mastodontech.de ist einer von vielen unabhängigen Mastodon-Servern, mit dem du dich im Fediverse beteiligen kannst.
Offen für alle (über 16) und bereitgestellt von Markus'Blog

Serverstatistik:

1,4 Tsd.
aktive Profile

#rancher

0 Beiträge0 Beteiligte0 Beiträge heute
Rainer "friendica" SokollAngenommen ich habe einen Host miteinem halben Dutzend <a href="https://friendica.sokoll.com/search?tag=Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> Containern. Ich hätte den Host (also eigentlich die Container) gerne hochverfügbar.<br>Welche einfachen Lösungen bieten sich an?<br>Kubernetes wäre scheinbar overkill.<br><a href="https://friendica.sokoll.com/search?tag=Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a>? <a href="https://friendica.sokoll.com/search?tag=K3s" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>K3s</span></a>? <a href="https://friendica.sokoll.com/search?tag=Portainer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Portainer</span></a>? Oder klassisch mit <a href="https://friendica.sokoll.com/search?tag=Linux-HA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux-HA</span></a> und <a href="https://friendica.sokoll.com/search?tag=DRBD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DRBD</span></a>? Oder ganz anders?
ck 👨‍💻<p>A new version of check_rancher2, an <a href="https://noc.social/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> monitoring-plugin for <a href="https://noc.social/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> clusters managed by <span class="h-card"><a href="https://fosstodon.org/@SUSE" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>SUSE</span></a></span> Rancher, is now available! </p><p>Version 1.13.0 introduces a new check type "api-token" to monitor the <a href="https://noc.social/tags/API" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>API</span></a> token expiry used by the plugin.</p><p>Since <a href="https://noc.social/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> 2.8, the API tokens are (by default) set to expire after 3 months. With this new check type you can do a pro-active <a href="https://noc.social/tags/monitoring" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monitoring</span></a> on the API token, before it expires (and avoid your monitoring going blank).</p><p><a href="https://www.claudiokuenzler.com/blog/1490/check-rancher-1.13.0-rancher2-api-token-expiry-monitoring" rel="nofollow noopener" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">claudiokuenzler.com/blog/1490/</span><span class="invisible">check-rancher-1.13.0-rancher2-api-token-expiry-monitoring</span></a></p>
Carsten<p>OrbStack und K9S - irgendwie ziemlich cool... nun muss ich nur noch rausfinden, was ich alles schoenes damit machen kann.... <a href="https://nrw.social/tags/orbstack" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>orbstack</span></a> <a href="https://nrw.social/tags/rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rancher</span></a> <a href="https://nrw.social/tags/k9s" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>k9s</span></a> <a href="https://nrw.social/tags/k8s" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>k8s</span></a></p>
Christian M. Grube 🐧<p>Upgrade <a href="https://social.tchncs.de/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> ASAP</p><p>A vulnerability has been identified within Rancher where a Restricted Administrator can change the password of Administrators and take over their accounts.</p><p><a href="https://social.tchncs.de/tags/adminlife" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>adminlife</span></a> <a href="https://social.tchncs.de/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://social.tchncs.de/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> </p><p><a href="https://github.com/rancher/rancher/security/advisories/GHSA-8p83-cpfg-fj3g" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/rancher/rancher/sec</span><span class="invisible">urity/advisories/GHSA-8p83-cpfg-fj3g</span></a></p>
ck 👨‍💻<p>This week a critical security vulnerability in <a href="https://noc.social/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a>, dubbed "<a href="https://noc.social/tags/IngressNightmare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IngressNightmare</span></a>", was published.</p><p>As we are using <a href="https://noc.social/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> managed Kubernetes clusters ourselves, we share our analysis in our latest <a href="https://noc.social/tags/blog" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blog</span></a> post.</p><p>How Rancher RKE clusters are affected, how the <a href="https://noc.social/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerability</span></a> can be mitigated and when a fix can be expected.</p><p><a href="https://www.infiniroot.com/blog/1478/kubernetes-vulnerability-ingressnightmare-rancher-clusters-affected" rel="nofollow noopener" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">infiniroot.com/blog/1478/kuber</span><span class="invisible">netes-vulnerability-ingressnightmare-rancher-clusters-affected</span></a></p>
