请检查您的域名: gitlab.xxxx.top 已正确解析到集群

Choerodon Installation management
#1

  • Choerodon平台版本: 0.6.0

  • 遇到问题的执行步骤:
    ./c7nctl install -c choerodon-config.yml --no-timeout --version=0.20 --debug

  • 文档地址:

  • 环境信息(如:节点信息):
    k8s三个master节点,一个node节点
    10.20.31.107(master)
    10.20.31.108 (master)
    10.20.31.109 (master)
    10.20.31.110 (node)

  • 报错日志:
    2020/04/27 20:39:06 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:08 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:10 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:12 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:14 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:16 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:18 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:20 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:22 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:24 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:26 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:28 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:30 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:32 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:34 [INFO] Wait domain gitlab.xxxxxxxx.top point to cluster, check acme want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}, retry
    2020/04/27 20:39:36 [Error] 请检查您的域名: gitlab.xxxxxxxx.top 已正确解析到集群
    2020/04/27 20:39:36 [Error] install failed
    Error: Check domain failed want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}
    Usage:
    c7nctl install [flags]

Flags:
-c, --config-file string User Config file to read from, User define config by this file
–debug enable debug output
-h, --help help for install
–no-timeout disable install job timeout
–prefix string add prefix to all helm release
-r, --resource-file string Resource file to read from, It provide which app should be installed
–skip-input use default username and password to avoid user input
–version string specify a version

Global Flags:
–config string config file (default is $HOME/.c7n.yaml)
-o, --orgCode string org code
-p, --proCode string pro code

Check domain failed want IPKRY6J6Rioh1K214BSruQL4Qf got {“success”:false}

#2

我搞不懂的是为什么域名一定要通?而且我配置了hosts也不行,难道是choerodon服务器去检测?

#3

检查域名是否可以访问是为了避免安装完成之后猪齿鱼平台不能访问。后续会增加是否开启域名检查的选项。

域名检查是集群中的 slaver 访问集群中创建的 ingress 的checkPath

你可以在 执行 c7nctl 命令的服务器通过执行如下命令检查域名是否可以正常访问

curl gitlab.xxx.com/c7n/acme-challenge

如果无法正常访问请检查网络或域名解析是否生效

最后问一下使用的 k8s 是什么方式安装的?

#4

我的域名正在备案,能不能先部署,跳过检查域名这个步骤?k8s是按照你们文档中通过ansible 来部署的

#5

如果是本地访问的话,为什么我设置了hosts还是不行呢?

#6

k8s是使用sealos安装的,我在把k8s c7n-slver的 CLUSTER-IP解析到域名上就可以了。

#7

更正了一个错误,域名检查不是本地的,而是本地请求的 slaver 的 /forward,本质还是slaver 去请求。

域名没有备案建议使用分步部署。

使用一键部署有一个取巧的方法,设置 core dns 的hosts

#8

sealos 安装的 k8s 集群没有 nginx ingress,无法通过域名访问

#9

谢谢您的解答,我刚接触choerodon不久,请问这个slaver怎么能看到?分步步骤我看也是需要填写域名的,那不会检查吗?

#10

分步安装就需要自己去检查,不影响安装。

#11

那这些通过自动安装脚本生成的pods需要删除吗?

#12

image

#13

你好,我在把k8s c7n-slver的 CLUSTER-IP解析到域名上可以通过域名解析检测,但是到了后面需要填写gitlab的token,这需要我先登陆gitlab获取,可是我域名解析的是 CLUSTER-IP,这就导致我无法在浏览器访问这个域名,可是我如果解析k8s集群的node ip,虽然外部可以访问但是就会卡在一键安装的域名解析检测这里。请问你说的取巧的方法设置core dns需要怎么设置呢

%E5%BE%AE%E4%BF%A1%E5%9B%BE%E7%89%87_202004281527551111111111111
%E5%BE%AE%E4%BF%A1%E5%9B%BE%E7%89%87_2020042815275511111111111111363×570 22.4 KB

#14

我后面自己安装了nginx ingressTIM%E6%88%AA%E5%9B%BE2020042815320022222222222

#15

可以将 slaver 的 daemonset 删掉。

#16

你检查一下 c7n-system 的 ingress 是不是可以正常访问,添加了 nginx-ingress 通过域名访问服务应该可以成功的

#17

%E5%BE%AE%E4%BF%A1%E6%88%AA%E5%9B%BE_2qweqwe
%E5%BE%AE%E4%BF%A1%E6%88%AA%E5%9B%BE_2qweqwe884×325 10.2 KB

#18

感谢解答,我刚才看了一下nginx-ingress的日志
Error obtaining Endpoints for Service “ingress-nginx/gitlab”: no object matching key “ingress-nginx/gitlab” in local store
我刚接触这个,不是很清楚这是什么原因,安装了nginx-ingress以后还需要做什么配置才能使用吗?

%E5%BE%AE%E4%BF%A1%E6%88%AA%E5%9B%BE
%E5%BE%AE%E4%BF%A1%E6%88%AA%E5%9B%BE1330×584 56 KB

#19

1、已配置公网dns解析,gitlab.xxx.cn 解析到node节点的阿里云eip上面

2、我执行kubectl exec -it c7n-slaver-4dqd2 -n c7n-system ping gitlab.xxx.cn,显示可以ping通;

3、执行安装:./c7nctl install c7n -c config.yml --version=0.24
提示还是:
ERRO[0533] 请检查您的域名: gitlab.xxx.cn已正确解析到集群
ERRO[0533] Check Release Domain gitlab failed: Check domain failed want 788QcvdyN0tNpF4Q8dE6vU5g4J got {“success”:false}

4、执行:
[root@k8s-master ~]# curl gitlab.xxx.cn/c7n/acme-challenge
curl: (7) Failed to connect to gitlab.xxx.cn port 80: Connection timed out
咨询下,哪位大佬答疑一下,这个可能是什么问题呢?如何解决,万分感谢!