Hi Wei, thanks for testing and confirming the issue for CAPI deployments as well.
Great you gave the Github issue your attention, much appreciated. Best regards, Stephan > Wei ZHOU <[email protected]> hat am 23.04.2023 11:20 CEST geschrieben: > > > Hi Stephan, > > It looks like a valid issue with CKS. > > I just tested k8s deployment on vpc network using CAPI, it fails with the > following error > ``` > # kubectl logs capc-controller-manager-7866f69646-cqftl -n capc-system > ... > E0423 09:14:23.782525 1 controller.go:317] > controller/cloudstackisolatednetwork "msg"="Reconciler error" > "error"="associating public IP address to csCluster: associating public IP > address with ID 10b69534-2b1b-496b-b346-c61dc9472028 to network with ID > cecbd9f8-f9dd-4e4f-903a-07ece1136a5f: Undefined error: > {\"errorcode\":431,\"errortext\":\"Can't assign ip to the network directly > when network belongs to VPC.Specify vpcId to associate ip address to > VPC\"}" "name"="capc-cluster-kvm-capc-cluster-kvm-vpc-001" > "namespace"="default" "reconciler group"="infrastructure.cluster.x-k8s.io" > "reconciler kind"="CloudStackIsolatedNetwork" > ``` > > so my previous reply was wrong. cc Ricardo. > > > -Wei > > > On Sun, 23 Apr 2023 at 10:25, Stephan Bienek <[email protected]> wrote: > > > I would not bee too sure about the CAPI deployment into a VPC networks is > > possible. > > > > I opened a Github issue about the Kubernetes provider failing to deploy in > > VPC networks, because it's missing the "Firewall service" in VPC type > > networks, as VPC networks are using the "Network ACL Service" > > https://github.com/apache/cloudstack/issues/6723 > > > > If i remember correct, in one of the last live presentations of CAPI > > deployment someone mentioned the same issue could potentially prevent CAPI > > deployments in VPC networks. > > > > But i have to admit i never tested the CAPI deployment in VPC networks > > myself so far and would be interested in a clarifying result as well. > > > > Best regards, > > Stephan > > > > > Wei ZHOU <[email protected]> hat am 23.04.2023 10:06 CEST > > geschrieben: > > > > > > > > > Hi Ricardo, > > > > > > imho, vpc network should not be a problem, you can just use the vpc tier > > > name as network name. > > > > > > It looks project is not supported in capc. It might be simple to support > > it > > > as project id is already supported by ccm. > > > > > > Deploy for other accounts - seems impossible for now. > > > > > > > > > -Wei > > > > > > On Sunday, 23 April 2023, Ricardo Pertuz <[email protected]> > > wrote: > > > > > > > Hi people, > > > > > > > > I was trying CAPI to deploy Kubernetes on Cloudstack but not sure or > > > > haven’t find the way to provide a specific project or if I can deploy > > into > > > > on a VPC network. Variables are based in names and not IDs so it’s hard > > > > from the point of view of an admin/domain admin to deploy in other > > accounts. > > > > > > > > Regards > > > > > > > > Ricardo P > > > > > > > > > >
