K
Q

Setting up logging on ingress

10/10/2019

I'm setting up a global network policy as follows, however the documentation claims the entries are in /var/log/syslog. But which pod or resource would let me see this information?

apiVersion: projectcalico.org/v3
kind: GlobalNetworkPolicy
metadata:
 name: log-denied-packets
spec:
 applyOnForward: true
 preDNAT: true
 ingress:
 - action: Log
   destination:
     nets:
     - <loadbalancer_IP>/32
     ports:
     - 80
   protocol: TCP
   source:
     nets:
     - <client_address>/32
 - action: Log
   destination:
     nets:
     - <loadbalancer_IP>/32
     ports:
     - 80
   protocol: UDP
   source:
     nets:
     - <client_address>/32
 selector: ibm.role=='worker_public'
 order: 300
 types:
 - Ingress
-- ergonaut
kubernetes
project-calico

Similar Questions

How to record data send along api request on Google Cloud Platform
Specify Dockerfile for gcloud build submit
How does port publishing from a docker container to a kubernetes pod work?
helm upgrade -- install doesn't work correctly
I can’t deploy Mattermost locally on a Kubernetes cluster using Minikube

1 Answer

10/11/2019

For Kubernetes plugin I found this in the calico docs:

How do I view Calico CNI logs?

The Calico CNI plugin emits logs to stderr, which are then logged out by the kubelet. Where these logs end up depend on how your kubelet is configured. For deployments using systemd, you can do this via journalctl.

Hope this help.

-- Hanx
Source: StackOverflow