KalmHow To Install Kalm Cloud
Kalm installs smoothly into almost any existing Kubernetes cluster.
- Go to http://kalm.dev/signin
Signing in can be done with either Github or Google OAuth, which effectively creates a Kalm account.
After signing in, click the INSTALL NEW CLUSTER button in the upper right corner:
Choose a name for your cluster
Before running the installation script, double check to make sure
kubectlis pointing at the desired cluster. Runningkubectl config get-contextwill mark a new cluster with a*in the output.Run the install script:
The installation process will continuously update while it runs:
Typically, the installation takes around 15-30 minutes to complete.
- Once done, click the GO TO DASHBOARD button to start using Kalm.
Troubleshooting (WORK IN PROGRESS)
While installing Kalm is designed to be as smooth as possible, we have provided some additional information here to help with troubleshooting just in case something goes wrong during the process. The troubleshooting guides below are categorized by which step of the installation path fails.
Possible issues for each install step:
INSTALL_CERT_MANAGER: Kalm is installing Cert-Manager. If this step is stuck, the cluster is likely having problems installing the pods. Run
kubectl get pods -n cert-managerto see if anything is going wrong. Most normal clusters should return something similiar to:โ kubectl get pods -n cert-managerNAME READY STATUS RESTARTS AGEcert-manager-7cb75cf6b4-48jvk 1/1 Running 0 29dcert-manager-cainjector-759496659c-7smnl 1/1 Running 0 29dcert-manager-webhook-7c75b89bf6-p9lwx 1/1 Running 0 29dINSTALL_ISTIO: Kalm is installing Istio. If this step is stuck, the cluster is (perhaps obviously) likely having problems installing Istio, run
kubectl get pods -n istio-operatorandkubectl get pods -n istio-systemto see if anything is going wrong, a normal running cluster should return something similar as:โ kubectl get pods -n istio-operatorNAME READY STATUS RESTARTS AGEistio-operator-7654b568b7-nqclz 1/1 Running 0 16dโ kubectl get pods -n istio-systemNAME READY STATUS RESTARTS AGEistio-ingressgateway-59cf75bf7-hqpkd 1/1 Running 0 16distiod-59cc49f5d9-cmzwb 1/1 Running 0 16dprometheus-6c77954d87-wmrpn 1/1 Running 0 16dINSTALL_KALM_CONTROLLER: Kalm is installing kalm-controller, if this step stuck, very likely the cluster is having problems installing the pods, run
kubectl get pods -n kalm-system -l control-plane=controllerto see if anything is going wrong, a normal running cluster should return something similar as:โ kubectl get pods -n kalm-system -l control-plane=controllerNAME READY STATUS RESTARTS AGEkalm-controller-758c5498c9-6vtp7 3/3 Running 0 110mINSTALL_KALM_DASHBOARD: Kalm is installing the Kalm dashboard, if this step stuck, very likely the cluster is having problems installing the pods, run
kubectl get pods -n kalm-system -l kalm-component=kalmto see if anything is going wrong, a normal running cluster should return something similar as:โ kubectl get pods -n kalm-system -l kalm-component=kalmNAME READY STATUS RESTARTS AGEkalm-6654df4b5c-w88cv 2/2 Running 0 121mINSTALL_ACME_SERVER: Kalm is installing the ACME DNS server, if this step stuck, very likely the cluster is having problems installing the pods, run
kubectl get pods -n kalm-system -l kalm-component=acme-serverto see if anything is going wrong, a normal running cluster should return something similar as:โ kubectl get pods -n kalm-system -l kalm-component=acme-serverNAME READY STATUS RESTARTS AGEacme-server-5f9f786f58-89tgl 2/2 Running 0 125mCONFIGURE_KALM_DASHBOARD_ACCESS: Kalm is waiting for Cloud Provider to assign a public Load Balancer for our Kalm dashboard, use
kubectl describe services -n istio-system istio-ingressgatewayto check the details of our service for the dashboard. Normally the cloud provider will assign a public IP or domain for our service. runkubectl get services -n istio-system istio-ingressgateway -ojsonpath='{.status}'to check out the info.โ kalm-cloud git:(main) kubectl get services -n istio-system istio-ingressgateway -ojsonpath='{.status}'{"loadBalancer":{"ingress":[{"hostname":"a8298a1a1a8ee473cbb923fa5de3576c-60911533.ap-northeast-1.elb.amazonaws.com"}]}}if the return result is empty, run
kubectl describe services -n istio-system istio-ingressgatewayto get related events of the service.โ kubectl describe services -n istio-system istio-ingressgatewayName: istio-ingressgatewayNamespace: istio-system...Session Affinity: NoneExternal Traffic Policy: ClusterEvents: ...The last section of the output: Events may show some related info about the reason why the assignment is not working, there are several possible reasons for the failure: wrong tags of the AWS VPC subnets, number of load balancers is out of quota, etc(see https://aws.amazon.com/premiumsupport/knowledge-center/eks-load-balancers-troubleshooting/ for more details). It can also happen that the assignment silently fails without any warning events, in this case, it will be really hard to debug, and this is why we strongly suggest you to setup the EKS cluster using our recommend ways here: How to setup EKS.
CONFIGURE_ACME_SERVER_ACCESS: similar to CONFIGURE_KALM_DASHBOARD_ACCESS, this is Kalm waiting for Cloud Provider to assign a public Load Balancer for our ACME DNS server, use
kubectl get service -n kalm-system lb-svc-acme-server -ojsonpath='{.status}'andkubectl describe service -n kalm-system lb-svc-acme-serverto see details of the service.โ kubectl get service -n kalm-system lb-svc-acme-server -ojsonpath='{.status}'{"loadBalancer":{"ingress":[{"hostname":"xxx.elb.ap-northeast-1.amazonaws.com"}]}โ kubectl describe service -n kalm-system lb-svc-acme-serverName: lb-svc-acme-serverNamespace: kalm-system...Session Affinity: NoneExternal Traffic Policy: ClusterEvents: <none>REPORT_CLUSTER_INFO: Kalm is reporting cluster info like the public IPs and Domains the Cloud Provider just assigned to our to Kalm Cloud.
CLUSTER_FULLY_SETUP: Kalm is waiting for the final setup of the cluster, the most time-consuming process is the issuance of the HTTPS certificate of our Kalm dashboard, which can take 10 - 15 minutes.