Tech Support
Introduction to Tech Support Feature
To simplify debugging, we need a single, user-friendly command users can execute to gather all necessary diagnostic data from both management and managed Kubernetes clusters.
The Techsupport Custom Resource Definition (CRD) within Sveltos provides this capability, allowing for the collection of technical support information (tech support) from Kubernetes clusters, either on a scheduled basis or as needed.
Motivation
Because software inevitably contains bugs, it's impossible to know in advance exactly what data will be needed for debugging. This diagnostic tool aims to gather a comprehensive initial dataset, reducing the need for repeated requests to users.
Simplicity is crucial. Managing multiple Kubernetes clusters is inherently complex and prone to issues. Therefore, the diagnostic tool must be as simple as possible to avoid adding further complexity. Given the likelihood of using multiple tools across these clusters, a single, programmable tool is required to specify what data to collect and from which clusters.
Relying on external data collection products creates dependencies on different priorities, development styles, and release cycles. While this might seem easier initially, it ultimately introduces undesirable constraints. If a team can ship their software, they can also ship a matching, self-contained diagnostic tool. If you are using Sveltos, this is the tool for you.
Techsupport CRD
The below YAML example demonstrates how to configure Techsupport collection:
Example 1
cat > techsupport.yaml <<EOF
---
apiVersion: lib.projectsveltos.io/v1beta1
kind: Techsupport
metadata:
  name: techsupport
spec:
  onDemand: true  # Enables on-demand tech support collection
  deliveryMethods:  # Defines how to delivery tech support
    - name: slack   # name must be unique within a TechSupport instance
      type: Slack   # Type can be Webex, Slack, Discord, Telegram, SMTP, SFTP
      secretRef:
        name: slack
        namespace: default
  # Data collection from the management cluster
  fromManagement:
    resources:  # Specific resources to collect
      - group: ""  # Empty group indicates core Kubernetes resources
        version: v1
        kind: ConfigMap
        namespace: projectsveltos
      - group: ""
        version: v1
        kind: Secret
        namespace: projectsveltos
    logs:  # Collect logs from specific namespaces
      - namespace: projectsveltos
    events:  # Collect events from specified namespaces. Filter by type
      - namespace: projectsveltos
      - namespace: kube-system
        type: Warning  # Only collect Warning events from kube-system
  # Data collection from managed clusters
  fromManaged:
    clusterSelector:  # Filter managed clusters for collection
      matchLabels:
        env: fv  # Only collect data from clusters with label "env: fv"
    resources:  # Specific resources to collect
      - group: ""
        version: v1
        kind: Secret
        namespace: projectsveltos
      - group: apps
        version: v1
        kind: Deployments
        namespace: projectsveltos
    logs:  # Collect logs from specific namespaces
      - namespace: projectsveltos
    events:  # Collect events from specified namespaces and types
      - namespace: projectsveltos
      - namespace: kube-system
        type: Warning  # Only collect Warning events from kube-system
EOF
The Techsupport CRD allows filtering pods and resources using the label and the field selectors.
Example 2
cat > techsupport_advanced.yaml <<EOF
---
apiVersion: lib.projectsveltos.io/v1beta1
kind: Techsupport
metadata:
  name: hourly
spec:
  schedulingConfig:
    schedule: "00 * * * *"
  deliveryMethods:
  - name: discord
    type: Discord
    secretRef:
      name: discord
      namespace: default
  - name: telegram
    type: Telegram
    secretRef:
      name: telegram
      namespace: default
  fromManaged:
    clusterSelector:
      matchLabels:
        env: fv
    logs:
    - labelFilters:
      - key: env
        operation: Equal
        value: production
      - key: department
        operation: Different
        value: eng
      namespace: default
      sinceSeconds: 600
    resources:
    - group: "apps"
      version: v1
      kind: Deployment
      labelFilters:
      - key: env
        operation: Equal
        value: production
      - key: department
        operation: Different
        value: eng
      namespace: default
    - group: ""
      version: v1
      kind: Service
      labelFilters:
      - key: env
        operation: Equal
        value: production
      - key: department
        operation: Different
        value: eng
      namespace: default
EOF
- schedulingConfig.schedule field specifies when a tech-support needs to be collected. It is in Cron format.
Note
The CEL language can be used as a way to express logic.
Delivery Options
Supported Delivery Options:
 Slack Slack
 Webex Webex
 Discord Discord
 Telegram Telegram
 SMTP SMTP
 SFTP SFTP
Creating Secrets
This guide demonstrates how to create Kubernetes Secrets for each supported platform to store your credentials/necessary info.
