K
Q

Kube-proxy/Kubelet is enforcing iptables on the bridge and blocking KVM

10/9/2019

I upgraded Kubernetes in my cluster to version 1.16 (previously was 1.7) and now I can't access my KVMs on the same host

Kube-proxy or Kubelet is enforcing iptables on my bridges:

This is blocking the access to the KVMs I have in the hosts on this cluster. If I disable that using:

echo 0 > /proc/sys/net/bridge/bridge-nf-call-ip6tables

echo 0 > /proc/sys/net/bridge/bridge-nf-call-iptables

echo 0 > /proc/sys/net/bridge/bridge-nf-call-arptables

, I can access the KVM but if the kubelet process is restarted, the iptables get enforced again. Is there any setting that I can change, so I don't need to worry about it?

-- Thiago Bueno
iptables
kube-proxy
kubernetes
kvm
sysctl

Similar Questions

How to re-label multiple pods in k8s with kubectl label?
VPN access to in-house network not working after GKE cluster upgrade to 1.14.6
GPU resource limit
How to specify a directory in ConfigMap that is located with in a docker container running on Kubernetes?

0 Answers