CadolesKube/typhoon
7
0
Fork 0
mirror of https://github.com/puppetmaster/typhoon.git synced 2025-07-17 13:31:34 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix firewall to allow etcd client traffic between controllers

Browse Source 
* Broaden internal-etcd firewall rule to allow etcd client
traffic (2379) from other controller nodes
* Previously, kube-apiservers were only able to connect to their
node's local etcd peer. While master node outages were tolerated,
reaching a healthy peer took longer than neccessary in some cases
* Reduce time needed to bootstrap a cluster
This commit is contained in:
Dalton Hubble
2018-08-21 23:21:05 -07:00
parent b8eeafe4f9
commit e58b424882
4 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
google-cloud/container-linux/kubernetes/network.tf
View File

@ -23,7 +23,7 @@ resource "google_compute_firewall" "internal-etcd" {
allow {
protocol = "tcp"
ports = [2380]
ports = [2379, 2380]
}
source_tags = ["${var.cluster_name}-controller"]