes but check it double because yaml could be not be diffrent port of kube api server check svc default what is port of it ok then change but it is static so go to location /etc/kubernetes/manifests ok in control plane location
see kube-controller mamager keep restarting its normal see you your config file port and svc api server ip with port in it manifest file ok it will some diffrent however its not problem of rbac and all it problem of port so check and correct in config file from where kubectl is trying to communicate to sever means api server or it might be api sever is also off restarting so referesh page it will be fine something wrong with api server so it is not passing endpoint of server
or it might be api sever is also off restarting so referesh page it will be fine something wrong with api server so it is not passing endpoint of server