K8S nginx能正常运行，但是 curl 访问 Connection refused,怎么解决？

K8S nginx能正常运行，但是 curl 访问 Connection refused,怎么解决？

centos7.5 k8s 一个k8s-master,两个节点：k8s-slave1, k8s-slave2

# master执行：
$ kubectl run test-nginx --image=nginx:alpine
$ kubectl get po -o wide
# 能正常运行
NAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES
test-nginx-5bd8859b98-qvks5 1/1 Running 0 29s 172.17.0.2 k8s-slave2 <none> <none>

$ curl 172.17.0.2
curl: (7) Failed connect to 172.17.0.2:80; Connection refused
# 但是k8s-slave2节点，$ curl 172.17.0.2是能通的，但是在master和别的节点上就curl不通。

[root@k8s-slave2 ~]# curl 192.169.165.181:30960

curl: (7) Failed connect to 192.169.165.181:30960; Connection refused
[root@k8s-slave2 ~]# 
[root@k8s-slave2 ~]# curl 172.17.0.2
<!DOCTYPE html>
<html>
<head>
Thank you for using nginx.


[root@k8s-master ~]# curl 172.17.0.2
curl: (7) Failed connect to 172.17.0.2:80; Connection refused
[root@k8s-master ~]# ping 172.17.0.2
PING 172.17.0.2 (172.17.0.2) 56(84) bytes of data.
64 bytes from 172.17.0.2: icmp_seq=1 ttl=64 time=0.096 ms
64 bytes from 172.17.0.2: icmp_seq=2 ttl=64 time=0.037 ms


[root@k8s-slave1 ~]# curl 172.17.0.2
curl: (7) Failed connect to 172.17.0.2:80; No route to host

# 三台机器的防火墙都是ACCEPT，没有问题：
iptables -L -n
Chain FORWARD (policy ACCEPT)

# 网络也是好的：
[root@k8s-master ~]# netstat -rn
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
0.0.0.0         192.168.165.2   0.0.0.0         UG        0 0          0 ens33
172.17.0.0      0.0.0.0         255.255.0.0     U         0 0          0 docker0
192.168.165.0   0.0.0.0         255.255.255.0   U         0 0          0 ens33

# 所有节点都是ready状态，镜像都已经安装了
[root@k8s-master ~]# kubectl get nodes
NAME         STATUS   ROLES    AGE   VERSION
k8s-master   Ready    master   10h   v1.16.2
k8s-slave1   Ready    <none>   10h   v1.16.2
k8s-slave2   Ready    <none>   10h   v1.16.2

[root@k8s-master ~]# kubectl get pod -n kube-system
NAME                                 READY   STATUS    RESTARTS   AGE
coredns-58cc8c89f4-29t99             1/1     Running   1          10h
coredns-58cc8c89f4-nkbqf             1/1     Running   1          10h
etcd-k8s-master                      1/1     Running   1          10h
kube-apiserver-k8s-master            1/1     Running   1          10h
kube-controller-manager-k8s-master   1/1     Running   1          10h
kube-proxy-6dvpv                     1/1     Running   2          10h
kube-proxy-6mbrd                     1/1     Running   1          10h
kube-proxy-9cwrv                     1/1     Running   1          10h
kube-scheduler-k8s-master            1/1     Running   1          10h

我交流学习k8s
可以加我微信:wqm701,也可以把我拉到运维群里，一起学习