# Troubleshooting MetalLB Add-on ## Problem MetalLB offers external load balancing for applications within PCD-K clusters. As an external add-on for PCD-K Kubernetes clusters, MetalLB's broken functionality can significantly impact service availability. When MetalLB experiences issues, here's a general guide on how to troubleshoot CoreDNS Add-on Issues. ## Environment * Private Cloud Director - v2025.4 and Higher. * Kubernetes Cluster - 1.31.2 or Higher. ## Procedure 1. MetalLB has all MetalLB objects, a controller pod and speakers pods per worker node deployed in the `metallb-system` namespace. Verify the pod status in the namespace using the command: {% tabs %} {% tab title="Verify MetalLB pods" %} ```bash $ kubectl get pods -n metallb-system ``` {% endtab %} {% endtabs %} 2. Review why these pods are in "`CrashLoopBackOff/OOMkilled/Pending/Error`" state, see the events sections part of the command: {% tabs %} {% tab title="Check events" %} ```bash $ kubectl describe -n metallb-system ``` {% endtab %} {% endtabs %} 3. Validate if the `MetalLB` service shows the correct IP address pools using command: {% tabs %} {% tab title="Get IPaddressPool details" %} ```bash $ kubectl get IPAddressPool -n metallb-system ``` {% endtab %} {% endtabs %} 4. Verify that the `metallb-webhook-service` service has correct endpoint IP address of the `metallb-controller` pod. 5. Get more information on the failure from pod logs using command: {% tabs %} {% tab title="Command" %} ```bash $ kubectl logs -n metallb-system ``` {% endtab %} {% endtabs %} 6. Ensure that **MetalLB VIP/MAC** address pair mapping is added on all the worker nodes. As Mac address spoofing is not allowed by Port Security. 7. If these steps prove insufficient to resolve the issue, kindly reach out to the [Platform9 Support Team](https://support.platform9.com) for additional assistance. ## Most Common causes: * Incorrect IP range mentioned in the `IPAddressPools`. * `L2Advertisement` or `BGPAdvertisement` resources are not created as per `IPAddressPools` Or advertisements are misconfigured. * MetalLB VIP/MAC address pair mapping is missing on all/some of the worker nodes. * Check Calico pod logs for errors, since MetalLB relies on Calico's functionality.