manifests icon indicating copy to clipboard operation
manifests copied to clipboard
verified publisher icon kubeflow

cert-manager webhook not reachable

Open Dhinesh-devops opened this issue 2 years ago • 5 comments

While installing Kubeflow using the following command:

while ! kustomize build example | kubectl apply -f -; do echo "Retrying to apply resources"; sleep 10; done

I am having following errors in a loop :

Error from server (InternalError): error when creating "STDIN": Internal error occurred: failed calling webhook "webhook.cert-manager.io": failed to call webhook: Post "https://cert-manager-webhook.cert-manager.svc:443/mutate?timeout=10s": dial tcp 10.102.59.155:443: connect: no route to host

here are my kubectl version

WARNING: This version information is deprecated and will be replaced with the output from kubectl version --short.  Use --output=yaml|json to get the full version.
Client Version: version.Info{Major:"1", Minor:"26", GitVersion:"v1.26.11", GitCommit:"3cd242c51317aed8858119529ccab22079f523b1", GitTreeState:"clean", BuildDate:"2023-11-15T17:00:54Z", GoVersion:"go1.20.11", Compiler:"gc", Platform:"linux/amd64"}
Kustomize Version: v4.5.7
Server Version: version.Info{Major:"1", Minor:"26", GitVersion:"v1.26.11", GitCommit:"3cd242c51317aed8858119529ccab22079f523b1", GitTreeState:"clean", BuildDate:"2023-11-15T16:50:12Z", GoVersion:"go1.20.11", Compiler:"gc", Platform:"linux/amd64"}

kustomize version

v5.3.0

Here are my pods by kubectl get pods -A

image

**kubectl get ns**

image

kubectl get pods -n cert-manager

image

kubectl get nodes

image

kubectl describe node node1

image image

Can you help to fix this issue

Dhinesh-devops avatar Dec 27 '23 10:12 Dhinesh-devops

Any help would be great !!

Dhinesh-devops avatar Dec 28 '23 04:12 Dhinesh-devops

"dial tcp 10.102.59.155:443: connect: no route to host" looks like a kubetnetes level issue

juliusvonkohout avatar Jan 02 '24 16:01 juliusvonkohout

There are also commercial distributions and consultants available if needed.

juliusvonkohout avatar Jan 02 '24 16:01 juliusvonkohout

I am facing the same issue installing this on my local kubernetes cluster.

deltawi avatar Jan 21 '24 09:01 deltawi

Hi guys,

I was suffered the same issue,

in my case, the reason was custom CNI (especially, calico). please refer this page https://cert-manager.io/docs/troubleshooting/webhook/#cause-2-eks-on-a-custom-cni

When i install calico at my cluster, i used helm and added below options. Then, kubeflow works!! --set webhook.hostNetwork=true --set webhook.securePort=10260

RmKuma avatar Feb 19 '24 08:02 RmKuma

Please try the master branch with the new readme and create a new issue if necessary

juliusvonkohout avatar May 16 '24 14:05 juliusvonkohout