k0s icon indicating copy to clipboard operation
k0s copied to clipboard

Published 20 hours ago verified publisher icon k0sproject

Should the NF_CONNTRACK kernel config be part of the pre-flight checks for k0s?

Open twz123 opened this issue 3 years ago • 1 comments

There's some evidence that without it, workers won't work. K0s already includes it in k0s sysinfo and also tries to load nf_conntrack proactively.

Looking at this kube-proxy code, it seems that kube-proxy will error out anyways if nf_conntrack is unavailable. (Note that s.Conntracker is never nil for Linux.)

twz123 avatar Aug 19 '22 07:08 twz123

The issue is marked as stale since no activity has been recorded in 30 days

github-actions[bot] avatar Sep 18 '22 23:09 github-actions[bot]

The issue is marked as stale since no activity has been recorded in 30 days

github-actions[bot] avatar Oct 19 '22 23:10 github-actions[bot]

The issue is marked as stale since no activity has been recorded in 30 days

github-actions[bot] avatar Nov 19 '22 23:11 github-actions[bot]

Kube-proxy, cilium and openvSwitch require nf_conntrack.

I don't know any implementation of kube-proxy other than kube-proxy itself or cilium that isn't based on openvSwitch so I think this is a sane thing to do.

juanluisvaladas avatar Nov 22 '22 12:11 juanluisvaladas

The issue is marked as stale since no activity has been recorded in 30 days

github-actions[bot] avatar Dec 22 '22 23:12 github-actions[bot]