我尝试使用AWS云服务提供商在Kubespray上安装Kubernetes。安装失败,
FAILED - RETRYING: Master | wait for the apiserver to be running
当我检查主人的kubelet docker容器的日志时,我看到了
Flag --enable-cri has been deprecated, The non-CRI implementation will be deprecated and removed in a future version.
I0824 16:30:03.413509 13279 feature_gate.go:144] feature gates: map[Accelerators:true]
I0824 16:30:03.413727 13279 aws.go:762] Building AWS cloudprovider
I0824 16:30:03.413878 13279 aws.go:725] Zone not specified in configuration file; querying AWS metadata service
Error: failed to run Kubelet: could not init cloud provider "aws": error finding instance i-0cb81504d85c14b90: error listing AWS instances: RequestError: send request failed
caused by: Post https://ec2.us-east-1.amazonaws.com/: dial tcp 54.239.28.168:443: i/o timeout
Error: failed to run Kubelet: could not init cloud provider "aws": error finding instance i-0cb81504d85c14b90: error listing AWS instances: RequestError: send request failed
caused by: Post https://ec2.us-east-1.amazonaws.com/: dial tcp 54.239.28.168:443: i/o timeout
Flag --enable-cri has been deprecated, The non-CRI implementation will be deprecated and removed in a future version.
I0824 16:32:04.169558 13517 feature_gate.go:144] feature gates: map[Accelerators:true]
I0824 16:32:04.169808 13517 aws.go:762] Building AWS cloudprovider
I0824 16:32:04.169852 13517 aws.go:725] Zone not specified in configuration file; querying AWS metadata service
我很肯定这是防火墙问题。我有一个具有适当权限的IAM角色。当我设置https_proxy变量时,我能够
curl https://ec2.us-east-1.amazonaws.com/
如果未设置代理变量,则curl将失败。我尝试在hyperkube容器中设置https_proxy变量。但是,当apiserver尝试与etcd节点握手时,这会导致cert错误。
有没有办法让kubelet在调用https://ec2.us-east-1.amazonaws.com/时仅使用代理?