This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 40%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZE%3C/text%3E%3C/svg%3E)
Hello,
We have an AKS cluster configured with the AzureCNI plugin for networking, which means that the pods take IP addresses from the subnet. Currently, there are only 9 IP addresses available, preventing us from updating the cluster.
To resolve this, we need to change the subnet mask from /26 to /24 while keeping the same subnet address.
Is there any method to achieve this without disrupting the existing setup? Any guidance or best practices for performing this change would be greatly appreciated.
Thank you!
You can create a new subnet with the desired subnet mask (for example, /24) within the same virtual network (VNet).
Update the AKS cluster to use the new subnet for node pools. This can be done by creating new node pools in the new subnet and gradually migrating workloads to these new node pools.
Make sure you have enough capacity to run your workloads during this migration.
Gradually drain and isolate nodes on the old subnet and move workloads to nodes on the new subnet.
Use the kubectl drain command to safely remove all pods from a node.
Update the cluster configuration:
After all workloads are migrated, update the cluster configuration to point to the new subnet.
You can Also reduce the cluster nodes to reserve IP addresses for the upgrade.
If scaling down isn't an option, and your virtual network CIDR has enough IP addresses, try to add a node pool that has a unique subnet:
https://learn.microsoft.com/en-us/azure/aks/scale-cluster?tabs=azure-cli
https://learn.microsoft.com/pt-br/azure/aks/configure-azure-cni?tabs=configure-networking-portal
Get in touch if you need more help with this issue.
--please don't forget to "[Accept the answer]" if the reply is helpful--
thanks @Jackson Martins for your reply. it was very helpful
I need to ask for clarification for a certain points
Is there a method to directly increase subnet size to /24 for example? because our automation system must use the same subnet address which is 10.3.0.0 in this case.
or I need to move system nodepool to a new node pool then delete the old one and re create it with the new subnet mask then return system-nodes back?
the second point, how to mark the new node pool as a system node pool?
note: I only have one node in system nodepool, so there is no scale down option.
thanks @Jackson Martins
Unfortunately, Azure does not allow you to directly resize a subnet. You need to create a new subnet with the desired size and then migrate resources to this new subnet. The process involves creating a new subnet with the same base address but a larger prefix, then moving resources.
you would need to create a new node pool in a new subnet with the larger subnet mask, migrate your workloads, and then delete the old node pool
Great thanks 🙏