Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix(ci.jenkins.io-agents-1) remove AKS subnet NSG to avoid kubelet an…
…d pod issues (#698) Related to jenkins-infra/helpdesk#3954 After a pairing session with @smerle33 where we discovered that the applications running in the AKS cluster's `kube-system` namespace where failing due to timeouts, we realized that the NSG in charge fo setting up rules for inbound agents is not shaped to handle an AKS cluster as it blocks technical requests within the cluster: - Pods (`10.100.0.0/14`) to internal DNS (`10.0.0.0`) server - Kubelet (unknown CIDR) to pods (`10.100.0.0/14`) - Pods (`10.100.0.0/14`) to Kubernetes services - Etc. This PR removes the NSG (for now) until we have deployed the cluster Signed-off-by: Damien Duportal <damien.duportal@gmail.com>
- Loading branch information