K
Q

GKE config connector issue - Post i/o timeout

3/30/2021

I am running into the below error when creating compute IP. Config connector is already enabled, and it is a private cluster hosted on a shared network. Version 1.17.15-gke.800 

$ kubectl apply -f webapp-compute-ip. yaml
Error from server (InternalError): error when creating "webapp-compute-ip.yaml": Internal error occurred: failed calling webhook "annotation-defaulter.cnrm.cloud.google.com": Post https://cnrm-validating-webhook.cnrm-system.svc:443/annotation-defaulter?timeout=30s: dial tcp 192.168.66.130:9443: i/o timeout

$cat webapp-compute-ip.yaml

apiVersion: compute.cnrm.cloud.google.com/v1beta1
kind: ComputeAddress
metadata:
  name: webapp-ip-test
namespace: sandbox
labels:
    app: webapp
    environment: test
annotations:
cnrm.cloud.google.com/project-id: "cluster-name"
spec:
  location: global`
-- Jijo John
google-kubernetes-engine
kubernetes

Similar Questions

possible to add custom files to /srv/kubernetes?
oauth2_proxy not asking for authentication
Run a bash script from a docker container running in kubernetes pod via Jenkins job
Pod installs under Windows Helm instead of Linux
Ceph Nautilus with step by step instruction to access existing CephFS cluster from Kubernetes pod

1 Answer

4/5/2021

This problem was due to a config connector version issue.

There was a change in the webhook default port, from 443 to 9443, see

Config connector version depends on GKE version, I did not have any control over it, moreover there no is public documentation available on what config connector version is available with the GKE version. There is an existing request here.

The solution was for me to add port 9443 in the firewall rule.

-- Jijo John
Source: StackOverflow