Containers and Kubernetes

Get Involved. Join the Conversation.

Posts

  • enrique ortiz
    lost ssh keys
    Topic posted September 26, 2019 by enrique ortizRed Ribbon: 250+ Points 
    Title:
    lost ssh keys
    Content:

    hi all 

    we have created a kubernetes cluster with tree nodes , the cluster is created in automatic mode 

    we lost the ssh keys used to create the cluster so we cannot access the nodes , is there a way in order to access the nodes without ssh keys 

    thanks

     

  • Joji Lue
    19C - Hide Analytics on the bottom of the Springboard3
    Topic posted September 22, 2019 by Joji LueGold Medal: 3,500+ Points 
    Title:
    19C - Hide Analytics on the bottom of the Springboard
    Summary:
    We need to hide the Analytics section of the springboard
    Content:

    Has anyone tried to hide the Analytics section of the springboard? Kindly share the steps on how to do it.

     

    Thank you,

    Joji

    Version:
    19C
    Image:
  • Joydeepta Bhattacharjee
    Kafka broker in Oracle cloud event hub connectivity through...2
    Topic posted August 27, 2019 by Joydeepta BhattacharjeeRed Ribbon: 250+ Points, tagged Containers, Kubernetes 
    Title:
    Kafka broker in Oracle cloud event hub connectivity through bootstrap service
    Summary:
    Microservice to connect a Kafka topic and publish message as part of Oracle event hub cloud
    Content:

    Hi Team ,

    Can any one give me a clear information around connecting a Kafka broker in a cloud event hub. The zookeeper is embedded so not able to validate connector and brokers are active or not . When the service is trying to connect thru a public Internet Url of a Cloud Event Hub - Dedicated service it's timing out

     

  • John K
    SSH console access loginAnswered3
    Topic posted September 9, 2019 by John K 
    Title:
    SSH console access login
    Content:

    I'm trying to SSH into my instance using the SSH connection string provided by the console. I uploaded my public key and changed the permission of the private key ($ chmod 600 ~./.ssh/id_rsa) but I'm still being asked for username and password. Any ideas as to what this would be or how I can get past this?

  • Karthik Murthy
    How to preserve Source IP for LoadBalancer Service OKE45.0
    Topic posted July 17, 2019 by Karthik Murthy, tagged Containers, Kubernetes 
    Title:
    How to preserve Source IP for LoadBalancer Service OKE
    Summary:
    Unable to preserve source IP for a Kubernetes service exposed as type 'LoadBalancer'
    Content:

    I have deployed a backed service and nginx ingress controller as a Load Balancer service as documented in https://docs.cloud.oracle.com/iaas/Content/ContEng/Tasks/contengsettingupingresscontroller.htm 

    I would like to know if there is any way we can preserve source IP on the backed Pod. i.e I expect to see that the source IP of my external client when the request reaches the backend pod via the loadbalancer and nginx ingress controller.

    Any help is greatly appreciated !

    Version:
    12.7
  • Ranjans
    unable to invoke the function in oci1
    Topic last edited August 22, 2019 by Ranjans Red Ribbon: 250+ Points, tagged Containers, Docker 
    Title:
    unable to invoke the function in oci
    Summary:
    unable to invoke the function in oci
    Content:

    As per Python SDK , when I am importing the config value, the function is not getting invoke and is error out . The function has been built using python .

    The following command is used to invoke the function

    fn invoke  app_py pythonfn

     

    *************************

    import json
    import io
    import oci
    from oci.config import from_file
    import sys
    from fdk import response


    config = from_file(profile_name="DEFAULT")
    print(conf)

    def handler(ctx, data: io.BytesIO=None):


        try:
            body = json.load(data)
    .................
    ....................
    ..........................

  • Ranjans
    cx_Oracle.DatabaseError: DPI-1047 while connecting to...
    Topic posted September 12, 2019 by Ranjans Red Ribbon: 250+ Points, tagged Containers, Docker 
    Title:
    cx_Oracle.DatabaseError: DPI-1047 while connecting to cx_Oracle on docker
    Content:

    Hi ,

    I have written my function in python. When I am trying to invoke the function. I am getting the below error.  I have attached the Dockerfile also. Any suggestions.

     

    fn invoke appname func1

    cx_Oracle.DatabaseError: DPI-1047: Cannot locate a 64-bit Oracle Client library: "libclntsh.so: cannot open shared object file: No such file or directory". See https://oracle.github.io/odpi/doc/installation.html#linux for helpC

     

    Document:
  • Ranjans
    connect to adwc with fn(function)
    Topic posted September 11, 2019 by Ranjans Red Ribbon: 250+ Points, tagged Containers, Docker 
    Title:
    connect to adwc with fn(function)
    Summary:
    connect to adwc with fn (function)
    Content:


    Hi Everyone,

    Can anyone ,please suggest me in the below .
    I wanted to run my python code through oracle serverless computing( through fn function)
    Therefore I am facing challenge in connecting to adwc database with fn.
    In order to connect I need a init image file in python or Dockerfile in python.
    Can anyone suggest me, how to connect to autonomous database using fn .

