VPN 下的 Minikube 怪异行为
Minikube weird behavior under VPN
我很好奇,除了从机器上干净擦除 minikube 并重新安装之外,是否有已知的 Minikube Vpn 问题的解决方法。 Minikube 在连接到办公室网络或家庭网络时工作得很好,但在连接到 vpn 时就死机了。当我执行 kubectl get pods 时给出 i/o timeout。我确实在他们的问题部分阅读了几个 git 问题,但 none 的解决方案似乎很全面。
使用 Mac OS Minikube V0.25.Any 非常感谢您的建议!
有some issues reported around VPN for minikube.
特别是,issue 2344 显示了确切的错误消息:
$kubectl version
Client Version: version.Info{Major:"1", Minor:"9", GitVersion:"v1.9.0", GitCommit:"925c127ec6b946659ad0fd596fa959be43f0cc05", GitTreeState:"clean", BuildDate:"2017-12-15T21:07:38Z", GoVersion:"go1.9.2", Compiler:"gc", Platform:"linux/amd64"}
Unable to connect to the server: Gateway Time-out
Not sure any good solution to correct routing but there is remedy for this to disable TLS verification.
来自 issue 2325:
On a side node, on Windows 10 1709 update, Hyper-V comes with a build in "Default Switch".
If use it in minikube start, then everything works in minikube. All Host VPN (I have 2, Cisco Anyconnect and ArraySSL VPN) works inside minikube.
“vpn or proxy for easier local development (issue 38)”中建议了一些网络设置。
Issue 1413 建议:
In order to remedy VPN issues, it is helpful to specify the hostonly nic used by minikube.
This way other VMs on that NIC will have no issues talking to each other even when Cisco wrecks the local network. Docker Machine tdocker-machine create) exposes this property:
--virtualbox-hostonly-nictype "82540EM"
不过 minikube 尚不可用。
As a workaround, specifying IP addresses in the same CIDR as minikube will set put the VM on the same host only network.
For example, applying an ip address 192.168.99.XX will use the same host only network that minikube uses with its IP address 192.168.99.10X.
我建议不要将 VPN 与 Minikube 一起使用。这些变通办法并不总是对我有用,或者当我升级我的 VPN 软件或重新启动我的笔记本电脑时。
出于安全原因,我观察到 VPN 会丢弃从 Minikube 到笔记本电脑的未知接口(具有未知 IP 地址、端口和 DNS 名称)的入口流量。
当 Cisco VPN 连接到我们的业务网络时,我遇到了这个问题。我能够停止 VPN,然后启动 minikube,并且可以在 VPN 停止的情况下 运行 kubectl 版本。然后我用 minikube 运行ning 启动了 VPN,并重新发出了 kubectl version 命令,它在没有超时的情况下工作。但是我还没有测试过。
minikube version: v0.28.2
kubectl version
Client Version: version.Info{Major:"1", Minor:"11",
GitVersion:"v1.11.2",
GitCommit:"bb9ffb1654d4a729bb4cec18ff088eacc153c239",
GitTreeState:"clean", BuildDate:"2018-08-08T16:31:10Z",
GoVersion:"go1.10.3", Compiler:"gc", Platform:"darwin/amd64"}
Server Version: version.Info{Major:"1", Minor:"10",
GitVersion:"v1.10.0",
GitCommit:"fc32d2f3698e36b93322a3465f63a14e9f0eaead",
GitTreeState:"clean", BuildDate:"2018-03-26T16:44:10Z",
GoVersion:"go1.9.3", Compiler:"gc", Platform:"linux/amd64"}
在关闭 VPN 重新安装 minikube 之前,我还将 VirtualBox 升级到版本 5.2.18 r124319 (Qt5.6.3)。但是,这可能没有任何影响,因为我使用的 VirtualBox 版本比其他人建议升级到的版本要新。
我很好奇,除了从机器上干净擦除 minikube 并重新安装之外,是否有已知的 Minikube Vpn 问题的解决方法。 Minikube 在连接到办公室网络或家庭网络时工作得很好,但在连接到 vpn 时就死机了。当我执行 kubectl get pods 时给出 i/o timeout。我确实在他们的问题部分阅读了几个 git 问题,但 none 的解决方案似乎很全面。
使用 Mac OS Minikube V0.25.Any 非常感谢您的建议!
有some issues reported around VPN for minikube.
特别是,issue 2344 显示了确切的错误消息:
$kubectl version
Client Version: version.Info{Major:"1", Minor:"9", GitVersion:"v1.9.0", GitCommit:"925c127ec6b946659ad0fd596fa959be43f0cc05", GitTreeState:"clean", BuildDate:"2017-12-15T21:07:38Z", GoVersion:"go1.9.2", Compiler:"gc", Platform:"linux/amd64"}
Unable to connect to the server: Gateway Time-out
Not sure any good solution to correct routing but there is remedy for this to disable TLS verification.
来自 issue 2325:
On a side node, on Windows 10 1709 update, Hyper-V comes with a build in "Default Switch".
If use it inminikube start, then everything works in minikube. All Host VPN (I have 2, Cisco Anyconnect and ArraySSL VPN) works inside minikube.
“vpn or proxy for easier local development (issue 38)”中建议了一些网络设置。
Issue 1413 建议:
In order to remedy VPN issues, it is helpful to specify the hostonly nic used by minikube.
This way other VMs on that NIC will have no issues talking to each other even when Cisco wrecks the local network. Docker Machine tdocker-machine create) exposes this property:
--virtualbox-hostonly-nictype "82540EM"
不过 minikube 尚不可用。
As a workaround, specifying IP addresses in the same CIDR as minikube will set put the VM on the same host only network.
For example, applying an ip address 192.168.99.XX will use the same host only network that minikube uses with its IP address 192.168.99.10X.
我建议不要将 VPN 与 Minikube 一起使用。这些变通办法并不总是对我有用,或者当我升级我的 VPN 软件或重新启动我的笔记本电脑时。
出于安全原因,我观察到 VPN 会丢弃从 Minikube 到笔记本电脑的未知接口(具有未知 IP 地址、端口和 DNS 名称)的入口流量。
当 Cisco VPN 连接到我们的业务网络时,我遇到了这个问题。我能够停止 VPN,然后启动 minikube,并且可以在 VPN 停止的情况下 运行 kubectl 版本。然后我用 minikube 运行ning 启动了 VPN,并重新发出了 kubectl version 命令,它在没有超时的情况下工作。但是我还没有测试过。
minikube version: v0.28.2
kubectl version
Client Version: version.Info{Major:"1", Minor:"11",
GitVersion:"v1.11.2",
GitCommit:"bb9ffb1654d4a729bb4cec18ff088eacc153c239",
GitTreeState:"clean", BuildDate:"2018-08-08T16:31:10Z",
GoVersion:"go1.10.3", Compiler:"gc", Platform:"darwin/amd64"}
Server Version: version.Info{Major:"1", Minor:"10",
GitVersion:"v1.10.0",
GitCommit:"fc32d2f3698e36b93322a3465f63a14e9f0eaead",
GitTreeState:"clean", BuildDate:"2018-03-26T16:44:10Z",
GoVersion:"go1.9.3", Compiler:"gc", Platform:"linux/amd64"}
在关闭 VPN 重新安装 minikube 之前,我还将 VirtualBox 升级到版本 5.2.18 r124319 (Qt5.6.3)。但是,这可能没有任何影响,因为我使用的 VirtualBox 版本比其他人建议升级到的版本要新。