https://halfface.se/wiki/index.php?action=history&feed=atom&title=Talos
Talos - Revision history
2026-04-19T07:27:38Z
Revision history for this page on the wiki
MediaWiki 1.43.1
https://halfface.se/wiki/index.php?title=Talos&diff=16208&oldid=prev
Ekaanbj: /* If colliding Colliding subnets */
2025-08-19T15:08:32Z
<p><span class="autocomment">If colliding Colliding subnets</span></p>
<p><b>New page</b></p><div>=talos kubernetes setup under libvirt with 3 control and 3 worker nodes=<br />
==Download latest talosctl==<br />
talosctl_install(){ sudo curl --proto =https --tlsv1.2 -fL https://github.com/siderolabs/talos/releases/latest/download/talosctl-linux-amd64 -o /usr/local/bin/talosctl ; sudo chmod 755 /usr/local/bin/talosctl ; }<br />
==Download latest talos system image.==<br />
talos_latest_iso(){<br />
LATEST=$(curl -sk https://github.com/siderolabs/talos/releases | elinks -dump -no-references -no-connect -no-home -no-numbering -dump-width 500 | grep -E '^ +v.*Latest' | awk '{print $1}')<br />
curl -kL https://github.com/siderolabs/talos/releases/download/${LATEST}/metal-amd64.iso -o talos.metal-amd64.${LATEST}.iso<br />
}<br />
==If talosctl enable file completion==<br />
type talosctl >/dev/null 2>&1 ; if [ $? -eq 0 ] ; then . <(talosctl completion bash) ; fi<br />
<br />
==Remove old==<br />
for i in control1 control2 control3 worker1 worker2 worker3 ; do virsh destroy $i ; virsh undefine $i ; done<br />
sudo find /var/lib/libvirt/images/ -type f -delete<br />
==Generate vm:s==<br />
for HOST in control1 control2 control3 worker1 worker2 worker3 ; do<br />
echo '*' $HOST<br />
sudo virt-install --name ${HOST} --vcpus 2 --memory 4096 --disk path=/var/lib/libvirt/images/${HOST}.qcow2,size=20 --cdrom /install/system/linux/talos/metal-amd64.iso --network bridge=br0,model=virtio --os-variant fedora40 --noautoconsole<br />
done<br />
==Generate a secret==<br />
talosctl gen secrets -o secrets.yaml<br />
==Generate config==<br />
talosctl gen config --with-secrets secrets.yaml talos https://10.111.222.14:6443<br />
==Change to correct disk name==<br />
sed -i 's%/dev/sda%/dev/vda%g' *<br />
==If colliding subnets==<br />
sed -i 's%10.96.0.0/12%10.96.0.0/13%g' *<br />
<br />
==Add vip: vim controlplane.yaml==<br />
network:<br />
interfaces:<br />
- deviceSelector:<br />
physical: true<br />
dhcp: true<br />
vip:<br />
ip: 10.111.222.14<br />
==Push config to control nodes. I use arp cache to figure out ip address of nodes.==<br />
nmap -sn -n 10.111.222.* >/dev/null ; for VM in control1 control2 control3 ; do echo $VM $( export VM=$VM ; MAC=$(virsh domiflist $VM | grep -oE '([0-9A-Fa-f]{2}[:-]){5}([0-9A-Fa-f]{2})') ; arp -a | grep $MAC | grep -oE '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' ) ; done | while read NODE_NAME IP_ADDRESS ; do<br />
echo '*' ${NODE_NAME} ${IP_ADDRESS}<br />
talosctl apply-config --insecure -n ${IP_ADDRESS} --file controlplane.yaml<br />
done<br />
==Push config to worker nodes. I use arp cache to figure out ip address of nodes==<br />
nmap -sn -n 10.111.222.0/24 >/dev/null ; for VM in worker1 worker2 worker3 ; do echo $VM $( export VM=$VM ; MAC=$(virsh domiflist $VM | grep -oE '([0-9A-Fa-f]{2}[:-]){5}([0-9A-Fa-f]{2})') ; arp -a | grep $MAC | grep -oE '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' ) ; done | while read NODE_NAME <br />
IP_ADDRESS ; do<br />
echo '*' ${NODE_NAME} ${IP_ADDRESS}<br />
talosctl apply-config --insecure -n ${IP_ADDRESS} --file worker.yaml<br />
done<br />
==Add control nodes to talosconfig==<br />
talosctl config endpoints $(nmap -sn -n 10.111.222.0/24 >/dev/null ; for VM in control1 control2 control3 ; do echo $VM $( export VM=$VM ; MAC=$(virsh domiflist $VM | grep -oE '([0-9A-Fa-f]{2}[:-]){5}([0-9A-Fa-f]{2})') ; arp -a | grep $MAC | grep -oE '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | grep -v 10.111.222.14 ) ; done | while read NODE_NAME IP_ADDRESS ; do host $IP_ADDRESS | awk '{print $NF}'; done | xargs) --talosconfig talosconfig<br />
==Add worker and control nodes to talosconfig==<br />
talosctl config nodes $(nmap -sn -n 10.111.222.0/24 >/dev/null ; for VM in worker1 worker2 worker3 control1 control2 control3 ; do echo $VM $( export VM=$VM ; MAC=$(virsh domiflist $VM | grep -oE '([0-9A-Fa-f]{2}[:-]){5}([0-9A-Fa-f]{2})') ; arp -a | grep $MAC | grep -oE '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | grep -v 10.111.222.14 ) ; done | while read NODE_NAME IP_ADDRESS ; do host $IP_ADDRESS | awk '{print $NF}'; done | xargs) --talosconfig talosconfig<br />
==bootstrap==<br />
CONTROL=$(nmap -sn -n 10.111.222.* >/dev/null ; for VM in control1 ; do echo $VM $( export VM=$VM ; MAC=$(virsh domiflist $VM | grep -oE '([0-9A-Fa-f]{2}[:-]){5}([0-9A-Fa-f]{2})') ; arp -a | grep $MAC | grep -oE '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' ) ; done | while read NODE_NAME <br />
IP_ADDRESS ; do host $IP_ADDRESS | awk '{print $NF}'; done)<br />
talosctl bootstrap -n $CONTROL --talosconfig talosconfig<br />
==get kubectl==<br />
talosctl kubeconfig alternative-kubeconfig --nodes $CONTROL --endpoints $CONTROL --talosconfig=talosconfig<br />
=Troubleshooting=<br />
==list disks==<br />
talosctl -n <ip> disks --insecure<br />
==List network cards==<br />
talosctl -n <ip> get links --insecure<br />
talosctl -n <ip> get links <interface> -o yaml --insecure<br />
==look at config==<br />
talosctl config info --talosconfig talosconfig<br />
==logs==<br />
talosctl logs <service> -n <ip><br />
==Which services exists==<br />
talosctl service<br />
==Health check of talos==<br />
talosctl health -n ip154<br />
==Gathering logs==<br />
talosctl support<br />
==Which nodes belong to cluster==<br />
talosctl -n <ip> get members<br />
==List etcd members. According to node you ask==<br />
talosctl -n <ip> etcd members list<br />
==List alarms==<br />
talosctl -n <ip> etcd alarm list<br />
==List staticpods==<br />
talosctl -n <ip> get staticpods<br />
==List containers==<br />
talosctl -n <ip> containers<br />
<br />
==Get manifests==<br />
talosctl -n <ip> get manifests<br />
==Checking Controller Runtime Logs==<br />
talosctl -n <ip> logs controller-runtime</div>
Ekaanbj