Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

k3s node IPs not necessarily correct for multi-homed hosts #543

Open
sjpb opened this issue Jan 21, 2025 · 3 comments
Open

k3s node IPs not necessarily correct for multi-homed hosts #543

sjpb opened this issue Jan 21, 2025 · 3 comments

Comments

@sjpb
Copy link
Collaborator

sjpb commented Jan 21, 2025
edited
Loading

As per the k3s docs, a default route is required and is used to determine the primary IP for a cluster. However in some cases this means the node IPs are not all on the same network, e.g.

          NetA   NetB
           |      |
login -----x------x
           |      |
control----x------x
                  |
compute1----------x
                  |

where NetA has a default route, and NetB doesn't, with a dummy route set on compute1 via cloud-init using #539.

In this case the k3s server on the control node gets an InternalIP on NetA, while compute1's is on NetB.

The IP the nodes should use for the k3s server is set by templating out K3S_URL at boot via ansible-init. However it turns out this is not sufficient in the above case and e.g. shelling into a container running on compute from k9s on the control node does not work.

In manual testing, setting --node-ip (available for both server and agent sub--commands) got this working.

Although those links show it isn't "natively" exposed as an environment variable, INSTALL_K3S_EXEC could be set to something like --node-ip $K3S_NODE_IP and then template out "K3S_NODE_IP=$ip" into an environment file via ansible-init (with the environment file reference possibly added by a dropin, configured to not start until that exists).

The docs suggest that even if setting --node-ip a default route is still required (emphasis added):

K3s requires a default route in order to auto-detect the node's primary IP, and for kube-proxy ClusterIP routing to function properly
@sjpb
Copy link
Collaborator Author

sjpb commented Jan 21, 2025

Actually for the k3s-server, maybe we should make it so --node-ip is always set to the same IP as K3S_URL? The assumption there is that the latter is an IP, not a hostname, but given our dns state that is probably OK.

@sjpb
Copy link
Collaborator Author

sjpb commented Jan 21, 2025

@wtripp180901 FYI - please comment if the above doesn't make sense (you don't need to do anything yet though, this just capturing thoughts)

@sjpb
Copy link
Collaborator Author

sjpb commented Jan 21, 2025

Maybe we can also make the --node-ip (and k3s-url IP) set to the interface with access_network=true. That probably makes sense, when we natively support multi-homed hosts.

@sjpb sjpb mentioned this issue Jan 24, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Set K3s node IPs to use access_network stackhpc/ansible-slurm-appliance
1 participant
@sjpb