[OKD4.6] ExternalIPs not working - documentation lacks of clear description #572
Comments
devzeronull
changed the title
vrutkovs
added
the
kind/documentation
|
Thanks for labeling the issue - do you also have a clue on how to make ExternalIPs work? |
|
Hi
This "feature" makes ExternalIP unusable in OVNKubernetes. keepalived-operator will not works too. |
|
Yeah, I am also confused by the documentation here - https://docs.okd.io/latest/networking/configuring_ingress_cluster_traffic/configuring-externalip.html#configuring-externalip saying - "Your network infrastructure must route traffic for the external IP addresses to your cluster.". How do we do that for IPI clusters? For UPI clusters, I had HAProxy servers sitting in front of the OKD cluster acting as proxies and I installed Keepalived on those servers and made Keepalived listen for those external IPs which made it work. |
In case of Baremetal IPI - using keepalived-operator (works only with OpenShiftSDN) or manual by "/sbin/ip address add" |
|
Issues go stale after 90d of inactivity. Mark the issue as fresh by commenting If this issue is safe to close now please do so with /lifecycle stale |
openshift-ci
bot
added
the
lifecycle/stale
|
Stale issues rot after 30d of inactivity. Mark the issue as fresh by commenting If this issue is safe to close now please do so with /lifecycle rotten |
openshift-ci
bot
added
lifecycle/rotten
|
Rotten issues close after 30d of inactivity. Reopen the issue by commenting /close |
|
@openshift-bot: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Hi,
we have a problem reaching externalIPs of a custom (non-http/s) service placed in the Hosts network 192.168.1.0/24 on UPI bare-metal installation using OVNKubernetes CNI and would appreciate a hint on how to get it work.
We have altered the cluster network configuration:
oc edit networks.config clusterand patched a service "myservice" with an external IP:
oc patch svc myservice -n mynamespace -p '{"spec":{"externalIPs":["192.168.1.100"]}}'The ExternalIP (192.168.1.100) of the service is reachable from another Pod within the cluster without problems but not from the outside.
We already tried to make a static route from a testing machine within the Hosts network using a master node (192.168.1.10) or a worker node (192.168.1.50) as gateway:
ip route add 192.168.1.100/32 via 192.168.1.10Sadly the documentation doesn't say anything about how to reach external IPs it just says that it lays in the responsibility of the Networks Administrator...
Someone else was either not able to solve it which is documented in an 4 month old and still open issue in #453
So it would be very kind if anyone could point us into the right direction and tell us what is necessary to get ExternalIPs working and reachable from outside the cluster!
Best regards!
The text was updated successfully, but these errors were encountered: