kubernetes-the-hard-way/docs/11-pod-network-routes.md

# Provisioning Pod Network Routes

Pods scheduled to a node receive an IP address from the node's Pod CIDR range.
At this point pods can not communicate with other pods running on different
nodes due to missing network [routes].

In this lab you will create a route for each worker node that maps the node's
Pod CIDR range to the node's internal IP address.

> There are [other ways] to implement the Kubernetes networking model.

## The Routing Table

In this section you will gather the information required to create routes in
the `kubernetes-the-hard-way` VPC network.

Print the internal IP address and Pod CIDR range for each worker instance:

```bash
{
  NODE_0_IP=$(grep node01 machines.txt | cut -d " " -f 1)
  NODE_0_SUBNET=$(grep node01 machines.txt | cut -d " " -f 4)
  NODE_1_IP=$(grep node02 machines.txt | cut -d " " -f 1)
  NODE_1_SUBNET=$(grep node02 machines.txt | cut -d " " -f 4)
}
```

```bash
ssh vagrant@controlplane <<EOF
  sudo ip route add ${NODE_0_SUBNET} via ${NODE_0_IP}
  sudo ip route add ${NODE_1_SUBNET} via ${NODE_1_IP}
EOF
```

```bash
ssh vagrant@node01 <<EOF
  sudo ip route add ${NODE_1_SUBNET} via ${NODE_1_IP}
EOF
```

```bash
ssh vagrant@node02 <<EOF
  sudo ip route add ${NODE_0_SUBNET} via ${NODE_0_IP}
EOF
```

## Verification 

```bash
ssh vagrant@controlplane ip route
```

```text
default via XXX.XXX.XXX.XXX dev ens160 
10.200.0.0/24 via XXX.XXX.XXX.XXX dev ens160 
10.200.1.0/24 via XXX.XXX.XXX.XXX dev ens160 
XXX.XXX.XXX.0/24 dev ens160 proto kernel scope link src XXX.XXX.XXX.XXX 
```

```bash
ssh vagrant@node01 ip route
```

```text
default via XXX.XXX.XXX.XXX dev ens160 
10.200.1.0/24 via XXX.XXX.XXX.XXX dev ens160 
XXX.XXX.XXX.0/24 dev ens160 proto kernel scope link src XXX.XXX.XXX.XXX 
```

```bash
ssh vagrant@node02 ip route
```

```text
default via XXX.XXX.XXX.XXX dev ens160 
10.200.0.0/24 via XXX.XXX.XXX.XXX dev ens160 
XXX.XXX.XXX.0/24 dev ens160 proto kernel scope link src XXX.XXX.XXX.XXX 
```

Next: [Smoke Test](12-smoke-test.md)

---

[routes]: https://cloud.google.com/compute/docs/vpc/routes
[other ways]: https://kubernetes.io/docs/concepts/cluster-administration/networking/#how-to-achieve-this
update docs 2017-08-29 00:19:25 +03:00			`# Provisioning Pod Network Routes`

chg: Hostnames In Documentation Continued Updated more references to old hostnames in the documentation to reflect the new naming convention. 2025-06-02 06:37:55 +03:00			`Pods scheduled to a node receive an IP address from the node's Pod CIDR range.`
			`At this point pods can not communicate with other pods running on different`
			`nodes due to missing network [routes].`
update docs 2017-08-29 00:19:25 +03:00
chg: Hostnames In Documentation Continued Updated more references to old hostnames in the documentation to reflect the new naming convention. 2025-06-02 06:37:55 +03:00			`In this lab you will create a route for each worker node that maps the node's`
			`Pod CIDR range to the node's internal IP address.`
update docs 2017-08-29 00:19:25 +03:00
chg: Hostnames In Documentation Continued Updated more references to old hostnames in the documentation to reflect the new naming convention. 2025-06-02 06:37:55 +03:00			`> There are [other ways] to implement the Kubernetes networking model.`
update docs 2017-08-29 00:19:25 +03:00
			`## The Routing Table`

chg: Hostnames In Documentation Continued Updated more references to old hostnames in the documentation to reflect the new naming convention. 2025-06-02 06:37:55 +03:00			`In this section you will gather the information required to create routes in`
			the `kubernetes-the-hard-way` VPC network.
update docs 2017-08-29 00:19:25 +03:00
			`Print the internal IP address and Pod CIDR range for each worker instance:`

Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```bash
			`{`
chg: Hostnames In Documentation Changed server to controlplane and node-0 to node01, and node-1 to node02 in the documentation. Also started reformatting to limit lines to 80 characters. Added a section on how to enable to root account for login. 2025-06-02 05:33:01 +03:00			`NODE_0_IP=$(grep node01 machines.txt \| cut -d " " -f 1)`
			`NODE_0_SUBNET=$(grep node01 machines.txt \| cut -d " " -f 4)`
			`NODE_1_IP=$(grep node02 machines.txt \| cut -d " " -f 1)`
			`NODE_1_SUBNET=$(grep node02 machines.txt \| cut -d " " -f 4)`
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			`}`
update docs 2017-08-29 00:19:25 +03:00			```

Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```bash
chg: Hostnames In Documentation Continued Updated command that require sudo when running as vagrant user. 2025-06-03 18:40:47 +03:00			`ssh vagrant@controlplane <<EOF`
			`sudo ip route add ${NODE_0_SUBNET} via ${NODE_0_IP}`
			`sudo ip route add ${NODE_1_SUBNET} via ${NODE_1_IP}`
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			`EOF`
update docs 2017-08-29 00:19:25 +03:00			```
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00
			```bash
chg: Hostnames In Documentation Continued Updated command that require sudo when running as vagrant user. 2025-06-03 18:40:47 +03:00			`ssh vagrant@node01 <<EOF`
			`sudo ip route add ${NODE_1_SUBNET} via ${NODE_1_IP}`
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			`EOF`
update docs 2017-08-29 00:19:25 +03:00			```

Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```bash
chg: Hostnames In Documentation Continued Updated command that require sudo when running as vagrant user. 2025-06-03 18:40:47 +03:00			`ssh vagrant@node02 <<EOF`
			`sudo ip route add ${NODE_0_SUBNET} via ${NODE_0_IP}`
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			`EOF`
			```
update docs 2017-08-29 00:19:25 +03:00
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			`## Verification`
update docs 2017-08-29 00:19:25 +03:00
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```bash
chg: Hostnames In Documentation Continued Updated command that require sudo when running as vagrant user. 2025-06-03 18:40:47 +03:00			`ssh vagrant@controlplane ip route`
update docs 2017-08-29 00:19:25 +03:00			```

Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```text
			`default via XXX.XXX.XXX.XXX dev ens160`
			`10.200.0.0/24 via XXX.XXX.XXX.XXX dev ens160`
			`10.200.1.0/24 via XXX.XXX.XXX.XXX dev ens160`
			`XXX.XXX.XXX.0/24 dev ens160 proto kernel scope link src XXX.XXX.XXX.XXX`
update docs 2017-08-29 00:19:25 +03:00			```
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00
			```bash
chg: Hostnames In Documentation Continued Updated command that require sudo when running as vagrant user. 2025-06-03 18:40:47 +03:00			`ssh vagrant@node01 ip route`
update docs 2017-08-29 00:19:25 +03:00			```

Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```text
			`default via XXX.XXX.XXX.XXX dev ens160`
			`10.200.1.0/24 via XXX.XXX.XXX.XXX dev ens160`
			`XXX.XXX.XXX.0/24 dev ens160 proto kernel scope link src XXX.XXX.XXX.XXX`
			```
update docs 2017-08-29 00:19:25 +03:00
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			```bash
chg: Hostnames In Documentation Continued Updated command that require sudo when running as vagrant user. 2025-06-03 18:40:47 +03:00			`ssh vagrant@node02 ip route`
update docs 2017-08-29 00:19:25 +03:00			```
Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00
			```text
			`default via XXX.XXX.XXX.XXX dev ens160`
			`10.200.0.0/24 via XXX.XXX.XXX.XXX dev ens160`
			`XXX.XXX.XXX.0/24 dev ens160 proto kernel scope link src XXX.XXX.XXX.XXX`
update docs 2017-08-29 00:19:25 +03:00			```

Remove cloud provider and move to ARM64 2023-11-01 09:16:49 +03:00			`Next: [Smoke Test](12-smoke-test.md)`
chg: Hostnames In Documentation Continued Updated more references to old hostnames in the documentation to reflect the new naming convention. 2025-06-02 06:37:55 +03:00
			`---`

			`[routes]: https://cloud.google.com/compute/docs/vpc/routes`
			`[other ways]: https://kubernetes.io/docs/concepts/cluster-administration/networking/#how-to-achieve-this`