mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-21 10:51:29 +00:00

Production-Grade Container Scheduling and Management

Go to file

Kubernetes Submit Queue ba62dafe39 Merge pull request #37663 from Random-Liu/fix-node-e2e-firewall-configure Automatic merge from submit-queue (batch tested with PRs 37094, 37663, 37442, 37808, 37826) Node E2E: Fix node e2e firewall configure. Get rid of the misleading error message: ``` W1129 12:57:16.967] E1129 12:57:16.967130 29815 remote.go:204] Failed to configured firewall: command [ssh -i /home/jenkins/.ssh/google_compute_engine -o UserKnownHostsFile=/dev/null -o IdentitiesOnly=yes -o CheckHostIP=no -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o LogLevel=ERROR 104.154.201.208 -- sudo sh -c 'iptables -L INPUT \| grep "Chain INPUT (policy DROP)"&&(iptables -C INPUT -w -p TCP -j ACCEPT \|\| iptables -A INPUT -w -p TCP -j ACCEPT)&&(iptables -C INPUT -w -p UDP -j ACCEPT \|\| iptables -A INPUT -w -p UDP -j ACCEPT)&&(iptables -C INPUT -w -p ICMP -j ACCEPT \|\| iptables -A INPUT -w -p ICMP -j ACCEPT)'] failed with error: exit status 1 output: W1129 12:57:17.271] E1129 12:57:17.271169 29815 remote.go:213] Failed to configured firewall: command [ssh -i /home/jenkins/.ssh/google_compute_engine -o UserKnownHostsFile=/dev/null -o IdentitiesOnly=yes -o CheckHostIP=no -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o LogLevel=ERROR 104.154.201.208 -- sudo sh -c 'iptables -L FORWARD \| grep "Chain FORWARD (policy DROP)" > /dev/null&&(iptables -C FORWARD -w -p TCP -j ACCEPT \|\| iptables -A FORWARD -w -p TCP -j ACCEPT)&&(iptables -C FORWARD -w -p UDP -j ACCEPT \|\| iptables -A FORWARD -w -p UDP -j ACCEPT)&&(iptables -C FORWARD -w -p ICMP -j ACCEPT \|\| iptables -A FORWARD -w -p ICMP -j ACCEPT)'] failed with error: exit status 1 output: W1129 12:57:17.557] E1129 12:57:17.556683 29815 remote.go:204] Failed to configured firewall: command [ssh -i /home/jenkins/.ssh/google_compute_engine -o UserKnownHostsFile=/dev/null -o IdentitiesOnly=yes -o CheckHostIP=no -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o LogLevel=ERROR 104.154.128.178 -- sudo sh -c 'iptables -L INPUT \| grep "Chain INPUT (policy DROP)"&&(iptables -C INPUT -w -p TCP -j ACCEPT \|\| iptables -A INPUT -w -p TCP -j ACCEPT)&&(iptables -C INPUT -w -p UDP -j ACCEPT \|\| iptables -A INPUT -w -p UDP -j ACCEPT)&&(iptables -C INPUT -w -p ICMP -j ACCEPT \|\| iptables -A INPUT -w -p ICMP -j ACCEPT)'] failed with error: exit status 1 output: W1129 12:57:17.771] I1129 12:57:17.771236 29815 remote.go:231] Killing any existing node processes on tmp-node-e2e-a1212c32-gci-dev-56-8977-0-0 W1129 12:57:17.877] E1129 12:57:17.877123 29815 remote.go:213] Failed to configured firewall: command [ssh -i /home/jenkins/.ssh/google_compute_engine -o UserKnownHostsFile=/dev/null -o IdentitiesOnly=yes -o CheckHostIP=no -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o LogLevel=ERROR 104.154.128.178 -- sudo sh -c 'iptables -L FORWARD \| grep "Chain FORWARD (policy DROP)" > /dev/null&&(iptables -C FORWARD -w -p TCP -j ACCEPT \|\| iptables -A FORWARD -w -p TCP -j ACCEPT)&&(iptables -C FORWARD -w -p UDP -j ACCEPT \|\| iptables -A FORWARD -w -p UDP -j ACCEPT)&&(iptables -C FORWARD -w -p ICMP -j ACCEPT \|\| iptables -A FORWARD -w -p ICMP -j ACCEPT)'] failed with error: exit status 1 output: W1129 12:57:17.898] I1129 12:57:17.898711 29815 remote.go:239] Extracting tar on tmp-node-e2e-a1212c32-gci-dev-56-8977-0-0 W1129 12:57:17.941] E1129 12:57:17.941566 29815 remote.go:204] Failed to configured firewall: command [ssh -i /home/jenkins/.ssh/google_compute_engine -o UserKnownHostsFile=/dev/null -o IdentitiesOnly=yes -o CheckHostIP=no -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o LogLevel=ERROR 104.154.154.237 -- sudo sh -c 'iptables -L INPUT \| grep "Chain INPUT (policy DROP)"&&(iptables -C INPUT -w -p TCP -j ACCEPT \|\| iptables -A INPUT -w -p TCP -j ACCEPT)&&(iptables -C INPUT -w -p UDP -j ACCEPT \|\| iptables -A INPUT -w -p UDP -j ACCEPT)&&(iptables -C INPUT -w -p ICMP -j ACCEPT \|\| iptables -A INPUT -w -p ICMP -j ACCEPT)'] failed with error: exit status 