Scott Williams 🐧<p>Here's the interesting thing about that, though: It is *not* currently possible to run an Elemental downstream cluster in Harvester, but it should be possible to deploy a TalosLinux cluster on Harvester, though not as a Rancher downstream cluster, by provision nor adoption, since Rancher agent very much assumes you're running k3s/RKE2. But you could just spin up Talos VMs in Harvester with bridged networking, etc, and it should work.</p><p><a href="https://mastodon.online/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> <a href="https://mastodon.online/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> <a href="https://mastodon.online/tags/TalosLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TalosLinux</span></a></p>
Scott Williams 🐧<p>Someone at SCaLE asked me about running <a href="https://mastodon.online/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> on <a href="https://mastodon.online/tags/TalosLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TalosLinux</span></a>. Strictly speaking, it should be possible in <a href="https://mastodon.online/tags/Harvester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Harvester</span></a> since I remember getting it to run in Eucalyptus. It is possible to do <a href="https://mastodon.online/tags/Longhorn" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Longhorn</span></a> in Talos as well, but I don't know about k3s/RKE2, but it doesn't seem practical (or possible, or in any way supported) to do that over Sidero Metal for Talos or SLEMicro for Rancher.</p><p><a href="https://mastodon.online/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a></p>
Scott Williams 🐧<p>Thanks to all who came to my baremetal <a href="https://mastodon.online/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> talk at <a href="https://mastodon.online/tags/SCaLE22x" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SCaLE22x</span></a> today! I appreciated the good questions at the end as well!</p><p><a href="https://nextcloud.lsit.ucsb.edu/index.php/s/za8AyrRzSt4rqMX?dir=/&amp;openfile=true" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">nextcloud.lsit.ucsb.edu/index.</span><span class="invisible">php/s/za8AyrRzSt4rqMX?dir=/&amp;openfile=true</span></a></p><p><a href="https://mastodon.online/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> <a href="https://mastodon.online/tags/datascience" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>datascience</span></a> <a href="https://mastodon.online/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevOps</span></a> <a href="https://mastodon.online/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.online/tags/ucsb" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ucsb</span></a></p>
robrich<p><a href="https://dev.to/crumdev/replace-docker-with-rancher-desktop-and-wsl2-on-windows-5d16" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">dev.to/crumdev/replace-docker-</span><span class="invisible">with-rancher-desktop-and-wsl2-on-windows-5d16</span></a> - setting up <a href="https://hachyderm.io/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> Desktop to pull from a custom <a href="https://hachyderm.io/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> registry. Nice walk-through of the problem and solution <a href="https://github.com/crumdev" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/crumdev</span><span class="invisible"></span></a>.</p>
Drakfot<p>Beställt mer RPi-saker. Snart dags att bygga ett nytt RPi-kluster så fort väntans tider är över. <br><a href="https://mastodon.acc.sunet.se/tags/rpi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rpi</span></a> <a href="https://mastodon.acc.sunet.se/tags/rpi5" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rpi5</span></a> <a href="https://mastodon.acc.sunet.se/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> <a href="https://mastodon.acc.sunet.se/tags/cluster" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cluster</span></a> <a href="https://mastodon.acc.sunet.se/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> <a href="https://mastodon.acc.sunet.se/tags/k8s" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>k8s</span></a></p>
Scott Williams 🐧<p>I'm very happy we went with <a href="https://mastodon.online/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> for our <a href="https://mastodon.online/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> platform. It's far from perfect, but it certainly gets the job done. </p><p><a href="https://mastodon.online/tags/SUSE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SUSE</span></a></p>
