Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Pods stuck in ContainerCreating with "failed to assign an IP address to container"

Tags:

kubernetes

amazon-eks

Multiple pods of a 600 pod deployment stuck in ContainerCreating after a rolling update with the message:

Failed create pod sandbox: rpc error: code = Unknown desc = NetworkPlugin cni failed to set up pod network: add cmd: failed to assign an IP address to container

What I have tried:

  • Upgraded to v1.12 on EKS and CNI 1.5.0. This issue was closed stating CNI 1.5.0 solved the issue. It did not for us. In another thread leaking ENIs was blamed but was also closed due to CNI upgrade.
  • Installed cni-metrics-helper and this is a snapshot of the output:
maxIPAddresses, value: 759.000000
ipamdActionInProgress, value: 1.000000
addReqCount, value: 16093.000000
awsAPILatency, value: 564.000000
delReqCount, value: 32337.000000
eniMaxAvailable, value: 69.000000
assignIPAddresses, value: 558.000000
totalIPAddresses, value: 682.000000
eniAllocated, value: 69.000000

Do the CNI metrics output suggest there's an issue? Seems like there are enough IPs.

What else can I try to debug?

like image 444
ProGirlXOXO Avatar asked Mar 07 '19 00:03

ProGirlXOXO

People also ask

How do I resolve Imagepullbackoff in Kubernetes?

To resolve it, double check the pod specification and ensure that the repository and image are specified correctly. If this still doesn't work, there may be a network issue preventing access to the container registry. Look in the describe pod text file to obtain the hostname of the Kubernetes node.

How many pods can run on a node in EKS?

This is the case on Amazon Elastic Kubernetes Service (EKS) where the maximum number of pods per node depends on the instance type. For example, for a t2. medium instance, the maximum number of pods is 17, for t2. small it's 11, and for t2.

How do I delete pods from Kubectl?

The action of deleting the pod is simple. To delete the pod you have created, just run kubectl delete pod nginx . Be sure to confirm the name of the pod you want to delete before pressing Enter. If you have completed the task of deleting the pod successfully, pod nginx deleted will appear in the terminal.

What is Kubernetes pod sandbox?

The pod sandbox is the abstraction that replaces the "pause" container that is used to keep namespaces open in every Kubernetes pod today.

1 Answers

It seems that you reached maximum number of IP addresses in your subnet what can suggest such thing in documentation:

maxIPAddress: the maximum number of IP addresses that can be used for Pods in the cluster. (assumes there is enough IPs in the subnet).

Please take a look also on maxUnavailable and maxSurge parameters which controls how many PODs appear during rolling upgrade - maybe your configuration assumes that during rolling upgrade you will have over 600 PODs (like 130%) and that hit limits of your AWS network.

like image 187
Jakub Bujny Avatar answered Sep 29 '22 22:09

Jakub Bujny
Sign in to Comment

Related questions

Whats the difference between "Pods" and "Static Pods" in kubernetes and when to choose "static pods" over regular pods
kubectl: Use custom-columns output with maps
Access other containers of a pod in Kubernetes
How to remove Kubectl from ubuntu 16.04 LTS
How to watch events on a kubernetes service using its go client
uninstall: Release not loaded: new: release: not found, chart deployed using helm 3
Access to Mongodb in Kubernetes
Kubernetes REST API
Volume mounts not working Kubernetes and WSL 2 and Docker
How to get logs from kubernetes using Go?
Can change clusterip to nodeport command line without editor?
How do I run a Kubernetes Job once in N hours?
Kubernetes CPU throttling with CPU usage well below requests/limits
What are all the "The resourceVersion for the provided watch is too old" warnings from event-exporter container?
How to debug failed requests with client_disconnected_before_any_response
replica set config is invalid or we are not a member of it, running in kubernetes
Istio(0.7.1) : Circuit Breaker Doesn't work for httpConsecutiveErrors
How to customise config.toml on Kubernetes?
How to make kubernetes work with dynamic ip address
Ingress controller to route TCP traffic

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!