From 52a1618f93a6f59132901ddfbe684750b9e4997e Mon Sep 17 00:00:00 2001 From: dfitzmau Date: Tue, 21 Oct 2025 17:19:55 +0100 Subject: [PATCH] OCPBUGS-63362: Address EgressIP for sec interface consideration to nw-egress-ips-multi-nic-considerations.adoc --- modules/nw-egress-ips-multi-nic-considerations.adoc | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/modules/nw-egress-ips-multi-nic-considerations.adoc b/modules/nw-egress-ips-multi-nic-considerations.adoc index c01abb2051d6..53060709d00b 100644 --- a/modules/nw-egress-ips-multi-nic-considerations.adoc +++ b/modules/nw-egress-ips-multi-nic-considerations.adoc @@ -28,12 +28,16 @@ You can determine which other network interfaces might support egress IP address OVN-Kubernetes provides a mechanism to control and direct outbound network traffic from specific namespaces and pods. This ensures that it exits the cluster through a particular network interface and with a specific egress IP address. ==== -For users who want an egress IP address and traffic to be routed over a particular interface that is not the primary network interface, the following conditions must be met: +As an administrator who wants an egress IP address and traffic to route over a particular interface that is not the primary network interface, you must meet the following conditions: * {product-title} is installed on a bare-metal cluster. This feature is disabled within a cloud or a hypervisor environment. * Your {product-title} pods are not configured as _host-networked_. -* If a network interface is removed or if the IP address and subnet mask which allows the egress IP address to be hosted on the interface is removed, the egress IP address is reconfigured. Consequently, the egress IP address could be assigned to another node and interface. +* You understand that if a network interface is removed or if the IP address and subnet mask which allows the egress IP address to be hosted on the interface is removed, reconfiguration of the egress IP address occurs. Consequently, the egress IP address might get assigned to another node and interface. -* If you use an Egress IP address on a secondary network interface card (NIC), you must use the Node Tuning Operator to enable IP forwarding on the secondary NIC. \ No newline at end of file +* If you use an Egress IP address on a secondary network interface card (NIC), you must use the Node Tuning Operator to enable IP forwarding on the secondary NIC. + +* You configured a NIC with routes by ensuring a gateway exists in the main routing table. As a postinstallation task, Red Hat does not support configuring a NIC on a cluster that uses OVN-Kubernetes. + +* Routes associated with an egress interface get copied from the main routing table to the routing table that was created to support the Egress IP object.