    Thanks 

     

  • John K
    Deploying a basic node app to the cloudAnswered65.0
    Topic posted September 6, 2019 by John KGreen Ribbon: 100+ Points, tagged Containers, Docker, Kubernetes 
    Title:
    Deploying a basic node app to the cloud
    Content:

    Apologies for the basic question but I just signed up for a trial cloud account and want to deploy a simple hello world node app to the cloud. Even Oracle's documentation seems dated as everything I find online references Application Container Cloud which I don't see in my list of trial account applications. Nor do I see anything related to Container Cloud. Does anyone have a tutorial or how-to doc that I could follow to learn how to deploy a simple node app. Thanks in advance for pointing me in the right direction.

    Image:
  • Olivier Maurice
    Security problem on FSS hosted volume3
    Topic posted May 29, 2019 by Olivier MauriceRed Ribbon: 250+ Points, tagged Kubernetes 
    Title:
    Security problem on FSS hosted volume
    Summary:
    Some pods give a security problem when accessing FSS hosted exports
    Content:

    Hi,

    Not new to Kubernetes but also not an expert. The setting: a Kubernetes cluster (OKE) with the storage behind the PV and PVC residing on File Storage Service (FSS).

    When making a deployment based on Alpine, I can perfectly mount and use the volume in the pod.

    However, when switching to some more meaningful stuff, say MySQL or my latest try Prometheus, I just cannot make it fly. None of these containers can work with the export. In all cases the PV and PVC are bound.

    This is something security - related but I just can't figure it out. I have been squashing the root or all users to 1 or something in the 65K, nothing seemed to help.
    Also defined security context on pod level, to no avail. I am missing something, but it is clear I do not know what.

     

    What I have in place:

    Storageclass

    kind: StorageClass
    apiVersion: storage.k8s.io/v1beta1
    metadata:
      name: oci-fss
    provisioner: oracle.com/oci-fss
    parameters:
      mntTargetId: ocid1.mounttarget.oc1.eu_frankfurt_1.aaaa...aa
    

    PV

    apiVersion: v1
    kind: PersistentVolume
    metadata:
      name: prometheus-pv
      namespace: monitoring
      labels:
        app: prometheus
    spec:
      storageClassName: oci-fss
      capacity:
        storage: 100Gi
      accessModes:
        - ReadWriteMany
      mountOptions:
        - nosuid
      persistentVolumeReclaimPolicy: Delete # Reclaim policies are defined below
      nfs:
        # Replace this with the IP of your FSS file system in OCI
        server: 10.100.0.3
        # Replace this with the Path of your FSS file system in OCI
        path: "/k8s-prometheus"
        readOnly: false
    

     

    PVC
    
    apiVersion: v1
    kind: PersistentVolumeClaim
    metadata:
      name: prometheus-pvc
      namespace: monitoring
    spec:
      storageClassName: oci-fss
      accessModes:
        - ReadWriteMany
      resources:
        requests:
        # Although storage is provided here it is not used for FSS file systems
          storage: 100Gi
      selector:
        matchLabels:
          app: prometheus
    

     

    Deployment

    apiVersion: extensions/v1beta1
    kind: Deployment
    metadata:
      name: prometheus-deployment
      namespace: monitoring
    spec:
      replicas: 1
      template:
        metadata:
          labels:
            app: prometheus-server
        spec:
          containers:
            - name: prometheus
              image: prom/prometheus:v2.2.1
              args:
                - "--config.file=/etc/prometheus/prometheus.yml"
                - "--storage.tsdb.path=/prometheus/"
              ports:
                - containerPort: 9090
              volumeMounts:
                - name: prometheus-config-volume
                  mountPath: /etc/prometheus/
                - name: prometheus-storage-volume
                  mountPath: /prometheus/
          volumes:
            - name: prometheus-config-volume
              configMap:
                defaultMode: 420
                name: prometheus-server-conf
            - name: prometheus-storage-volume
              persistentVolumeClaim:
                claimName: prometheus-pvc
                readOnly: false
    

    Log output

    level=error ts=2019-05-29T07:17:48.980589701Z caller=main.go:582 err="Opening storage failed open DB in /prometheus/: open /prometheus/199323036: permission denied"
    
    level=info ts=2019-05-29T07:17:48.980731276Z caller=main.go:584 msg="See you next time!"
    
     
    Thanks for your ideas!
     
    Olivier
    Version:
    Kubernetes v1.11.5-3