Skip to content
This repository has been archived by the owner on Apr 6, 2024. It is now read-only.

cann't validate the cluster #5

Closed
hhuchzh opened this issue Nov 1, 2018 · 6 comments
Closed

cann't validate the cluster #5

hhuchzh opened this issue Nov 1, 2018 · 6 comments
Labels
FAQ

Comments

@hhuchzh
Copy link

hhuchzh commented Nov 1, 2018

after finish creating the cluster, all the related services are been created sucessfully, but when I "kops validate cluster", it cann't connect the ELB, the log below:

unexpected error during validation: error listing nodes: Get https://api-cluster-bjs-k8s-local-c9l1qd-2011066806.cn-north-1.elb.amazonaws.com.cn/api/v1/nodes: dial tcp 54.222.209.4:443: i/o timeout

Anyone know the reason?
Thanks
@pahud
Copy link
Contributor

pahud commented Nov 1, 2018
edited
Loading

Hi

please check the following items:

  1. go to AWS EC2 console, select Load Balancer and click the ELB for K8S API, click instances, make sure all 3 instances are InService

image

  1. make sure you already submit the file for ICP Recordal or ICP License(ICP備案) otherwise the HTTPS:443 on the API ELB will be blocked. Check the official FAQ here: https://www.amazonaws.cn/en/about-aws/china/faqs/?nc1=f_ls#new%20step

  2. make sure the security group on the API ELB is HTTPS:443 public open

  3. telnet the ELB DNS name on TCP 443 and see if the socket is connected like below

pahud:~/environment/kops-cn (master) $ telnet api-cluster-zhy-k8s-local-qpbf7n-985241646.cn-northwest-1.elb.amazonaws.com.cn 443
Trying 52.83.228.42...
Connected to api-cluster-zhy-k8s-local-qpbf7n-985241646.cn-northwest-1.elb.amazonaws.com.cn.
Escape character is '^]'.

@pahud pahud added the FAQ label Nov 1, 2018
@hhuchzh
Copy link
Author

hhuchzh commented Nov 1, 2018

Thank you,
For your suggestion 2,
I change the port number, not use the 443, and now I can connect the cluster now.
Chinese Characteristics.

@pahud
Copy link
Contributor

pahud commented Nov 1, 2018

@hhuchzh no problem. Hope you find this project useful.

@pahud pahud closed this as completed Nov 1, 2018
@keygen8-git
Copy link

Thank you,
For your suggestion 2,
I change the port number, not use the 443, and now I can connect the cluster now.
Chinese Characteristics.

请问你是怎么修改端口的,我修改成8443,但kops validate依然访问443端口,没办法验证,

@ryandjf
Copy link

ryandjf commented Jan 13, 2019

Thank you,
For your suggestion 2,
I change the port number, not use the 443, and now I can connect the cluster now.
Chinese Characteristics.

请问你是怎么修改端口的,我修改成8443,但kops validate依然访问443端口,没办法验证,

修改ELB对应的security group,允许8443。
修改ELB的Listener,对应8443到instance的443。
修改~/.kube/config文件中的Server的url,后面加上端口号(:8443)。

kubectl get nodes成功。

@keygen8-git
Copy link

Thank you,
For your suggestion 2,
I change the port number, not use the 443, and now I can connect the cluster now.
Chinese Characteristics.

请问你是怎么修改端口的,我修改成8443,但kops validate依然访问443端口,没办法验证,

修改ELB对应的security group,允许8443。
修改ELB的Listener,对应8443到instance的443。
修改~/.kube/config文件中的Server的url,后面加上端口号(:8443)。

kubectl get nodes成功。

thank you, bro.

@liangruibupt liangruibupt mentioned this issue Jul 18, 2019
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
FAQ
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@pahud @ryandjf @keygen8-git @hhuchzh