Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Kubernetes NFS server pod mount works with pod ip but not with kubernetes service

Tags:

kubernetes

nfs

I created a nfs server in a pod to use it as a volume. When creating another pod with a volume, the volume mount does work with the ip of the nfs pod. Since this ip is not guaranteed to stay the same, I added a service for my nfs pod and added a fixed cluster ip. When starting the container with the volume mount, it always fails with the following error:

Unable to mount volumes for pod "nginx_default(35ecd8ec-a077-11e8-b7bc-0cc47a9aec96)": timeout expired waiting for volumes to attach or mount for pod "default"/"nginx". list of unmounted volumes=[nfs-demo]. list of unattached volumes=[nfs-demo nginx-test-account-token-2dpgg] 

    apiVersion: v1
    kind: Pod
    metadata:
      name: nfs-server
      labels:
        name: nfs-server
    spec:
      containers:
      - name: nfs-server
        image: my-nfs-server:v1
        args: ["/exports"]
        securityContext:
          privileged: true
    ---
    kind: Service
    apiVersion: v1
    metadata:
      name: nfs-service
    spec:
      selector:
        name: nfs-server
      clusterIP: "10.96.0.3"
      ports:
        - name: nfs
          port: 2049
          protocol: UDP
        - name: mountd
          port: 20048
          protocol: UDP   
        - name: rpcbind
          port: 111
          protocol: UDP
        - name: nfs-tcp
          port: 2049
          protocol: TCP
        - name: mountd-tcp
          port: 20048
          protocol: TCP
        - name: rpcbind-tcp
          port: 111
          protocol: TCP

My pod trying to mount the server:

    apiVersion: v1
    kind: Pod
    metadata:
      name: nginx
      labels:
        name: nginx
    spec:
      containers:
      - name: nginx
        image: nginx
        volumeMounts:
        - mountPath: "/exports"
          name: nfs-demo
        securityContext:
          privileged: true
      securityContext:
        supplementalGroups: [100003]
      serviceAccountName: nginx-test-account
      volumes:
      - name: nfs-demo
        nfs:
          server: 10.96.0.3
          path: "/exports"
          readOnly: false

I used this as a base for my nfs server image:

https://github.com/cpuguy83/docker-nfs-server

https://medium.com/@aronasorman/creating-an-nfs-server-within-kubernetes-e6d4d542bbb9

Does anyone have an idea why the mount ist working with the pod ip but not with the service ip?

like image 629
albrr Avatar asked Aug 15 '18 11:08

albrr

1 Answers

I found a new way to solve this problem ,you can set nfs-server port to be fixed ,then mount nfs-server by service . you can refer to https://wiki.debian.org/SecuringNFS

enter image description here enter image description here

like image 147
Liang Du Avatar answered Nov 15 '22 11:11

Liang Du
Sign in to Comment

Related questions

Kubernetes external ip loadbalancer bare metal
Kubernetes:Why does the 'insecure-skip-tls-verify' in kubeconfig not work?
Connect from Appengine to a Kubernetes service from Google Containers
Kubernetes: Docker pod starting fails except one
How are Kubernetes CPU limits enforced?
Connection between two pods located in independent Kubernetes clusters
Kubernetes - Automatically populating CloudDNS records from service endpoints
Automating MongoDB Replica set configuration on Kubernetes
H2O in Kubernetes
GKE Ingress not respecting rewrite rule
How can I configure kubectl to interact with both minikube and a deployed cluster?
What is the difference between LoadBalancer and External IPs types of Kubernetes services
How to reuse an existing persistent volume claims
Can you start a process inside a Docker container as root, while having the default user of an exec call be non-root?
Creating a service for a DaemonSet
Subscription could not be found in Azure Management API
using mongodb+srv to connect to mongodb deployed as a statefulset
Log rotation on logs consuming disk space in Google Cloud Kubernetes pod
How to get different application logs to Elasticsearch using fluentd in kubernetes
Kubernetes cpu requests/limits in heterogeneous cluster

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!