-
Notifications
You must be signed in to change notification settings - Fork 9.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update thanos 15.7.15 to 15.7.16, sidecars no longer show up on thanos query stores #29310
Comments
Hi @Bah27 We updated the Thanos version to It seems that, on version
Could you try with that version? It's already available in the Bitnami chart using latest version. |
This Issue has been automatically marked as "stale" because it has not had recent activity (for 15 days). It will be closed if no further activity occurs. Thanks for the feedback. |
Hello @juan131 I apologize for the lack of follow-up; I was on vacation. I will test version 0.36.1, as recommended, to check if the issue related to the TLS configuration is resolved with the fix mentioned in this pull request. In the meantime, I have observed several errors in the logs, including:
These logs show errors related to timeouts and TLS authentication issues on the following endpoints: Thank you for your patience! |
Thanks @Bah27 ! Please let us know about your insights once you try it with the latest chart version. |
Thank you @juan131! |
Hi @Bah27 Sorry for the delay in my response. I've been reviewing the values you shared paying special attention to the block below: query:
(...)
grpc:
client:
tls:
enabled: true
existingSecret:
name: thanos-cert
keyMapping:
ca-cert: ca.crt
tls-cert: tls.crt
tls-key: tls.key
clientAuthEnabled: true
stores:
- "@domain1:443"
- "@domain2:443"
- "@domain2:443"
extraFlags:
- --grpc-client-tls-skip-verify
- --store.response-timeout=0 It seems you enabled TLS for GRPC in the client side but you didn't do the same for the server side ( Also, regarding this block: query:
dnsDiscovery:
enable: false
sidecarsService: prometheus-operated
sidecarsNamespace: monitoring Please note |
Hi @juan131, Thanks for your reply and for taking the time to carefully review the configuration details. TLS for gRPC server Thanks for pointing that out—it really helped me understand the mistake. I’ll adjust the configuration as you suggested. dnsDiscovery Thanks again for the clarifications and for linking the documentation—this was super helpful! I’ll update everything and run some tests. |
Name and Version
thanos/15.7.16
What architecture are you using?
None
What steps will reproduce the bug?
Update charts thanos 15.7.15 to 15.7.16
Are you using any custom parameters or values?
NB: @domain1 is the domain name of each sidecar.
What do you see instead?
The text was updated successfully, but these errors were encountered: