Forum Discussion

sudh's avatar
sudh
Icon for Nimbostratus rankNimbostratus
Oct 15, 2020

HA kubernetes master setup using bigip

I am trying to setup a HA kubernetes cluster with 3 master node using Bigip. I have setup the VIPS added the wild card cert and server profile. I created an associate pool with all three master node ip and port. I followed this doc: https://docs.oracle.com/en/operating-systems/olcne/start/deploy-kube-ha.html to step as per their instruction. I am getting error below error during cluster bootstrapping. Do we need to manually upload any certificate to bigip to make it work? Kindly help. Thank you!

Oct 15 06:24:13 celvpxxx4756 kubelet: E1015 06:24:13.068806    7083 reflector.go:153] k8s.io/kubernetes/pkg/kubelet/config/apiserver.go:46: Failed to list *v1.Pod: Get https://delivery-bt.us.example.com:6443/api/v1/pods?fieldSelector=spec.nodeName%3Dcelvpxxx4756.us.example.com&limit=500&resourceVersion=0: x509: certificate signed by unknown authority

Oct 15 06:11:35 celvpxxx4756 olcne-agent: #033[36mINFO#033[0m[15/10/20 06:11:35] Setting state on the agent running  kubernetes-control-plane {"desired_state":"installing","kubernetes_version":"1.17.9-1","image_repository":"container-registry.oracle.com/olcne","apiserver_advertise_address":"","apiserver_cert_extra_sans":"","service_cidr":"10.96.0.0/12","pod_cidr":"10.244.0.0/16","apiserver_bind_port":"6443","kube_proxy_mode":"iptables","load_balancer":"edelivery-bt.us.oracle.com:6443","token":"","pod_network":"flannel","is_primary":"true","is_master":"true","join_command":"","upload_certificate_key":"0f07db8bb9f606043e4d32648a4c0a3fc004138df274a256c2c56a076406e0fd","etcd_image_tag":"3.4.3-1","coredns_image_tag":"1.6.5-1","pod-network-iface":""}