Mika<p><a href="https://sakurajima.social/tags/Rancher" rel="nofollow noopener" target="_blank">#Rancher</a>/<a href="https://sakurajima.social/tags/RKE2" rel="nofollow noopener" target="_blank">#RKE2</a> <a href="https://sakurajima.social/tags/Kubernetes" rel="nofollow noopener" target="_blank">#Kubernetes</a> cluster question - I don't need Rancher, but in the past with my RKE2 clusters, I normally deploy Rancher on a single VM using <a href="https://sakurajima.social/tags/Docker" rel="nofollow noopener" target="_blank">#Docker</a><span> just for the sake of having some sort of UI for my cluster(s) if need be - with this setup, I'm relying on importing the downstream (RKE 2) cluster(s) onto said Rancher deployment. That worked well.<br><br>This time round though, I tried deploying Rancher on the cluster itself, instead of an external VM, using </span><a href="https://sakurajima.social/tags/Helm" rel="nofollow noopener" target="_blank">#Helm</a><span>. Rancher's pretty beefy and heavy to deploy even with a single replica, and from my limited testing I found that it's easier to deploy when your cluster's pretty new and not have much resources running just yet.<br><br>What I'm curious about tho are these errors - my cluster's fine, and I'm not seeing anything wrong with it, but ever since deploying it a few days ago, I'm constantly seeing these </span><code>Liveness/Readiness probe failed</code> error on all 3 of my Master nodes (periodically most of the time, not all at once) - the same error also seems to include <code>etcd failed: reason withheld</code>. What does it mean, and how do I "address" it?</p>
.:\dGh/:.<p>"Dude, they're selling a Dockerfile for $300, it's a fucking scam"</p><p>"Holy fuck dude $1,000 for a «Team» version? Are they trying to defraud somebody?"</p><p><a href="https://getspin.pro/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">getspin.pro/</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/WebDevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebDevelopment</span></a> <a href="https://mastodon.social/tags/PHP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PHP</span></a> <a href="https://mastodon.social/tags/Laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Laravel</span></a> <a href="https://mastodon.social/tags/Database" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Database</span></a> <a href="https://mastodon.social/tags/SoftwareDevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SoftwareDevelopment</span></a> <a href="https://mastodon.social/tags/Programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Programming</span></a> <a href="https://mastodon.social/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> <a href="https://mastodon.social/tags/Containers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Containers</span></a> <a href="https://mastodon.social/tags/OCI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OCI</span></a> <a href="https://mastodon.social/tags/Podman" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Podman</span></a> <a href="https://mastodon.social/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> <a href="https://mastodon.social/tags/Cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cloud</span></a> <a href="https://mastodon.social/tags/CloudServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudServer</span></a> <a href="https://mastodon.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>webdev</span></a></p>
Mika<p>Uh... one of my <a href="https://sakurajima.social/tags/Proxmox" rel="nofollow noopener" target="_blank">#Proxmox</a> nodes exploded... wtf 😂<span><br><br>I was running the </span><a href="https://sakurajima.social/tags/Rancher" rel="nofollow noopener" target="_blank">#Rancher</a> cleanup script, to remove Rancher from my <a href="https://sakurajima.social/tags/Kubernetes" rel="nofollow noopener" target="_blank">#Kubernetes</a><span> cluster (was experimenting something), and left it. After a while I noticed that the cluster wasn't reachable. Then I checked Proxmox and saw that the node (which is also the one hosting my primary Master node of my cluster) was offline.<br><br>I went to the room and saw that the PC's power button's lights weren't on and the fans weren't running. I pressed it, and the fans started running for a while, then it sort of went quiet. I pressed it again, and then something just popped within the PC and all the motherboard lights went off.<br><br>I've no fucking idea what happened, and what damage was done (I </span><b>really</b> hope it's just the PSU) but I'm just gonna let it sit and check it later ​:blobfoxangrylaugh:​</p>
