iwita
21196b4a6d
added v1.15.4
|
5 lat temu | |
|---|---|---|
| .. | ||
| .gitignore | 5 lat temu | |
| BUILD | 5 lat temu | |
| Dockerfile | 5 lat temu | |
| Makefile | 5 lat temu | |
| README.md | 5 lat temu | |
| VERSION | 5 lat temu | |
| main.go | 5 lat temu | |
| tcp.go | 5 lat temu | |
README.md
Reproduction of k8s issue #74839
Network services with heavy load will cause "connection reset" from time to time. Especially those with big payloads. When packets with sequence number out-of-window arrived k8s node, conntrack marked them as INVALID. kube-proxy will ignore them, without rewriting DNAT. The packet goes back the the original pod, who doesn't recognize the packet because of the wrong source ip, end up RSTing the connection.