Metrics server Pod is CrashLoopBackOff

metrics server pod is crashing with the below error.

panic: failed to create listener: failed to listen on listen tcp bind: permission denied

metrics server is installed using

Cluster information:

Kubernetes version:
Client Version: v1.17.1
Server Version: v1.17.1
Cloud being used: installed On-premise environment(Redhat Linux server 7)
Installation method: manual(followed the steps are given Installing kubeadm - Kubernetes) and created cluster
Host OS: Redhat Linux server 7
Flannel overlay network installed
CNI and version:

CRI and version:

You can format your yaml by highlighting it and pressing Ctrl-Shift-C, it will make your output easier to read.

It looks like your pod wants to bind to port 443 which is allowed only for root user (ports < 1024 are restricted). Do you use these manifests: to deploy it?


  • port: 443
    protocol: TCP
    targetPort: main-port

yes, i see above in service object, Could you please guide me to fix it.

Service can have low numbered ports, the problem is with pod with such ports.

In this script we can see that port start on port 4443 (additional args and in template.spec).

i have modified like below and still getting same error. Please help me to fix it.

serviceAccountName: metrics-server
# mount in tmp so we can safely use from-scratch images and/or read-only containers
- name: tmp-dir
emptyDir: {}
- name: metrics-server
- --cert-dir=/tmp
- --kubelet-insecure-tls
- name: main-port
containerPort: 4443
protocol: TCP

Your args:

- --cert-dir=/tmp
- --kubelet-insecure-tls


    - --secure-port=4443

is missing…

i have added it to deployment, but getting below error
- --cert-dir=/tmp
- --kubelet-insecure-tls
- --secure-port=4443

panic: Get dial tcp connect: no route to host

Can anyone help me on this.