minikube/docs/networking.md

# Networking

The minikube VM is exposed to the host system via a host-only IP address, that can be obtained with the `minikube ip` command.
Any services of type `NodePort` can be accessed over that IP address, on the NodePort.

To determine the NodePort for your service, you can use a `kubectl` command like this (note that `nodePort` begins with lowercase `n` in JSON output):

`kubectl get service $SERVICE --output='jsonpath="{.spec.ports[0].nodePort}"'`

We also have a shortcut for fetching the minikube IP and a service's `NodePort`:

`minikube service --url $SERVICE`

## LoadBalancer emulation (`minikube tunnel`)

Services of type `LoadBalancer` can be exposed via the `minikube tunnel` command.

````shell
minikube tunnel
````

Will output:

```text
out/minikube tunnel
Password: *****
Status:
        machine: minikube
        pid: 59088
        route: 10.96.0.0/12 -> 192.168.99.101
        minikube: Running
        services: []
    errors:
                minikube: no errors
                router: no errors
                loadbalancer emulator: no errors


````

Tunnel might ask you for password for creating and deleting network routes.

## Cleaning up orphaned routes

If the `minikube tunnel` shuts down in an unclean way, it might leave a network route around.
This case the ~/.minikube/tunnels.json file will contain an entry for that tunnel.
To cleanup orphaned routes, run:

````shell
minikube tunnel --cleanup
````

## (Advanced) Running tunnel as root to avoid entering password multiple times

`minikube tunnel` runs as a separate daemon, creates a network route on the host to the service CIDR of the cluster using the cluster's IP address as a gateway.
Adding a route requires root privileges for the user, and thus there are differences in how to run `minikube tunnel` depending on the OS.

Recommended way to use on Linux with KVM2 driver and MacOSX with Hyperkit driver:

`sudo -E minikube tunnel`

Using VirtualBox on Windows, Mac and Linux _both_ `minikube start` and `minikube tunnel` needs to be started from the same Administrator user session otherwise [VBoxManage can't recognize the created VM](https://forums.virtualbox.org/viewtopic.php?f=6&t=81551).
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`# Networking`
Refactor docs Summary of changes (#1364) * README.md split up into specific tutorials in ./docs * brew as preferred installation on macOS * installation guide on README * minikube iso changelog merged with minikube changelog * developer guides moved to ./docs/contributors * no relative links on main README, so that we can port this over to kubernetes.io * ISO developer readme moved to ./docs/contributors 2017-05-03 21:53:51 +00:00
			The minikube VM is exposed to the host system via a host-only IP address, that can be obtained with the `minikube ip` command.
			Any services of type `NodePort` can be accessed over that IP address, on the NodePort.

Fix jsonpath syntax to use lowercase nodePort Documentation fix. Resolves #2559 2018-02-27 17:54:00 +00:00			To determine the NodePort for your service, you can use a `kubectl` command like this (note that `nodePort` begins with lowercase `n` in JSON output):
Refactor docs Summary of changes (#1364) * README.md split up into specific tutorials in ./docs * brew as preferred installation on macOS * installation guide on README * minikube iso changelog merged with minikube changelog * developer guides moved to ./docs/contributors * no relative links on main README, so that we can port this over to kubernetes.io * ISO developer readme moved to ./docs/contributors 2017-05-03 21:53:51 +00:00
Fix jsonpath syntax to use lowercase nodePort Documentation fix. Resolves #2559 2018-02-27 17:54:00 +00:00			`kubectl get service $SERVICE --output='jsonpath="{.spec.ports[0].nodePort}"'`
Add minikube service example to networking doc 2017-12-12 14:48:04 +00:00
			We also have a shortcut for fetching the minikube IP and a service's `NodePort`:

			`minikube service --url $SERVICE`
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			## LoadBalancer emulation (`minikube tunnel`)
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			Services of type `LoadBalancer` can be exposed via the `minikube tunnel` command.
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
			````shell
			`minikube tunnel`
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			````
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
			`Will output:`

Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			```text
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00			`out/minikube tunnel`
			`Password: *****`
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`Status:`
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00			`machine: minikube`
			`pid: 59088`
			`route: 10.96.0.0/12 -> 192.168.99.101`
			`minikube: Running`
			`services: []`
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`errors:`
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00			`minikube: no errors`
			`router: no errors`
			`loadbalancer emulator: no errors`


Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			````
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
			`Tunnel might ask you for password for creating and deleting network routes.`
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00
			`## Cleaning up orphaned routes`
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
			If the `minikube tunnel` shuts down in an unclean way, it might leave a network route around.
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`This case the ~/.minikube/tunnels.json file will contain an entry for that tunnel.`
			`To cleanup orphaned routes, run:`

			````shell
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00			`minikube tunnel --cleanup`
			````

Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`## (Advanced) Running tunnel as root to avoid entering password multiple times`
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`minikube tunnel` runs as a separate daemon, creates a network route on the host to the service CIDR of the cluster using the cluster's IP address as a gateway.
			Adding a route requires root privileges for the user, and thus there are differences in how to run `minikube tunnel` depending on the OS.
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			`Recommended way to use on Linux with KVM2 driver and MacOSX with Hyperkit driver:`
minikube tunnel (#3015) This commit introduces a new command, `minikube tunnel`, a LoadBalancer emulator functionality, that must be run with root permissions. This command: * Establishes networking routes from the host into the VM for all IP ranges used by Kubernetes. * Enables a cluster controller that allocates IPs to services external `LoadBalancer` IPs. * Cleans up routes and IPs when stopped (Ctrl+C), when `minikube` stops, and when `minikube tunnel` is ran with the `--cleanup` flag 2018-10-18 18:01:47 +00:00
			`sudo -E minikube tunnel`

Run markdownlint on all the md files in docs 2019-03-10 19:02:52 +00:00			Using VirtualBox on Windows, Mac and Linux _both_ `minikube start` and `minikube tunnel` needs to be started from the same Administrator user session otherwise [VBoxManage can't recognize the created VM](https://forums.virtualbox.org/viewtopic.php?f=6&t=81551).