Slack
$ kubectl create secret generic slack \
  --from-literal=SLACK_CHANNEL_ID=<your channel id> \
  --from-literal=SLACK_TOKEN=<your token> \
  --type=addons.projectsveltos.io/cluster-profile
Webex
$ kubectl create secret generic webex \
  --from-literal=WEBEX_ROOM_ID=<your channel id> \
  --from-literal=WEBEX_TOKEN=<your token> \
  --type=addons.projectsveltos.io/cluster-profile
Discord
$ kubectl create secret generic discord \
  --from-literal=DISCORD_CHANNEL_ID=<your channel id> \
  --from-literal=DISCORD_TOKEN=<your token> \
  --type=addons.projectsveltos.io/cluster-profile
Telegram
$ kubectl create secret generic telegram \
  --from-literal=TELEGRAM_CHAT_ID=<your int64 chat id> \
  --from-literal=TELEGRAM_TOKEN=<your token> \
  --type=addons.projectsveltos.io/cluster-profile
SMTP
$ kubectl create secret generic smtp \
  --from-literal=SMTP_RECIPIENTS=<COMMA-SEPARATED EMAIL ADDRESSES> \
  --from-literal=SMTP_CC=<OPTIONAL, COMMA-SEPARATED EMAIL ADDRESSES> \
  --from-literal=SMTP_BCC=<OPTIONAL, COMMA-SEPARATED EMAIL ADDRESSES> \
  --from-literal=SMTP_SENDER=<EMAIL ADDRESS> \
  --from-literal=SMTP_PASSWORD=<OPTIONAL, SMTP PASSWORD FOR EMAIL ADDRESS IF APPLICABLE> \
  --from-literal=SMTP_HOST=<SMTP SERVER HOSTNAME> \
  --from-literal=SMTP_PORT=<OPTIONAL, SMTP SERVER PORT, DEFAULTS TO "587"> \
  --type=addons.projectsveltos.io/cluster-profile
Note
You might need to create an app password, like this.
SFTP
$  kubectl create secret generic sftp \
  --from-literal=SFTP_HOST=<SFTP Server IP> \
  --from-literal=SFTP_PORT=<SFTP Server Port> \
  --from-literal=SFTP_USERNAME=<username> \
  --from-literal=SFTP_PASSWORD=<password, optional ... set SFTP_CERT otherwise>  \
  --from-literal=SFTP_CERT=<cert, optional ... set SFTP_PASSWORD otherwise>  \
  --from-literal=SFTP_PATH="/data/" \
  --from-literal=SFTP_HOST_KEY="ssh-ed25519..., optional if not set insecure ignore host will be set" \
  --type=addons.projectsveltos.io/cluster-profile
Output Format
The collected techsupport contains:
- errors.txt: This file contains any errors encountered during the collection process.
- management-cluster: This directory holds logs, resources, and events collected from the management cluster.
- managed-clusters: This directory contains subdirectories for each managed cluster matching the specified cluster selector. Each managed cluster subdirectory contains collected logs, resources, and events.
For example, if a ClusterAPI cluster named clusterapi-workload exists in the default namespace, the following directory structure would be present:
Within each managed cluster directory, you'll find the below subdirectories:
- logs: Contains collected logs.
- resources: Contains collected Kubernetes resource information.
- events: Contains collected events.
For instance, logs collected from the projectsveltos namespace within the clusterapi-workload cluster would be located at:
├── errors.txt
├── management-cluster
│   ├── events
│   │   ├── one directory per namespace
│   |   |   ├── 2025-01-03-09-08-41-component.yaml
│   ├── logs
│   │   ├── one directory per namespace
│   |   |   ├── <pod-name>-<container-name>.yaml
│   ├── resources
│   │   ├── one directory per Kind
│   |   |   ├── one directory per namespace
|   |   |   |   ├── <resource-name>.yaml
├── managed-clusters
│   ├── one path per cluster (cluster type/cluster namespace/cluster name)
|   │   ├── events
|   │   │   ├── one directory per namespace
|   │   |   |   ├── 2025-01-03-09-08-41-component.yaml
|   │   ├── logs
|   │   │   ├── one directory per namespace
|   │   |   |   ├── <pod-name>-<container-name>.yaml
|   │   ├── resources
|   │   │   ├── one directory per Kind
|   │   |   |   ├── one directory per namespace
|   |   |   |   |   ├── <resource-name>.yaml
For more information, refer to the CRD.