Error with initial installation

[jonaagenilsen]

Loggfile:

Firewall was modified by installer:

[jonaagenilsen]

This seemed to do the trick?

iptables -I INPUT 1 -i cni0 -s 192.168.0.0/16 -j ACCEPT
iptables -I FORWARD 1 -s 10.43.0.0/16 -j ACCEPT
iptables -I FORWARD 1 -s 192.168.0.0/16 -j ACCEPT

kubectl wait --for=condition=complete --timeout=300s -n kube-system job/helm-install-traefik
job.batch/helm-install-traefik condition met

hurray :)

[jonaagenilsen]

I use bare-bones iptables. But those rules should be implemented in installer-script.

Most use firewalld I guess:

firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 1 -i cni0 -s 192.168.0.0/16 -j ACCEPT
firewall-cmd --permanent --direct --add-rule ipv4 filter FORWARD 1 -s 10.43.0.0/16 -j ACCEPT
firewall-cmd --permanent --direct --add-rule ipv4 filter FORWARD 1 -s 192.168.0.0/16 -j ACCEPT
firewall-cmd --zone=public --permanent --add-service=dns
firewall-cmd --zone=public --permanent --add-service=http
firewall-cmd --zone=public --permanent --add-service=https
firewall-cmd --reload

[jonaagenilsen]

Got this far. New hurdle to fight:
More firewall-rules? I'll investigate

[wilsonianb]

Thanks for investigating. Unfortunately, I also haven't successfully run the installer with firewall set up.
These have been on my to-do list of possible solutions to try:
k3s-io/k3s#783
https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/#ensure-iptables-tooling-does-not-use-the-nftables-backend