Deploying on Rancher
See original GitHub issueIssue:
When deploying Reana-Cluster onto a Rancher Kubernetes Cluster, I’m running into some certificate issues. Kubectl, on the other hand, still works without problems.
...
HTTPSConnectionPool(host='192.168.1.10', port=8443): Max retries exceeded with url:
/k8s/clusters/c-rqbzb/api/v1/namespaces/default/secrets?includeUninitialized=false
(Caused by SSLError(CertificateError("hostname '192.168.1.10' doesn't match '192.168.1.10'",),))
Rancher is using port 8443
, k8s
API is available at (https://192.168.1.10:8443/k8s/clusters/c-rqbzb
). I am able to access the url https://192.168.1.10:8443/k8s/clusters/c-rqbzb/api/v1/namespaces/default/secrets
in my browser.
The certificate for rancher is auto-generated (self-signed). Could this be the problem? Btw. my kube-config file contains the certificate-authority-data
section. Kubectl is not complaining about any ssl issues.
I’m trying to start my Reana-Cluster with the following command:
openssl req -x509 -nodes -days 365 -newkey rsa:2048 \
-keyout /tmp/tls.key -out /tmp/tls.crt \
-subj "/CN=192.168.1.10"
./kubectl delete secrets reana-ssl-secrets
./kubectl create secret tls reana-ssl-secrets \
--key /tmp/tls.key --cert /tmp/tls.crt
reana-cluster init # <-- exception occurs here
Steps to reproduce:
- Run Rancher-UI
# run rancher
docker run -d --name=rancher --restart=unless-stopped -p 8080:80 -p 8443:443 rancher/rancher:v2.0.8
- login (https://localhost:8443), create a new cluster (“custom”) --> leave default settings, just click on “next”
- make sure to check “etcd”, “Control Plane” and “Worker”
- copy generated output command into cli
- wait until cluster is initialized, click on “Kubeconfig file” and place the content into
~/.kube/config
- run commands shown in the issue section
Issue Analytics
- State:
- Created 5 years ago
- Comments:10 (5 by maintainers)
Top Results From Across the Web
Rancher Deployment Quick Start Guides
Rancher Deployment Quick Start Guides · Deploying Rancher Server: Get started running Rancher using the method most convenient for you.
Read more >Deploying Rancher Server | Rancher Manager
Use one of the following guides to deploy and provision Rancher and a Kubernetes cluster in the provider of your choice.
Read more >How to Deploy Apps with Rancher - Linode
This guide shows how to use the open source Rancher platform to deploy applications and containers to remote hosts.
Read more >Deploying Kubernetes Applications with Rancher - BoxBoat
In this post, we'll take our exploration of Rancher one step further and see how we can deploy our own Kubernetes applications into...
Read more >Rancher for Amazon EKS on AWS—Partner Solution
Rancher deployment using AWS Systems Manager automation. Amazon EKS service for the EKS cluster, which provides the Kubernetes control plane.*; An Amazon Route ......
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
Something important to notice which I have forgotten before, you should use
reana-cluster
in this version if you are using REANA 0.3.0.Regarding fully running REANA inside Rancher, as a workaround for the issue of not being able to access services from outside the cluster and to make sure that things are working I have run the
reana-client
inside the cluster as follows:reana-server
component:reana-client
and configure it, to retrieve the access token you can usereana-cluster env --include-admin-token
.Hello @David-Development, first of all, sorry for the late reply… I have managed to deploy REANA on Rancher following your steps. I’ve taken the Kubernetes configuration from Rancher UI and copied it over to
~/.kube/config
.And it looks more or less like this:
Right after I just run
reana-cluster init
and all components are initialised correctly.Regarding accessing the services from outside the cluster, I have tried getting the address reserved for the
reana-server
component from the UI andcurl
but I get a timeout:This seems to be a problem that could be solved with some Rancher experience, did you manage to have it working?