cilium sysdump
Collects information required to troubleshoot issues with Cilium and Hubble
cilium sysdump [flags]
Options
--cilium-bugtool-flags stringArray Optional set of flags to pass to cilium-bugtool command.
--cilium-daemon-set-label-selector string The labels used to target Cilium daemon set (default "k8s-app=cilium")
--cilium-envoy-label-selector string The labels used to target Cilium Envoy pods (default "k8s-app=cilium-envoy")
--cilium-helm-release-name string The Cilium Helm release name for which to get values. If not provided then the --helm-release-name global flag is used (if provided)
--cilium-label-selector string The labels used to target Cilium pods (default "k8s-app=cilium")
--cilium-namespace string The namespace Cilium is running in. If not provided then the --namespace global flag is used (if provided)
--cilium-node-init-selector string The labels used to target Cilium node init pods (default "app=cilium-node-init")
--cilium-operator-label-selector string The labels used to target Cilium operator pods (default "io.cilium/app=operator")
--cilium-operator-namespace string The namespace Cilium operator is running in. If not provided then the --namespace global flag is used (if provided)
--cilium-spire-agent-selector string The labels used to target Cilium spire-agent pods (default "app=spire-agent")
--cilium-spire-namespace string The namespace Cilium SPIRE installation is running in
--cilium-spire-server-selector string The labels used to target Cilium spire-server pods (default "app=spire-server")
--clustermesh-apiserver-label-selector string The labels used to target 'clustermesh-apiserver' pods (default "k8s-app=clustermesh-apiserver")
--clustermesh-generate-certs-label-selector string The labels used to target the Cluster Mesh generate certs pods (default "k8s-app=clustermesh-apiserver-generate-certs")
--cni-config-directory string Directory where CNI configs are located (default "/etc/cni/net.d/")
--cni-configmap-name string The name of the CNI config map (default "cni-configuration")
--collect-logs-from-not-ready-agents Whether to collect logs from not ready Cilium agent pods (default true)
--copy-retry-limit int Retry limit for file copying operations. If set to -1, copying will be retried indefinitely. Useful for collecting sysdump while on unreliable connection. (default 100)
--debug Whether to enable debug logging
--detect-gops-pid Whether to automatically detect the gops agent PID.
--extra-label-selectors stringArray Optional set of labels selectors used to target additional pods for log collection.
-h, --help help for sysdump
--hubble-flows-count int Number of Hubble flows to collect. Setting to zero disables collecting Hubble flows. (default 10000)
--hubble-flows-timeout duration Timeout for collecting Hubble flows (default 5s)
--hubble-generate-certs-labels string The labels used to target Hubble UI pods (default "k8s-app=hubble-generate-certs")
--hubble-label-selector string The labels used to target Hubble pods (default "k8s-app=hubble")
--hubble-relay-labels string The labels used to target Hubble Relay pods (default "k8s-app=hubble-relay")
--hubble-ui-labels string The labels used to target Hubble UI pods (default "k8s-app=hubble-ui")
--logs-limit-bytes int The limit on the number of bytes to retrieve when collecting logs (default 1073741824)
--logs-since-time duration How far back in time to go when collecting logs (default 8760h0m0s)
--node-list string Comma-separated list of node IPs or names to filter pods for which to collect gops and logs
--output-filename string The name of the resulting file (without extension)
'<ts>' can be used as the placeholder for the timestamp (default "cilium-sysdump-<ts>")
--profiling Whether to enable scraping profiling data (default true)
--quick Whether to enable quick mode (i.e. skip collection of 'cilium-bugtool' output and logs)
--tetragon-helm-release-name string The Tetragon Helm release name for which to get values.
--tetragon-label-selector string The labels used to target Tetragon pods (default "app.kubernetes.io/name=tetragon")
--tetragon-namespace string The namespace Tetragon is running in (default "kube-system")
--tetragon-operator-label-selector string The labels used to target Tetragon operator pods (default "app.kubernetes.io/name=tetragon-operator")
--tracing Whether to enable scraping tracing data
--worker-count int The number of workers to use
NOTE: There is a lower bound requirement on the number of workers for the sysdump operation to be effective. Therefore, for low values, the actual number of workers may be adjusted upwards. Defaults to the number of available CPUs. (default 20)
Options inherited from parent commands
--as string Username to impersonate for the operation. User could be a regular user or a service account in a namespace.
--as-group stringArray Group to impersonate for the operation, this flag can be repeated to specify multiple groups.
--context string Kubernetes configuration context
--helm-release-name string Helm release name (default "cilium")
--kubeconfig string Path to the kubeconfig file
-n, --namespace string Namespace Cilium is running in. Can also be set via CILIUM_NAMESPACE env var (default "kube-system")
SEE ALSO
cilium - Cilium provides eBPF-based Networking, Security, and Observability for Kubernetes