google-anthos - 已解决 - Anthos on VMWare 部署跷跷板,健康检查错误 403 Forbidden
问题描述
我们正在 VMWare 平台上安装 Anthos,现在我们在 HA 中 Seesaw 负载均衡器的管理集群部署过程中出现错误。
两个 Seesaw VM 的 Deploy 已成功创建,但在检查运行状况检查时,我们收到以下错误 403:
ubuntu@anth-mgt-wksadmin:~$ gkectl create loadbalancer --config admin-cluster.yaml -v5
Reading config with version "v1"
- Validation Category: OS Images
- [SUCCESS] Admin cluster OS images exist
- Validation Category: Admin Cluster VCenter
- [SUCCESS] Credentials
- [SUCCESS] DRS enabled
- [SUCCESS] Hosts for AntiAffinityGroups
- [SUCCESS] vCenter Version
- [SUCCESS] ESXi Version
- [SUCCESS] Datacenter
- [SUCCESS] Datastore
- [SUCCESS] Resource pool
- [SUCCESS] Folder
- [SUCCESS] Network
- Validation Category: Bundled LB
- [FAILURE] Seesaw validation: admin cluster lb health check failed: LB "10.25.94.229" is not healthy: received 403 Forbidden
- Validation Category: Network Configuration
- [SUCCESS] CIDR, VIP and static IP (availability and overlapping)
- Validation Category: GCP
- [SUCCESS] GCP service
- [SUCCESS] GCP service account
Some validation results were FAILURE or UNKNOWN. Check report above.
Preflight check failed with preflight check failed
Exit with error:
这个简单的测试也给出了相同的结果
root@jump-mgm-wks:~# wget http://10.25.94.229
--2021-07-27 13:56:04-- http://10.25.94.229/
Connecting to 10.173.119.123:8080... connected.
Proxy request sent, awaiting response... 403 Forbidden
2021-07-27 13:56:04 ERROR 403: Forbidden.
我们在日志上也收到此错误:
ubuntu@anth-mgt-bigip1:/var/log/seesaw$ cat seesaw_ha.anth-mgt-bigip1.root.log.ERROR.20210727-123208.1738
Log file created at: 2021/07/27 12:32:08
Running on machine: anth-mgt-bigip1
Binary: Built with gc go1.15.11 for linux/amd64
Log line format: [IWEF]mmdd hh:mm:ss.uuuuuu threadid file:line] msg
E0727 12:32:08.331013 1738 main.go:86] config: Failed to retrieve Config: HAConfig: Dial failed: dial unix /var/run/seesaw/engine/engine.sock: connect: no such file or directory
解决方案
使用以下参数重新创建管理工作站后解决。
gkectl delete loadbalancer --config admin-cluster.yaml --seesaw-group-file seesaw-for-gke-admin.yaml
现在将以下文件从管理员工作站的 ubuntu 主目录保存到 /backup 中的 jump-mgm-wks
amin-cluster.yaml
admin-cluster-ipblock.yaml
admin-seesaw-ipblock.yaml
gkeadm delete admin-workstation
gkeadm create admin-workstation --auto-create-service-accounts
gkectl create loadbalancer --config admin-cluster.yaml
推荐阅读
- reactjs - React.createElement:类型无效——Express/Node.js 和 React-Router
- java - 在 solaris 中制作更新的 java 源代码
- salesforce - SFDC - 流程构建器 - 基于日期字段的计划操作?早点开枪?
- javascript - 自执行箭头函数
- c# - 使用 Selenium 单击按钮的正确方法
- scip - How to read SMPS files in SCIP 6.0?
- java - 添加 LnF JAR 时找不到符号
- linux - How to grep within a loop to exclude?
- oracle - 如何在oracle目录中重命名文件时使用通配符
- r - Remove part of col names in list of data frames - R