Closed manedurphy closed 2 years ago
Hey @manedurphy
Could you provide logs of the consul client that fails the readiness probe?
Hi @manedurphy we have not seen a response for a while, as we were waiting for follow up information. I'll go ahead and close this issue but if you have more details on why the Client was failing the readiness probe that would be helpful.
This is pretty reproducible, just install the consul helm chart on a local Kubernetes instance (like from Docker Desktop) and it always fails. I would consider this fixed if there was a way to disable the readinessProbe in the helm chart (currently you can't disable it except by editing out the readinessProbe from the consul-client daemonset).
Hey @jstaf
We have end-to-end tests with TLS enabled and they are currently not failing, so I'm not sure how to reproduce this. Currently, we test on kind, gke, aks, and eks. I've just tried with Docker Desktop, helm chart version 0.41.1 and the config that the original author has provided, and couldn't reproduce this.
If you can provide exact steps to reproduce, that could help.
Hi @jstaf, we have not heard a response in a couple of months on this. I'm going to close it for now. If you have any further details that we can use to recreate this, please reply and we will re-open the issue.
Community Note
Overview of the Issue
Reproduction Steps
Config
```yaml global: name: consul datacenter: homelab image: "hashicorp/consul:1.11.1" imageEnvoy: "envoyproxy/envoy:v1.19.1" acls: manageSystemACLs: true gossipEncryption: autoGenerate: true tls: enabled: true enableAutoEncrypt: true verify: true server: replicas: 3 securityContext: runAsNonRoot: false runAsUser: 0 tolerations: | - key: "CriticalAddonsOnly" operator: "Equal" value: "true" effect: "NoExecute" ui: enabled: true service: type: "NodePort" connectInject: enabled: true default: false replicas: 1 logLevel: "info" k8sAllowNamespaces: ["*"] k8sDenyNamespaces: [] metrics: defaultEnabled: true transparentProxy: defaultEnabled: true defaultOverwriteProbes: true syncCatalog: enabled: false client: enabled: true grpc: true controller: enabled: true ```Logs
Expected behavior
Environment details
Additional Context