TJ Zimmerman

Asked: 2020-04-08 14:01:52 +0800 CST2020-04-08 14:01:52 +0800 CST 2020-04-08 14:01:52 +0800 CST

Calico-node pods not becoming READY until iptables is disabled - Kubernetes on RHEL 7

I have provisioned a Kubernetes cluster on RHEL 7 and deployed Calico to it. The calic-node pods running on the master and worker nodes do not become ready until I SSH into the master and temporarily disable iptables with systemctl stop iptables.

I have configured iptables on the master to allow incoming access over TCP to 6443, 2379:2380, and 10250:10252. So it should be configured correctly as per the documented required ports. After all, the nodes are able to join the cluster via kubeadm join which requires the ability to network with the master over 6443.

1 Answers

Voted

Best Answer

TJ Zimmerman
2020-04-09T11:29:03+08:002020-04-09T11:29:03+08:00
The solution was also including the ports defined here.
1

Calico-node pods not becoming READY until iptables is disabled - Kubernetes on RHEL 7

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?