kubectl-taint(1)

1KUBERNETES(1)                      Jan 2015                      KUBERNETES(1)
2
3
4

NAME

6       kubectl taint - Update the taints on one or more nodes
7
8
9

SYNOPSIS

11       kubectl taint [OPTIONS]
12
13
14

DESCRIPTION

16       Update the taints on one or more nodes.
17
18       0
19
20              item  A  taint consists of a key, value, and effect. As an argu‐
21              ment here, it is expressed as key=value:effect.   item  The  key
22              must  begin  with  a  letter or number, and may contain letters,
23              numbers, hyphens, dots, and underscores, up to  253  characters.
24              item  Optionally,  the key can begin with a DNS subdomain prefix
25              and a single '/', like  example.com/my-app  item  The  value  is
26              optional.  If  given, it must begin with a letter or number, and
27              may contain letters, numbers, hyphens, dots, and underscores, up
28              to    63  characters.   item  The  effect  must  be  NoSchedule,
29              PreferNoSchedule or NoExecute.  item Currently  taint  can  only
30              apply to node.
31
32

OPTIONS

34       --all=false
35           Select all nodes in the cluster
36
37
38       --allow-missing-template-keys=true
39           If  true, ignore any errors in templates when a field or map key is
40       missing in the template. Only applies to  golang  and  jsonpath  output
41       formats.
42
43
44       -o, --output=""
45           Output    format.    One   of:   json|yaml|name|go-template|go-tem‐
46       plate-file|template|templatefile|jsonpath|jsonpath-file.
47
48
49       --overwrite=false
50           If true, allow taints to be  overwritten,  otherwise  reject  taint
51       updates that overwrite existing taints.
52
53
54       -l, --selector=""
55           Selector  (label  query)  to  filter  on,  supports  '=', '==', and
56       '!='.(e.g. -l key1=value1,key2=value2)
57
58
59       --template=""
60           Template string or path to template file  to  use  when  -o=go-tem‐
61       plate,  -o=go-template-file.  The template format is golang templates [
62       ⟨http://golang.org/pkg/text/template/#pkg-overview⟩].
63
64
65       --validate=true
66           If true, use a schema to validate the input before sending it
67
68
69

