How to update RKE Kubelet to open read only port for Datadog to access metrics?

leonardteo · June 30, 2020, 8:41pm

Hi,

I have a few RKE clusters that were spawned using the Rancher 2.4.4 UI. I need to get Datadog monitoring working on them, but the problem is that by default, RKE does not allow unauthenticated access to the Kubelet API which Datadog needs.

I have read this document: https://rancher.com/blog/2018/2018-07-16-how-to-deploy-datadog/ and it says that we’d have to add an extra arg read-only-port 10255 to Kubelet.

How do you update Kubelet on an RKE cluster spawned using the Rancher UI to add that arg?

Thanks,

Leo

leonardteo · July 1, 2020, 12:01am

Solved it. For anyone who lands on this thread, follow these steps:

Open the cluster Dashboard UI
On the top right, there are 3 dots. Click that > Edit
On the Edit Cluster screen, scroll down to “Cluster Options”, there is a button on the right that says “Edit as YAML”. Click that. This will open the Kubernetes Options as a YAML file.

Under services, make the following addition/edits:

services:
  kubelet:
    extra_args:
      read-only-port: 10255

Click Save.

MAGIC.

Rancher is amazing.

And make sure to firewall that port.

Topic		Replies	Views
Datadog access to kubelet without RKE Rancher 2.x	2	628	September 10, 2019
How to add a new extra_binds argument to kubelet service of RKE cluster that was provisioned with Rancher Rancher 2.x	2	1727	November 24, 2020
Rke complains about 1 of 3 nodes Rancher 2.x	3	756	March 27, 2020
[SOLVED] Rancher-agent kubelet extra_binds Rancher 2.x	2	2330	March 10, 2022
Upgrading RKE binary Rancher 2.x	1	735	June 18, 2019

How to update RKE Kubelet to open read only port for Datadog to access metrics?

Related Topics