1 output: W1129 12:57:18.020] I1129 12:57:18.019802 29815 remote.go:231] Killing any existing node processes on tmp-node-e2e-a1212c32-coreos-alpha-1122-0-0-v20160727 W1129 12:57:18.024] E1129 12:57:18.024044 29815 remote.go:213] Failed to configured firewall: command [ssh -i /home/jenkins/.ssh/google_compute_engine -o UserKnownHostsFile=/dev/null -o IdentitiesOnly=yes -o CheckHostIP=no -o StrictHostKeyChecking=no -o ServerAliveInterval=30 -o LogLevel=ERROR 104.154.154.237 -- sudo sh -c 'iptables -L FORWARD \| grep "Chain FORWARD (policy DROP)" > /dev/null&&(iptables -C FORWARD -w -p TCP -j ACCEPT \|\| iptables -A FORWARD -w -p TCP -j ACCEPT)&&(iptables -C FORWARD -w -p UDP -j ACCEPT \|\| iptables -A FORWARD -w -p UDP -j ACCEPT)&&(iptables -C FORWARD -w -p ICMP -j ACCEPT \|\| iptables -A FORWARD -w -p ICMP -j ACCEPT)'] failed with error: exit status 1 output: ``` The problem is that the command 'iptables -L FORWARD \| grep "Chain FORWARD (policy DROP)" returns an error when the rule is not found, which is not expected behaviour. @freehan		2016-12-03 04:27:48 -08:00
.github	Fix PR template	2016-11-11 14:48:58 -08:00
api	Merge pull request #37320 from ivan4th/remove-stray-quote	2016-12-02 23:32:47 -08:00
build-tools	Use Go 1.7.4 due to security fixes	2016-12-02 23:59:02 +02:00
cluster	Set kernel.softlockup_panic =1 based on the flag.	2016-12-02 16:09:16 -08:00
cmd	Merge pull request #37532 from smarterclayton/remove_export	2016-12-02 21:11:56 -08:00
docs	Merge pull request #37320 from ivan4th/remove-stray-quote	2016-12-02 23:32:47 -08:00
examples	Merge pull request #36889 from wojtek-t/reuse_fields_and_labels	2016-12-02 21:49:43 -08:00
federation	Merge pull request #36889 from wojtek-t/reuse_fields_and_labels	2016-12-02 21:49:43 -08:00
Godeps	Photon Controller platform vendor code	2016-11-08 09:36:16 -08:00
hack	Merge pull request #37094 from sjug/reshuffle_gobindata_dep	2016-12-03 04:27:46 -08:00
hooks	Add pre-commit hooks for verifying pkg names	2016-11-30 15:23:36 +08:00
logo	Update usage guidelines to reflect the donation to CNCF	2016-10-12 15:56:50 -07:00
pkg	Merge pull request #36732 from oulinbao/refactor_describe_containers	2016-12-03 01:28:11 -08:00
plugin	Merge pull request #37391 from deads2k/controller-03-roles	2016-12-02 20:32:46 -08:00
staging	Merge pull request #37885 from chentao1596/staging-readme-make-modifications	2016-12-02 19:27:25 -08:00
test	Merge pull request #37663 from Random-Liu/fix-node-e2e-firewall-configure	2016-12-03 04:27:48 -08:00
third_party	autogenerated	2016-10-21 17:32:32 -07:00
vendor	Merge pull request #36755 from deads2k/cli-09-extend-impersonate	2016-12-02 16:26:45 -08:00
.gazelcfg.json	add a .gazelcfg	2016-11-28 16:48:11 -08:00
.generated_docs	Merge pull request #37098 from deads2k/cli-12-create-cbinding	2016-12-02 08:44:58 -08:00
.generated_files	List generated files for the github size munger	2016-11-15 15:47:22 -08:00
.gitattributes	Move .gitattributes annotation to the root, so GitHub will respect them.	2016-11-02 09:48:45 -07:00
.gitignore	Add verbose mode to boilerplate	2016-10-22 21:40:08 -07:00
BUILD	Revert "disable bazel build"	2016-10-24 14:47:26 -07:00
CHANGELOG.md	Update CHANGELOG.md for v1.5.0-beta.2.	2016-11-24 15:21:21 -08:00
code-of-conduct.md	Change code of conduct to call CNCF CoC by reference	2016-10-19 13:22:35 -04:00
CONTRIBUTING.md	updated munge-docs	2016-11-29 01:35:11 -08:00
labels.yaml	Updating labels.yaml to add labels: cncf-cla:yes and cncf-cla:no	2016-10-03 09:54:42 -07:00
LICENSE	Remove "All rights reserved" from all the headers.	2016-06-29 17:47:36 -07:00
Makefile	[kubelet]update --cgroups-per-qos to --experimental-cgroups-per-qos	2016-11-15 15:55:47 +08:00
Makefile.generated_files	Verify generated files	2016-11-01 22:10:25 -07:00
OWNERS	Add jbeda to top level OWNERS	2016-10-25 13:08:07 -07:00
OWNERS_ALIASES	Move pkg/kubectl reviewers into an alias	2016-10-28 14:54:17 -07:00
README.md	Additional cleanups and addressing review	2016-11-15 20:55:42 +01:00
Vagrantfile	Increate memory for vagrant slave nodes to 2048	2016-09-15 15:16:29 +03:00
WORKSPACE	gazel	2016-10-21 17:31:54 -07:00

