FAQ Database Discussion Community


docker pull in unit files only works at first start, gets ignored later on

coreos
I have a unit, running the "latest" tag of a docker image. The latest image is fetched by the "docker pull" command from the unit file at first start. But at any subsequent (re)starts, the "docker pull" command doesn't seem to get executed, since any new image-revisions tagged with "latest"...

Can kube-apiserver allow the unsecure connection outside of localhost?

coreos,kubernetes,etcd
I'm trying to setup a kubernetes cluster for a development environment (local vms). Because it's development I'm not using working certs for the api-server. It would seem I have to use the secure connection in order to connect minion daemons such as kube-proxy and kubelet to the master's kube-apiserver. Has...

Should I use forever/pm2 within a (Docker) container?

node.js,docker,coreos,microservices
I am refactoring a couple of node.js services. All of them used to start with forever on virtual servers, if the process crashed they just relaunch. Now, moving to containerised and state-less application structures, I think the process should exit and the container should be restarted on a failure. Is...

Etcd is running but no etcd.service is found in systemd on coreos

vagrant,coreos,systemd,kubernetes,etcd
So I'm trying to setup a master Kubernetes node on coreos in vagrant. I'm using the example master cloud-config, found here https://github.com/GoogleCloudPlatform/kubernetes/blob/master/docs/getting-started-guides/coreos/cloud-configs/master.yaml with the addition of this as the first units: - name: etcd.service command: start - name: fleet.service command: start - name: docker-tcp.socket command: start enable: true content: |...

Iptables remove specific rules by comment

linux,firewall,iptables,coreos
I need to delete some rules with same comment. For example I have rules with comment = "test it", so i can get list of them like this: sudo iptables -t nat -L | grep 'test it' But how can i delete all PREROUTING rules with comment 'test it'? UPD:...

manage containers from another container, docker

docker,multi-tenant,coreos
I need to be able to deploy a new container or manage docker containers running in CoreOS from another running docker container. docker version is 1.5.0 coreos version is 647.2.0 Right now my process for deploying a new instance of my application is using a shell script. It basically does:...

Run Kubernetes on EC2

ssh,amazon-ec2,coreos,kubernetes
I am trying to run kubernetes on EC2 and I used CoreOs alpha channel ami.I configured Kubectl ssh tunnel for the communication between Kubectl client and Kubernets API. But when I try kubectl api-versions command, I am getting following error. Couldn't get available api versions from server: Get http://MyIP:8080/api: dial...

Kubernetes minion not completely connecting

docker,coreos,kubernetes,etcd,flannel
I have a dev kubernetes cluster setup where I have a minion running kube-proxy and kubelet. Both only start if it can connect to the master's apiserver, which it can. Howerver I am getting error updating node status, will retry: error getting node "10.211.55.126": minion "10.211.55.126" not found I notice...

CoreOS Fleet, link redundant Docker container

docker,coreos,fleetctl
I have a small service that is split into 3 docker containers. One backend, one frontend and a small logging part. I now want to start them using coreOS and fleet. I want to try and start 3 redundant backend containers, so the frontend can switch between them, if one...

docker login fails -> x509: certificate signed by unknown authority .. “crypto/rsa: verification error”

osx,docker,vagrant,coreos
I have created a private docker registry which is fronted by NGINX. NGINX is where the ssl terminates. I am obfuscating my domain by using my-domain.com for the purpose of this question. I am using OSX 10.10.3 which has boot2docker installed. But it should be noted that the workflow of...

docker is using the v1 registry api when it should use v2

docker,coreos,docker-registry
I'm trying to use a self hosted docker registry v2. I should be able to push a docker image, which does work locally on the host server (coreos) running the registry v2 container. However, on a separate machine (also coreos, same version) when I try to push to the registry,...

Docker hiding IP of calling container [closed]

amazon-ec2,go,docker,iptables,coreos
Disclaimer: I am a networking newbie. Forgive me if I don't use proper vocabulary to describe my problem. Context: So I have a couple of app containers (Docker) that are to run on CoreOS. Each container must have different IAM roles. Since there will be potentially be N containers with...

Does the kubernetes scheduler support anti-affinity?

elasticsearch,coreos,kubernetes
I'm looking at deploying Kubernetes on top of a CoreOS cluster, but I think I've run into a deal breaker of sorts. If I'm using just CoreOS and fleet, I can specify within the unit files that I want certain services to not run on the same physical machine as...

How can I get the IP address of a unit started on a machine and use it in another unit with fleet?

docker,coreos,etcd
I'm new to CoreOS and Docker and I'm facing with a problem with fleet. I have a standard unit launching a POSTGRES container and I would like to know the IP address of the machine where this unit is started. I have actually a cluster of 3 machines and the...

Where can I store a cloud config file?

config,coreos
I'm installing CoreOS on a home computer (for fun), now every time I re-install the OS I have to manually create the a cloud-config.yaml file to pass to the install script. Reading the docs on the CoreOS site it states there is a way to store these files in a...

MySQL import hangs on Vagrant CoreOS box on Mac

mysql,osx,docker,vagrant,coreos
I have a local development setup using the following: Mac Yosemite 10.10.3 Vagrant 1.7.3 CoreOS alpha version 681.0.0 2 Docker containers one for apache PHP and another for mysql both based on Ubuntu 12.10 Its set up to sync the local dev directory ~/Sites to the Vagrant box using NFS,...

Is it possible to update Docker on CoreOS without updating fleet and etcd?

docker,coreos,etcd
I have blocked automatic updates of CoreOS on my cluster. I would like to update my CoreOS docker version to 1.5 which exist on the current stable version, however, the fleet version which exist on this CoreOS release has a bug which i can't live with (related to satellite services...

How does CoreOS load balancing work out there in the wild on a cloud service?

cloud,cluster-computing,load-balancing,coreos
Say I have a CoreOS cluster deployed on some cloud service somewhere. Now I have, say, 4 machines running a node.js app which follows all the 12-factor tenets and one machine with Couchbase. How does load balancing work in this scenario? Wouldn't ONE ip eventually run out of juice as...