Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Calico Node Failure on EKS Due to Read-Only File System for IPv4 Forwarding #82

Open
smerlos opened this issue Oct 14, 2024 · 0 comments
Open

Calico Node Failure on EKS Due to Read-Only File System for IPv4 Forwarding #82

smerlos opened this issue Oct 14, 2024 · 0 comments
Assignees
@smerlos

Comments

@smerlos
Copy link

smerlos commented Oct 14, 2024

Calico nodes deployed on EKS experience failures related to iptables-legacy-save and setting IPv4 forwarding due to read-only file system access. Logs show repeated errors:

[ERROR] felix/int_dataplane.go: Failed to set IPv4 forwarding sysctl error=open /proc/sys/net/ipv4/ip_forward: read-only file system
[PANIC] felix/table.go: iptables-legacy-save command failed after retries

The issue was resolved by disabling non-privileged mode in Calico’s configuration for EKS:

apiVersion: operator.tigera.io/v1
kind: Installation
metadata:
  name: default
spec:
  nonPrivileged: Disabled
  kubernetesProvider: EKS

This configuration allows proper access to system-level settings and resolves the errors.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@smerlos smerlos

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@smerlos