我的书签
添加书签
移除书签Explore Termination Behavior for Pods And Their Endpoints
There are often cases when you need to terminate a Pod - be it for upgrade or scale down. In order to improve application availability, it may be important to implement a proper active connections draining.
This tutorial explains the flow of Pod termination in connection with the corresponding endpoint state and removal by using a simple nginx web server to demonstrate the concept.
The following is the example of the flow described in the Termination of Pods document.
Let’s say you have a Deployment containing of a single replica (just for demonstration purposes) and a Service:
apiVersion: apps/v1kind: Deploymentmetadata:name: nginx-deploymentlabels:app: nginxspec:replicas: 1selector:matchLabels:app: nginxtemplate:metadata:labels:app: nginxspec:terminationGracePeriodSeconds: 120 # extra long grace periodcontainers:- name: nginximage: nginx:latestports:- containerPort: 80lifecycle:preStop:exec:# Real life termination may take any time up to terminationGracePeriodSeconds.# In this example - just hang around for at least the duration of terminationGracePeriodSeconds,# at 120 seconds container will be forcibly terminated.# Note, all this time nginx will keep processing requests.command: ["/bin/sh", "-c", "sleep 180"]apiVersion: v1kind: Servicemetadata:name: nginx-servicespec:selector:app: nginxports:- protocol: TCPport: 80targetPort: 80
kubectl get endpointslice
The output is similar to this:
You can see its status, and validate that there is one endpoint registered:
kubectl get endpointslices -o json -l kubernetes.io/service-name=nginx-service
The output is similar to this:
{"addressType": "IPv4","apiVersion": "discovery.k8s.io/v1","endpoints": [{"addresses": ["10.12.1.201"],"conditions": {"ready": true,"serving": true,"terminating": false
Now let’s terminate the Pod and validate that the Pod is being terminated respecting the graceful termination period configuration:
All pods:
kubectl get pods
NAME READY STATUS RESTARTS AGEnginx-deployment-7768647bf9-b4b9s 1/1 Terminating 0 4m1snginx-deployment-7768647bf9-rkxlw 1/1 Running 0 8s
You can see that the new pod got scheduled.
While the new endpoint is being created for the new Pod, the old endpoint is still around in the terminating state:
The output is similar to this:
{"addressType": "IPv4","apiVersion": "discovery.k8s.io/v1","endpoints": [{],"conditions": {"ready": false,"serving": true,"terminating": true},"nodeName": "gke-main-default-pool-dca1511c-d17b","targetRef": {"kind": "Pod","name": "nginx-deployment-7768647bf9-b4b9s","namespace": "default","uid": "66fa831c-7eb2-407f-bd2c-f96dfe841478"},"zone": "us-central1-c"},{"addresses": ["10.12.1.202"],"conditions": {"ready": true,"serving": true,"terminating": false},"nodeName": "gke-main-default-pool-dca1511c-d17b","targetRef": {"kind": "Pod","name": "nginx-deployment-7768647bf9-rkxlw","namespace": "default","uid": "722b1cbe-dcd7-4ed4-8928-4a4d0e2bbe35"},"zone": "us-central1-c"
This allows applications to communicate their state during termination and clients (such as load balancers) to implement a connections draining functionality. These clients may detect terminating endpoints and implement a special logic for them.
In Kubernetes, endpoints that are terminating always have their ready status set as as . This needs to happen for backward compatibility, so existing load balancers will not use it for regular traffic. If traffic draining on terminating pod is needed, the actual readiness can be checked as a condition serving.
- Learn how to
- Learn more about Using a Service to Access an Application in a Cluster
- Learn more about
- Learn more about Creating an External Load Balancer
