Bug 1734801

Summary: Wrong description of api-int DNS requirement
Product: OpenShift Container Platform Reporter: Jan Zmeskal <jzmeskal>
Component: DocumentationAssignee: Vikram Goyal <vigoyal>
Status: CLOSED EOL QA Contact: Xiaoli Tian <xtian>
Severity: medium Docs Contact: Vikram Goyal <vigoyal>
Priority: unspecified    
Version: 4.1.0CC: aos-bugs, jokerman
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-05-18 06:56:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jan Zmeskal 2019-07-31 13:40:50 UTC 
Document URL: 
https://docs.openshift.com/container-platform/4.1/installing/installing_bare_metal/installing-bare-metal.html#installation-dns-user-infra_installing-bare-metal

Section Number and Name: 
User-provisioned DNS requirements

Describe the issue: 
In the aforementioned section, this is said about api-int.<cluster_name>.<base_domain> DNS record: 
"This DNS record must point to the load balancer for the control plane machines." However, as far as I can tell, queries to api-int.<cluster_name>.<base_domain> are made by master and worker node during their ignition phase. When ignition runs on masters and workers, they expect to be served additional ignition content at api-int.<cluster_name>.<base_domain>:22623. This additional ignition content is however server by bootstrap node.

Suggestions for improvement: 
Readers should understand that the api-int.<cluster_name>.<base_domain> must point to bootstrap node or that the loadbalancer must forward requests for ignition content to bootstrap node.
Comment 1 Jan Zmeskal 2019-08-01 10:38:12 UTC 
Actually, this maybe not be a bug, maybe just my understanding of this area is incomplete. So I noticed that during the bootstrap phase of OCP installation, master and worker nodes query api-int.<cluster_name>.<base_domain>:22623 for additional ignition content. However then, during later installation stages, some pods query api-int.<cluster_name>.<base_domain>:6443 and at that point, the bootstrap machine does not exist any more. Does that mean that this DNS entry should indeed point to load balancer and the load balancer should forward queries to port 22623 to bootstrap node and queries to port 6443 to control plane?