检查coredns发现,coredns ping本地的dns超时
[root@crm-server ~]# kubectl logs --namespace=kube-system coredns-6d444f4677-sfrfh
.:53
[INFO] plugin/reload: Running configuration MD5 = 4e235fcc3696966e76816bcd9034ebc7
CoreDNS-1.6.9
linux/amd64, go1.14.1, 1766568
[ERROR] plugin/errors: 2 152539192193979321.8927508496407462216. HINFO: read udp 10.233.71.3:34216->10.21.9.241:53: i/o timeout
[root@crm-server ~]#
[root@crm-server ~]#
[root@crm-server ~]# kubectl logs --namespace=kube-system coredns-6d444f4677-rnzxc
.:53
[INFO] plugin/reload: Running configuration MD5 = 4e235fcc3696966e76816bcd9034ebc7
CoreDNS-1.6.9
linux/amd64, go1.14.1, 1766568
[ERROR] plugin/errors: 2 509654373290296709.787190718157698380. HINFO: read udp 10.233.71.2:41470->10.21.9.241:53: i/o timeout
检查nodeloacaldns,连接coredns svc ip被拒:
[root@crm-server ~]# kubectl logs --namespace=kube-system nodelocaldns-kcwgr
2020/10/13 06:43:20 [INFO] Using Corefile /etc/coredns/Corefile
2020/10/13 06:43:20 [ERROR] Failed to read node-cache coreFile /etc/coredns/Corefile.base - open /etc/coredns/Corefile.base: no such file or directory
2020/10/13 06:43:20 [ERROR] Failed to sync kube-dns config directory /etc/kube-dns, err: lstat /etc/kube-dns: no such file or directory
2020/10/13 06:43:20 [INFO] Added back nodelocaldns rule - {filter INPUT [-p tcp -d 169.254.25.10 --dport 53 -j ACCEPT]}
2020/10/13 06:43:20 [INFO] Added back nodelocaldns rule - {filter INPUT [-p udp -d 169.254.25.10 --dport 53 -j ACCEPT]}
2020/10/13 06:43:20 [INFO] Added back nodelocaldns rule - {filter OUTPUT [-p tcp -s 169.254.25.10 --sport 53 -j ACCEPT]}
2020/10/13 06:43:20 [INFO] Added back nodelocaldns rule - {filter OUTPUT [-p udp -s 169.254.25.10 --sport 53 -j ACCEPT]}
2020/10/13 06:43:20 [INFO] Added interface - nodelocaldns
.:53 on 169.254.25.10
cluster.local.:53 on 169.254.25.10
in-addr.arpa.:53 on 169.254.25.10
ip6.arpa.:53 on 169.254.25.10
[INFO] plugin/reload: Running configuration MD5 = adf97d6b4504ff12113ebb35f0c6413e
CoreDNS-1.6.7
linux/amd64, go1.11.13,
[ERROR] plugin/errors: 2 4616685356003502933.393542240170391009.ip6.arpa. HINFO: dial tcp 10.233.0.3:53: connect: connection refused
[ERROR] plugin/errors: 2 3954823728226110956.2439121849018967759.cluster.local. HINFO: dial tcp 10.233.0.3:53: connect: connection refused
[ERROR] plugin/errors: 2 7817138522425820044.931794010996272835.in-addr.arpa. HINFO: dial tcp 10.233.0.3:53: connect: connection refused
[ERROR] plugin/errors: 2 3954823728226110956.2439121849018967759.cluster.local. HINFO: dial tcp 10.233.0.3:53: connect: connection refused
[ERROR] plugin/errors: 2 4616685356003502933.393542240170391009.ip6.arpa. HINFO: dial tcp 10.233.0.3:53: connect: connection refused
[ERROR] plugin/errors: 2 7817138522425820044.931794010996272835.in-addr.arpa. HINFO: dial tcp 10.233.0.3:53: connect: connection refused
主机上的防火墙都已经关闭,selinux也置为disabled。
