Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Release-1.26] - cilium_wg0 is note removed by the rke2-killall.sh script #5405

Closed
manuelbuil opened this issue Feb 9, 2024 · 1 comment
Closed

[Release-1.26] - cilium_wg0 is note removed by the rke2-killall.sh script #5405

manuelbuil opened this issue Feb 9, 2024 · 1 comment
Assignees
@aganesh-suse
Labels
kind/backport
Milestone
v1.26.14+rke2r1

Comments

@manuelbuil
Copy link
Contributor

Backport fix for cilium_wg0 is note removed by the rke2-killall.sh script
@manuelbuil manuelbuil mentioned this issue Feb 9, 2024
Merged
@manuelbuil manuelbuil added this to the v1.26.14+rke2r1 milestone Feb 9, 2024
@aganesh-suse
Copy link

Validated on release-1.26 branch with commit 0b6e0d8

Environment Details

Infrastructure

  • Cloud
  • Hosted

Node(s) CPU architecture, OS, and Version:

$ cat /etc/os-release
PRETTY_NAME="Ubuntu 22.04.2 LTS"

$ uname -m
x86_64

Cluster Configuration:

HA : 3 server / 1 agent

or

1 server/ 1 agent

Config.yaml:

token: xxxx
write-kubeconfig-mode: "0644"
node-external-ip: 1.1.1.1
cni: cilium

Helm chart config to add in manifest folder

apiVersion: helm.cattle.io/v1
kind: HelmChartConfig
metadata:
  name: rke2-cilium
  namespace: kube-system
spec:
  valuesContent: |-
    kubeProxyReplacement: true
    k8sServiceHost: <control_plane_ip_alias_kube_api_server_ip>
    k8sServicePort: 6443
    cni:
      chainingMode: "none"

    encryption:
      enabled: true
      type: wireguard

Testing Steps

  1. Copy config.yaml
$ sudo mkdir -p /etc/rancher/rke2 && sudo cp config.yaml /etc/rancher/rke2

Copy helm chart config into manifest folder: /var/lib/rancher/rke2/server/manifests

  1. Install RKE2
curl -sfL https://get.rke2.io | sudo INSTALL_RKE2_COMMIT='0b6e0d8737b894f6d77ff7a124082d7c1f3a9659' INSTALL_RKE2_TYPE='server' INSTALL_RKE2_METHOD=tar sh -
  1. Start the RKE2 service
$ sudo systemctl enable --now rke2-server
or 
$ sudo systemctl enable --now rke2-agent
  1. Check the list of interfaces, uninstall rke2 and re-check the status of virtual network interfaces. For Ex:
$ ip address show
$ rke2-killall.sh
$ ip address show

Ensure that cilium_wg0 virtual network interface is removed.

Replication Results:

  • rke2 version used for replication:
$ rke2 -v
rke2 version v1.26.13+rke2r1 (637e8a38334f603b60650b30547252a5c461fa0d)
go version go1.20.13 X:boringcrypto

$ ip address show | grep cilium
cilium_wg0: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 8921 qdisc noqueue state UNKNOWN group default

Validation Results:

  • rke2 version used for validation:
$ rke2 -v
rke2 version v1.26.13+dev.0b6e0d87 (0b6e0d8737b894f6d77ff7a124082d7c1f3a9659)
go version go1.20.13 X:boringcrypto

$ ip address show | grep cilium

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aganesh-suse aganesh-suse

Labels
kind/backport
Projects
None yet
Milestone
v1.26.14+rke2r1
Development

No branches or pull requests
2 participants
@manuelbuil @aganesh-suse