Fatal编程技术网
  • kubernetes/
  • Kubernetes k8s带印花棉布,吊舱集装箱罐';ip外的t ping

Kubernetes k8s带印花棉布,吊舱集装箱罐';ip外的t ping

kubernetes

Kubernetes k8s带印花棉布,吊舱集装箱罐';ip外的t ping,kubernetes,calico,Kubernetes,Calico,我的K8使用印花布。 在我的容器中,我只能ping节点和其他pod。当我尝试访问我的gitserver时,它失败了 sh-4.1$ ping stash PING hoffman.domain.local (192.168.33.106) 56(84) bytes of data. <-- not return ,until ctrl+c 在节点中 [clara: ] > ip route default via 192.168.33.1 dev enp0s31f6 onl

我的K8使用印花布。 在我的容器中,我只能ping节点和其他pod。当我尝试访问我的gitserver时,它失败了

    sh-4.1$ ping stash
PING hoffman.domain.local (192.168.33.106) 56(84) bytes of data.
<-- not return ,until ctrl+c
在节点中

[clara: ] > ip route
default via 192.168.33.1 dev enp0s31f6 onlink 
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 
192.168.33.0/24 dev enp0s31f6 proto kernel scope link src 192.168.33.224 
blackhole 192.168.100.192/26 proto bird 
192.168.100.212 dev calicc370d883ea scope link 
192.168.126.0/26 via 192.168.33.223 dev tunl0 proto bird onlink

    sudo kubectl exec -ti -n kube-system calicoctl -- /calicoctl get  ippool -o wide
NAME                  CIDR             NAT    IPIPMODE   VXLANMODE   DISABLED   SELECTOR   
default-ipv4-ippool   192.168.0.0/16   true   Always     Never       false      all()



 sudo kubectl exec -ti -n kube-system calicoctl -- /calicoctl get  ippool -o yaml
apiVersion: projectcalico.org/v3
items:
- apiVersion: projectcalico.org/v3
  kind: IPPool
  metadata:
    creationTimestamp: 2019-11-13T07:01:54Z
    name: default-ipv4-ippool
    resourceVersion: "2025"
    uid: ebbcd7b8-761a-49e9-a7c6-4e2a4d1ceeac
  spec:
    blockSize: 26
    cidr: 192.168.0.0/16
    ipipMode: Always
    natOutgoing: true
    nodeSelector: all()
    vxlanMode: Never
kind: IPPoolList
metadata:
  resourceVersion: "2484183"
指 我试着去执行

cat << EOF | calicoctl apply -f -
- apiVersion: projectcalico.org/v3
  kind: IPPool
  metadata:
    name: ippool-ext-1
  spec:
    cidr: 192.168.0.0/16
    natOutgoing: true
EOF
根据calicoctl get ippool-o yaml的输出,配置正确:true,无需修改。 k8s集装箱的ip↓

sh-4.1$ ifconfig
eth0      Link encap:Ethernet  HWaddr 9E:AE:6D:96:A4:67  
          inet addr:192.168.100.212  Bcast:0.0.0.0  Mask:255.255.255.255
但在k8s pod容器中,我无法ping我的gitserver。我还只是在节点上运行了一个docker容器,使用相同的映像,它工作正常,git克隆成功。

我的K8S容器ip:eth0 inet addr:192.168.100.212 Bcast:0.0.0.0 Mask:255.255.255这些节点是云中的虚拟机吗?您的pod子网和外部网络可能重叠。尝试将pod cidr更改为例如
10.0.0.0/16
这些节点是真正的主机。在节点上,我可以ping git服务器(192.168.33.106)。来自@Matt的评论帮助我解决了类似问题。 
Partial success: applied the first 1 out of 1 'IPPool' resources:
Hit error: error with field IPPool.Spec.CIDR = '192.168.0.0/16' (IPPool(ippool-ext-1) CIDR overlaps with IPPool(default-ipv4-ippool) CIDR 192.168.0.0/16)
command terminated with exit code 1

sh-4.1$ ifconfig
eth0      Link encap:Ethernet  HWaddr 9E:AE:6D:96:A4:67  
          inet addr:192.168.100.212  Bcast:0.0.0.0  Mask:255.255.255.255