tke集群StatefulSet类型pod域名无法解析

2023-05-19 11:16:33 浏览数 (1)

问题现象

k8s集群中创建了一个StatefulSet的工作负载,然后创建了一个headless类型的service,具体的yaml如下

代码语言:txt复制
apiVersion: apps/v1
kind: StatefulSet
metadata:
  labels:
    k8s-app: headles-svc-test
    qcloud-app: headles-svc-test
  name: headles-svc-test
  namespace: weixnie
spec:
  replicas: 1
  revisionHistoryLimit: 10
  selector:
    matchLabels:
      k8s-app: headles-svc-test
      qcloud-app: headles-svc-test
  serviceName: ""
  template:
    metadata:
      labels:
        k8s-app: headles-svc-test
        qcloud-app: headles-svc-test
    spec:
      containers:
      - image: nginx
        imagePullPolicy: Always
        name: headles-svc-test
        resources:
          limits:
            cpu: 500m
            memory: 1Gi
          requests:
            cpu: 250m
            memory: 256Mi
        securityContext:
          privileged: false
        terminationMessagePath: /dev/termination-log
        terminationMessagePolicy: File
      dnsPolicy: ClusterFirst
      imagePullSecrets:
      - name: qcloudregistrykey
      restartPolicy: Always
      schedulerName: default-scheduler
      securityContext: {}
      terminationGracePeriodSeconds: 30

---
apiVersion: v1
kind: Service
metadata:
  labels:
    k8s-app: headles-svc-test
    qcloud-app: headles-svc-test
  name: headles-svc-test
  namespace: weixnie
spec:
  clusterIP: None
  clusterIPs:
  - None
  ports:
  - name: 80-80-tcp
    port: 80
    protocol: TCP
    targetPort: 80
  selector:
    k8s-app: headles-svc-test
    qcloud-app: headles-svc-test
  sessionAffinity: None
  type: ClusterIP

但是当我在pod里面测试通过pod的域名访问nginx服务时候,提示找不到这个域名

代码语言:txt复制
bash-5.1# ping headles-svc-test-0.headles-svc-test.weixnie.svc.cluster.local
ping: bad address 'headles-svc-test-0.headles-svc-test.weixnie.svc.cluster.local'
bash-5.1# nslookup headles-svc-test-0.headles-svc-test.weixnie.svc.cluster.local
Server:         10.55.255.31
Address:        10.55.255.31:53

** server can't find headles-svc-test-0.headles-svc-test.weixnie.svc.cluster.local: NXDOMAIN

** server can't find headles-svc-test-0.headles-svc-test.weixnie.svc.cluster.local: NXDOMAIN

排查思路

svc是headless类型,并且域名也是全域名,配置都是正常到,符合规范,为什么不能解析不了呢,首先我们这里试试解析下svc的域名试试,看下是否可以解析

代码语言:txt复制
bash-5.1# nslookup headles-svc-test.weixnie.svc.cluster.local
Server:         10.55.255.31
Address:        10.55.255.31:53

Name:   headles-svc-test.weixnie.svc.cluster.local
Address: 10.55.2.61

解析service的名称是正常的,但是加上pod的名称就不行了。这里肯定是哪里配置不对,这里仔细看了下官网文档介绍https://kubernetes.io/zh-cn/docs/concepts/workloads/controllers/statefulset/

这里说明了pod的域名是由serviceName决定的,但是我们的yaml里面serviceName配置的是空。这里要想通过{pod_name}.{svc_name}.{ns}.svc.cluster.local域名访问到pod,statefulset的spec.serviceName需要配置成headless类型svc的名称才行。

解决方案

这里修改yaml,serviceName配置成headless类型svc的名称

代码语言:txt复制
spec:
  replicas: 1
  revisionHistoryLimit: 10
  selector:
    matchLabels:
      k8s-app: headles-svc-test
      qcloud-app: headles-svc-test
  serviceName: headles-svc-test
容器服务

0 人点赞