The logical navigation definitely works better if Pod Security admission
and PodSecurityPolicy are pages in the same section. Make It So.
Co-authored-by: Rey Lejano <rlejano@gmail.com>
Telnet is a command that really should not be used, as there is too great a chance it could be misused. NetCat, nc, is a better and newer tool for testing single open ports.
It won't be clear to readers what feature is being covered here. The
advice in this page is version-specific (especially given the removal of
the dockershim); removing this shortcode takes away a detail that might
mislead people into thinking the page has not changed recently.
The guide generates some files on one of three ETCD
hosts. It then copies files from host 1 to 2 and 3.
Due to that some file paths differ.
Update step 7 to reflect that and to match step 6.
In 1.24 kubeadm will:
- stop using the "master" label on CP nodes.
- start tainting CP nodes with both "master" and "control-plane" taints.
In 1.25 the "master" taint will be removed.
Adjust references of the "master" label/taint to the above.
* Adding a warning to Windows docs for NodePort service issues on WS2022
Signed-off-by: Mark Rossetti <marosset@microsoft.com>
* Update content/en/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
Co-authored-by: Jihoon Seo <46767780+jihoon-seo@users.noreply.github.com>
* Update content/en/docs/setup/production-environment/windows/intro-windows-in-kubernetes.md
Co-authored-by: Tim Bannister <tim@scalefactory.com>
Co-authored-by: Jihoon Seo <46767780+jihoon-seo@users.noreply.github.com>
Co-authored-by: Tim Bannister <tim@scalefactory.com>
The default kubelet configuration ConfigMap that kubeadm manages
is "kubelet-config" instead of "kubelet-config-x.yy" (where x.yy
is the Kubernetes version) in 1.24.
Cleanup references to the legacy naming in kubeadm documentation.
Generated contents in content/en/docs/reference/* are not updated.
* Update link to TECHNET article about Windows NAT
* Fix inconsistent capitalisation of win-overlay
No other instance of win-overlay is capitalised, and win-bridge in the same place on the previous row is not capitalised either.
The command "kubeadm kubeconfig user" is missing
some examples and more details on why it is needed.
- Add a new section "Generating kubeconfig files
for additional users" under the kubeadm-certs page.
- Link to this section from the kubeadm-kubeconfig reference page.
- Link to this section from the create-cluster-kubeadm page.
Touch the following files:
- Implementation details: remove docker specifics, which is changing
in 1.24
- Create cluster: small language cleanup, remove note about 1.24
- Install kubeadm: Include two up-to-date tables for Linux / Windows
with known endpoints. Include cri-dockerd.
- Kubelet integration: (side cleanup) use "container runtime" instead of
"CRI runtime" (which is incorrect). Mention that only updating
"--container-runtime-endpoint=.." is required if the user wishes
to override the CR on a certain host. Dockershim->CR-foo migration
guides would make the "--container-runtime=remote" flag explicit
and we want to remove it at some point.
- Troubleshooting kubeadm: Remove some instances of Docker troubleshooting
that imply docker as default CR, or talk about old Docker versions.
Be more generic about container runtimes.
- Adding Windows nodes: move the containerd tab before the Docker
tab, as containerd is now the default. Remove note about being explicit
about --cri-socket. Add note that crictl is required for both
Docker and containerd. Add note that cri-dockerd is required if
the user wants to use Docker EE on Windows.
There were a couple of reported problems with this guide:
- The introductory paragraph talks about single control plane nodes
and does not mention the different options for HA etcd. Clear the
language to reduce the confusion and cross-link to the ha-topology
page.
- The hostname / IP detection in kubeadm can end
up with values not suitable for the certificates that kubeadm
generates for all etcd instances. Ensure that the hostnames / IPs
are pinned by the user in the example script.
Side cleanup related to the dockershim removal:
- Use containerd in the setup example and don't mention docker as
a requirement.
* Fixes grammatical errors
* Removes period as recommended in review
* Update content/en/docs/setup/production-environment/tools/kubespray.md
Co-authored-by: Rey Lejano <rlejano@gmail.com>
Co-authored-by: Rey Lejano <rlejano@gmail.com>
* Fix broken anchor link of #type-nodeport in service.md
* Update anchor link from #nodeport to #type-nodeport
Update anchor link from #nodeport to #type-nodeport in overview.md
* Update anchor link from #nodeport to #type-nodeport
Update anchor link from #nodeport to #type-nodeport in ingress.md
* Update anchor link from #nodeport to #type-nodeport
Update anchor link from #nodeport to #type-nodeport in troubleshooting-kubeadm.md
* Update anchor link from #nodeport to #type-nodeport
Update anchor link from #nodeport to #type-nodeport in connecting-frontend-backend.md
* Update anchor link from #nodeport to #type-nodeport
Update anchor link from #nodeport to #type-nodeport in source-ip.md
Nate W
Kubernetes Prow Robot
Priyanshu Ahlawat
Tim Bannister
Lubomir I. Ivanov
Qiming Teng
serewicz
PriyanshuAhlawat
Jason Kim (Jun Chul Kim)
Christopher Negus
Mark Rossetti
Jim Bugwadia
Manish Kumar
PranshuSrivastava
Paul "TBBle" Hampson
jeremy-morren
Shubham Kuchhal
Darshna Das
Peri Thompson
Ayushman Mishra
dgengtek
Jesse Butler
SataQiu
ravisantoshgudimetla
Bridget Kromhout
Madhav Budhiraja
Yongzhi Pan
Falimonda
sandipanpanda
Vitthal Sai
Anatoliy Serputov