OPTIONS INHERITED FROM PARENT COMMANDS

71       --alsologtostderr=false
72           log to standard error as well as files
73
74
75       --application-metrics-count-limit=100
76           Max number of application metrics to store (per container)
77
78
79       --as=""
80           Username to impersonate for the operation
81
82
83       --as-group=[]
84           Group to impersonate for the operation, this flag can  be  repeated
85       to specify multiple groups.
86
87
88       --azure-container-registry-config=""
89           Path  to the file containing Azure container registry configuration
90       information.
91
92
93       --boot-id-file="/proc/sys/kernel/random/boot_id"
94           Comma-separated list of files to check for boot-id. Use  the  first
95       one that exists.
96
97
98       --cache-dir="/builddir/.kube/http-cache"
99           Default HTTP cache directory
100
101
102       --certificate-authority=""
103           Path to a cert file for the certificate authority
104
105
106       --client-certificate=""
107           Path to a client certificate file for TLS
108
109
110       --client-key=""
111           Path to a client key file for TLS
112
113
114       --cloud-provider-gce-lb-src-cidrs=130.211.0.0/22,209.85.152.0/22,209.85.204.0/22,35.191.0.0/16
115           CIDRs opened in GCE firewall for LB traffic proxy  health checks
116
117
118       --cluster=""
119           The name of the kubeconfig cluster to use
120
121
122       --container-hints="/etc/cadvisor/container_hints.json"
123           location of the container hints file
124
125
126       --containerd="/run/containerd/containerd.sock"
127           containerd endpoint
128
129
130       --containerd-namespace="k8s.io"
131           containerd namespace
132
133
134       --context=""
135           The name of the kubeconfig context to use
136
137
138       --default-not-ready-toleration-seconds=300
139           Indicates   the   tolerationSeconds   of   the    toleration    for
140       notReady:NoExecute  that is added by default to every pod that does not
141       already have such a toleration.
142
143
144       --default-unreachable-toleration-seconds=300
145           Indicates the tolerationSeconds  of  the  toleration  for  unreach‐
146       able:NoExecute  that  is  added  by  default to every pod that does not
147       already have such a toleration.
148
149
150       --docker="unix:///var/run/docker.sock"
151           docker endpoint
152
153
154       --docker-env-metadata-whitelist=""
155           a comma-separated list of environment variable keys that  needs  to
156       be collected for docker containers
157
158
159       --docker-only=false
160           Only report docker containers in addition to root stats
161
162
163       --docker-root="/var/lib/docker"
164           DEPRECATED:  docker  root is read from docker info (this is a fall‐
165       back, default: /var/lib/docker)
166
167
168       --docker-tls=false
169           use TLS to connect to docker
170
171
172       --docker-tls-ca="ca.pem"
173           path to trusted CA
174
175
176       --docker-tls-cert="cert.pem"
177           path to client certificate
178
179
180       --docker-tls-key="key.pem"
181           path to private key
182
183
184       --enable-load-reader=false
185           Whether to enable cpu load reader
186
187
188       --event-storage-age-limit="default=0"
189           Max length of time for which to store events (per type). Value is a
190       comma  separated  list  of  key  values, where the keys are event types
191       (e.g.: creation, oom) or "default" and the value is a duration. Default
192       is applied to all non-specified event types
193
194
195       --event-storage-event-limit="default=0"
196           Max  number  of  events to store (per type). Value is a comma sepa‐
197       rated list of key values, where the keys are event  types  (e.g.:  cre‐
198       ation,  oom)  or  "default"  and  the  value  is an integer. Default is
199       applied to all non-specified event types
200
201
202       --global-housekeeping-interval=1m0s
203           Interval between global housekeepings
204
205
206       --housekeeping-interval=10s
207           Interval between container housekeepings
208
209
210       --insecure-skip-tls-verify=false
211           If true, the server's certificate will not be checked for validity.
212       This will make your HTTPS connections insecure
213
214
215       --kubeconfig=""
216           Path to the kubeconfig file to use for CLI requests.
217
218
219       --log-backtrace-at=:0
220           when logging hits line file:N, emit a stack trace
221
222
223       --log-cadvisor-usage=false
224           Whether to log the usage of the cAdvisor container
225
226
227       --log-dir=""
228           If non-empty, write log files in this directory
229
230
231       --log-file=""
232           If non-empty, use this log file
233
234
235       --log-file-max-size=1800
236           Defines the maximum size a log file can grow to. Unit is megabytes.
237       If the value is 0, the maximum file size is unlimited.
238
239
240       --log-flush-frequency=5s
241           Maximum number of seconds between log flushes
242
243
244       --logtostderr=true
245           log to standard error instead of files
246
247
248       --machine-id-file="/etc/machine-id,/var/lib/dbus/machine-id"
249           Comma-separated list of files to  check  for  machine-id.  Use  the
250       first one that exists.
251
252
253       --match-server-version=false
254           Require server version to match client version
255
256
257       -n, --namespace=""
258           If present, the namespace scope for this CLI request
259
260
261       --password=""
262           Password for basic authentication to the API server
263
264
265       --profile="none"
266           Name of profile to capture. One of (none|cpu|heap|goroutine|thread‐
267       create|block|mutex)
268
269
270       --profile-output="profile.pprof"
271           Name of the file to write the profile to
272
273
274       --request-timeout="0"
275           The length of time to wait before giving  up  on  a  single  server
276       request. Non-zero values should contain a corresponding time unit (e.g.
277       1s, 2m, 3h). A value of zero means don't timeout requests.
278
279
280       -s, --server=""
281           The address and port of the Kubernetes API server
282
283
284       --skip-headers=false
285           If true, avoid header prefixes in the log messages
286
287
288       --skip-log-headers=false
289           If true, avoid headers when opening log files
290
291
292       --stderrthreshold=2
293           logs at or above this threshold go to stderr
294
295
296       --storage-driver-buffer-duration=1m0s
297           Writes in the storage driver will be buffered  for  this  duration,
298       and committed to the non memory backends as a single transaction
299
300
301       --storage-driver-db="cadvisor"
302           database name
303
304
305       --storage-driver-host="localhost:8086"
306           database host:port
307
308
309       --storage-driver-password="root"
310           database password
311
312
313       --storage-driver-secure=false
314           use secure connection with database
315
316
317       --storage-driver-table="stats"
318           table name
319
320
321       --storage-driver-user="root"
322           database username
323
324
325       --token=""
326           Bearer token for authentication to the API server
327
328
329       --update-machine-info-interval=5m0s
330           Interval between machine info updates.
331
332
333       --user=""
334           The name of the kubeconfig user to use
335
336
337       --username=""
338           Username for basic authentication to the API server
339
340
341       -v, --v=0
342           number for the log level verbosity
343
344
345       --version=false
346           Print version information and quit
347
348
349       --vmodule=
350           comma-separated  list  of pattern=N settings for file-filtered log‐
351       ging
352
353
354

EXAMPLE

356                # Update node 'foo' with a taint with key 'dedicated' and value 'special-user' and effect 'NoSchedule'.
357                # If a taint with that key and effect already exists, its value is replaced as specified.
358                kubectl taint nodes foo dedicated=special-user:NoSchedule
359
360                # Remove from node 'foo' the taint with key 'dedicated' and effect 'NoSchedule' if one exists.
361                kubectl taint nodes foo dedicated:NoSchedule-
362
363                # Remove from node 'foo' all the taints with key 'dedicated'
364                kubectl taint nodes foo dedicated-
365
366                # Add a taint with key 'dedicated' on nodes having label mylabel=X
367                kubectl taint node -l myLabel=X  dedicated=foo:PreferNoSchedule
368
369                # Add to node 'foo' a taint with key 'bar' and no value
370                kubectl taint nodes foo bar:NoSchedule
371
372
373
374

HISTORY

381       January 2015, Originally compiled by Eric Paris (eparis at  redhat  dot
382       com)  based  on the kubernetes source material, but hopefully they have
383       been automatically generated since!
384
385
386
387Eric Paris                  kubernetes User Manuals              KUBERNETES(1)