Kubernetes Kops - set sysctl flag on kubelet

A fix for this was merged back in May, you can see the PR here: https://github.com/kubernetes/kops/pull/5104/files

You'd enable it with:

spec:  kubelet:    ExperimentalAllowedUnsafeSysctls:      - 'net.ipv4.ip_local_port_range="10240 65535"'

It seems the flag takes a stringSlice, so you'd need to pass an array.

If that doesn't work, ensure you're using the right version of kops

kubernetes kops sysctl

I recently ran into this problem and the issue was ExperimentalAllowedUnsafeSysctls should be experimental_allowed_unsafe_sysctls in the kops config like below.

  kubelet:    experimental_allowed_unsafe_sysctls:    - net.core.somaxconn

I found this out by inspecting the componentconfig.go here: https://github.com/kubernetes/kops/blob/master/pkg/apis/kops/v1alpha2/componentconfig.go#L168

kubernetes kops sysctl

As of 2020-05-18, the proper config is, for example:

  kubelet:                                                                                                                                 allowedUnsafeSysctls:                                                                                                                  - net.ipv4.ip_local_port_range="10240 65535"

In general, all KOPS config must be camelCased.

From here, KOPS 1.16.2+

CodeHunter

Kubernetes Kops - set sysctl flag on kubelet

Recent Posts

How can I color dots in a xy scatterplot according to column value?

How to update a claim in ASP.NET Identity?

What does {0} mean when initializing an object?

Accessing members of items in a JSONArray with Java

How to log SQL statements in Spring Boot?

Powershell Get-WebSite name parameter is ignored

How to detect scroll to bottom of html element

Java synchronized method

How to test controllers with CodeIgniter?

Detect Visual Composer

Matplotlib: Specify format of floats for tick labels

Rails join a list of strings with commas and "and" before the last