rancher2.5添加用户报错

二进制部署的k8s(1.21.2)集群
rancher 2.58+cert-manager
安装后,其他功能都正常,但是新增用户就报错

failed calling webhook "rancherauth.cattle.io": Post "https://rancher-webhook.cattle-system.svc:443/v1/webhook/validation?timeout=10s": dial tcp 10.40.0.4:9443: connect: connection refused

以为是DNS问题,开了个busybox

/ # nslookup rancher-webhook.cattle-system.svc
Server:    10.96.0.2
Address 1: 10.96.0.2 kube-dns.kube-system.svc.cluster.local

Name:      rancher-webhook.cattle-system.svc
Address 1: 10.96.188.101 rancher-webhook.cattle-system.svc.cluster.local
/ # curl https://rancher-webhook.cattle-system.svc:443/v1/webhook/validation?timeout=10s
curl: (6) Couldn't resolve host 'rancher-webhook.cattle-system.svc'
/ # ping rancher-webhook.cattle-system.svc -c 4
PING rancher-webhook.cattle-system.svc (10.96.188.101): 56 data bytes
64 bytes from 10.96.188.101: seq=0 ttl=64 time=0.078 ms
64 bytes from 10.96.188.101: seq=1 ttl=64 time=0.112 ms
64 bytes from 10.96.188.101: seq=2 ttl=64 time=0.077 ms
64 bytes from 10.96.188.101: seq=3 ttl=64 time=0.142 ms

--- rancher-webhook.cattle-system.svc ping statistics ---
4 packets transmitted, 4 packets received, 0% packet loss
round-trip min/avg/max = 0.077/0.102/0.142 ms

能解析,这是什么问题呢?CA ?

已邀请:

你可以试试导入 v1.20 去测试下,2.5.8支持的最高版本是1.20

请问下,解决了吗?我也遇到了这个问题

没解决,感觉还是我k8s二进制集群搭建的有点问题,后来我安装istio,也是各种莫名其妙的疑似DNS错误,后来换了kubeadmin部署,rancher也好了。因为是开发,不是专业的运维,没有时间精力去钻研了,就这样吧。

要回复问题请先登录注册