Bug 1954708
Summary: | [GSS][RFE] Restrict Noobaa from creating public endpoints for Azure Private Cluster | ||
---|---|---|---|
Product: | [Red Hat Storage] Red Hat OpenShift Data Foundation | Reporter: | Deepu K S <dkochuka> |
Component: | Multi-Cloud Object Gateway | Assignee: | Liran Mauda <lmauda> |
Status: | CLOSED ERRATA | QA Contact: | Ben Eli <belimele> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 4.6 | CC: | akgunjal, amctagga, assingh, belimele, bkunal, erich, etamir, fgiloux, ghurel, jat, kjosy, lmauda, malonso, muagarwa, nbecker, nberry, oarribas, ocs-bugs, odf-bz-bot, pawankum, prpandey, rbeyel, sabose, shilpsha, shrao, tdesala, tmicheli |
Target Milestone: | --- | Keywords: | FutureFeature |
Target Release: | ODF 4.10.0 | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | 4.10.0-118 | Doc Type: | Enhancement |
Doc Text: |
.NooBaa services update
With this update, a new flag is added `disable-load-balancer` that replaces the type of service from LoadBalancer to ClusterIP. This allows you to disable the NooBaa service EXTERNAL-IP.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2022-04-13 18:49:40 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 2027439 | ||
Bug Blocks: | 2056571 |
Description
Deepu K S
2021-04-28 16:13:03 UTC
@etamir FYI Issue is also seen on IBM ROKS . Adding @akgunjal.com. Hi, we're facing the same issue on IBM ROKS We tried both the workarounds suggested : 1. Annotate the LB However, this wasn't possible as it said Warning CreatingCloudLoadBalancerFailed 3s ibm-cloud-provider Error on cloud load balancer kube-c2jpf1n20k1p2v6es490-9b45719fc38045b4b9d7fc13326614c4 for service openshift-storage/noobaa-mgmt with UID 9b45719f-c380-45b4-b9d7-fc13326614c4: Failed ensuring LoadBalancer: UpdateLoadBalancer failed: The load balancer was created as a public load balancer. This setting can not be changed 2. Create an egress firewall: Couldn't create it as the link provided worked only if openshift SDN was used, but IBM ROKS uses calico SDN. Also, this is only a policy that can be used to control the traffic. What would be the solution to wanting LBs to be created with private IPs when it's a private cluster? Nimrod, any suggestions? Do you want a separate bug for IBM ROKS to track this? Issue is also seen on VMware IPI install (version 4.8) . Created 2054120 for the backport *** Bug 2046471 has been marked as a duplicate of this bug. *** Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Important: Red Hat OpenShift Data Foundation 4.10.0 enhancement, security & bug fix update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2022:1372 The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days |