Mika<p>How do you update <a href="https://sakurajima.social/tags/Longhorn" rel="nofollow noopener" target="_blank">#Longhorn</a>'s Node Drain Policy on a <a href="https://sakurajima.social/tags/Kubernetes" rel="nofollow noopener" target="_blank">#Kubernetes</a>/<a href="https://sakurajima.social/tags/RKE2" rel="nofollow noopener" target="_blank">#RKE2</a> cluster? I think you could do it on the UI, but in this test cluster I'm experimenting with, I did not install <a href="https://sakurajima.social/tags/Rancher" rel="nofollow noopener" target="_blank">#Rancher</a><span> or "attach" this cluster to one so I don't have access to the UI.<br><br>I'm trying to update said policy to </span><code>allow-if-replica-is-stopped</code>, and see if that would solve the errors I'm getting draining nodes in my cluster: <code>Cannot evict pod as it would violate the pod's disruption budget</code><span>.<br><br>Update: nvm got it </span><a href="https://longhorn.io/docs/1.7.2/advanced-resources/deploy/customizing-default-settings/#using-kubectl" rel="nofollow noopener" target="_blank">https://longhorn.io/docs/1.7.2/advanced-resources/deploy/customizing-default-settings/#using-kubectl</a><span><br><br>Didn't solve my error though.</span></p>
joostruis<p>What building a repository for <a href="https://allthingstech.social/tags/MocaccinoOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MocaccinoOS</span></a> <a href="https://allthingstech.social/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> based on <a href="https://allthingstech.social/tags/Gentoo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Gentoo</span></a> looks like.</p><p><a href="https://allthingstech.social/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> <a href="https://allthingstech.social/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> <a href="https://allthingstech.social/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a></p>
Scott Williams 🐧<p>Dear <a href="https://mastodon.online/tags/IBM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IBM</span></a>, <a href="https://mastodon.online/tags/SUSE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SUSE</span></a> Observability (aka StackState) explicitly supports <a href="https://mastodon.online/tags/OpenShift" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenShift</span></a>. It would be amazing if <a href="https://mastodon.online/tags/ManageIQ" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ManageIQ</span></a> explicitly supported <a href="https://mastodon.online/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> (including Harvester), because I as a consumer that has used all of these things would love to see some friendly competition between these two.</p>
ADMIN magazine<p>SUSE announces early access of <span class="h-card" translate="no"><a href="https://fosstodon.org/@SUSE" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>SUSE</span></a></span> Cloud Observability, a platform designed for Rancher-managed Kubernetes clusters <br><a href="https://www.admin-magazine.com/News/SUSE-Cloud-Observability-Announced" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">admin-magazine.com/News/SUSE-C</span><span class="invisible">loud-Observability-Announced</span></a><br><a href="https://hachyderm.io/tags/SUSE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SUSE</span></a> <a href="https://hachyderm.io/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a> <a href="https://hachyderm.io/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a> <a href="https://hachyderm.io/tags/cluster" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cluster</span></a> <a href="https://hachyderm.io/tags/SaaS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SaaS</span></a> <a href="https://hachyderm.io/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloud</span></a> <a href="https://hachyderm.io/tags/OpenTelemetry" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenTelemetry</span></a></p>
BSI WID Advisories Feed<p><a href="https://social.adlerweb.info/tags/BSI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BSI</span></a> WID-SEC-2024-3504: [NEU] [mittel] <a href="https://social.adlerweb.info/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a>: Schwachstelle ermöglicht Offenlegung von Informationen</p><p>Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Rancher ausnutzen, um Informationen offenzulegen.</p><p><a href="https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3504" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">wid.cert-bund.de/portal/wid/se</span><span class="invisible">curityadvisory?name=WID-SEC-2024-3504</span></a></p>
Lukas 💻📌<p>Hey <a href="https://fosstodon.org/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevOps</span></a> community of the Fediverse, </p><p>I'm diving into <a href="https://fosstodon.org/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kubernetes</span></a>, <a href="https://fosstodon.org/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a>, <a href="https://fosstodon.org/tags/Rancher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rancher</span></a>, and <a href="https://fosstodon.org/tags/AzureDevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AzureDevOps</span></a> for work. Any good resources, tutorials, or YouTube videos you'd recommend to help me get up to speed? Appreciate your suggestions and boosts!</p>