search

metal-stack / firewall-controller

A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics
MIT License
47 stars 4 forks source link

unable to gather nftables counter #55

Closed mwennrich closed 1 year ago

mwennrich commented 3 years ago 
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: 2020-11-06T08:18:45.789+0100        INFO        controllers.Firewall        reconciling firewall services        {"firewall": "firewall/firewall"}
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: 2020-11-06T08:18:45.907+0100        INFO        controllers.Firewall        updating status field        {"firewall": "firewall/firewall"}
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: 2020-11-06T08:18:45.911+0100        ERROR        controllers.Firewall        unable to gather nftables counter        {"error": "unable to get counter:internal_in in table:firewall obj:Receive: netlink rec
eive: no such file or directory"}
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: github.com/go-logr/zapr.(*zapLogger).Error
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         github.com/go-logr/zapr@v0.1.0/zapr.go:128
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: github.com/metal-stack/firewall-controller/pkg/collector.nfCollector.CollectDeviceStats
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         github.com/metal-stack/firewall-controller/pkg/collector/nftables_collector.go:54
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: github.com/metal-stack/firewall-controller/controllers.(*FirewallReconciler).updateStatus
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         github.com/metal-stack/firewall-controller/controllers/firewall_controller.go:415
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: github.com/metal-stack/firewall-controller/controllers.(*FirewallReconciler).Reconcile
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         github.com/metal-stack/firewall-controller/controllers/firewall_controller.go:134
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         sigs.k8s.io/controller-runtime@v0.6.0/pkg/internal/controller/controller.go:256
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         sigs.k8s.io/controller-runtime@v0.6.0/pkg/internal/controller/controller.go:232
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).worker
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         sigs.k8s.io/controller-runtime@v0.6.0/pkg/internal/controller/controller.go:211
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: k8s.io/apimachinery/pkg/util/wait.BackoffUntil.func1
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         k8s.io/apimachinery@v0.18.4/pkg/util/wait/wait.go:155
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: k8s.io/apimachinery/pkg/util/wait.BackoffUntil
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         k8s.io/apimachinery@v0.18.4/pkg/util/wait/wait.go:156
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: k8s.io/apimachinery/pkg/util/wait.JitterUntil
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         k8s.io/apimachinery@v0.18.4/pkg/util/wait/wait.go:133
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: k8s.io/apimachinery/pkg/util/wait.Until
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]:         k8s.io/apimachinery@v0.18.4/pkg/util/wait/wait.go:90
Nov 06 08:18:45 shoot--p9x7nc--fitssvct01-firewall-15251 ip[1273]: 2020-11-06T08:18:45.912+0100        ERROR        controllers.Firewall        unable to gather nftables counter        {"error": "unable to get counter:internal_out in table:firewall obj:Receive: netlink re
ceive: no such file or directory"}
majst01 commented 3 years ago

Please gimme more details where this happens

majst01 commented 1 year ago

Still relevant ?