README.md

Kubernetes

Introduction

Kubernetes is an open source system for managing containerized applications across multiple hosts, providing basic mechanisms for deployment, maintenance, and scaling of applications. Kubernetes is hosted by the Cloud Native Computing Foundation (CNCF)

Kubernetes builds upon a decade and a half of experience at Google running production workloads at scale using a system called Borg, combined with best-of-breed ideas and practices from the community.

Are you ...

Interested in learning more about using Kubernetes?
- See see our documentation on kubernetes.io
- Try our interactive tutorial
- Take a free course on Scalable Microservices with Kubernetes.
Interested in developing the core Kubernetes code base, developing tools using the Kubernetes API or helping in anyway possible ? Keep reading!

Code of Conduct

The Kubernetes community abides by the CNCF code of conduct. Here is an excerpt:

As contributors and maintainers of this project, and in the interest of fostering an open and welcoming community, we pledge to respect all people who contribute through reporting issues, posting feature requests, updating documentation, submitting pull requests or patches, and other activities.

Community

Do you want to help "shape the evolution of technologies that are container-packaged, dynamically-scheduled and microservices-oriented? ". If you are a company, you should consider joining the CNCF. For details about who's involved in CNCF and how Kubernetes plays a role, read the announcement. For general information about our community see the website community page.

Join us on social media (Twitter, Google+) and read our blog

Ask questions and help answer them on Slack or Stack Overflow

Attend our key events (kubecon, cloudnativecon, weekly community meeting)

Join a Special Interest Group (SIG)

Contribute

If you're interested in being a contributor and want to get involved in developing Kubernetes, get started with with this reading:

You will then most certainly gain a lot from joining a SIG, attending the regular hangouts as well as the community meeting.

If you have an idea for a new feature, see the Kubernetes Features repository for a list of features that are coming in new releases as well as details on how to propose one.

Support

While there are many different channels that you can use to get hold of us (Slack, Stack Overflow, Issues, Forums/Mailing lists), you can help make sure that we are efficient in getting you the help that you need.

If you need support, start with the troubleshooting guide and work your way through the process that we've outlined.

That said, if you have questions, reach out to us one way or another. We don't bite!