Bug 2008944

Summary: Azure Stack UPI does not have Internal Load Balancer
Product: OpenShift Container Platform Reporter: Scott Dodson <sdodson>
Component: InstallerAssignee: aos-install
Installer sub component: openshift-installer QA Contact: Mike Gahagan <mgahagan>
Status: CLOSED ERRATA Docs Contact:
Severity: high    
Priority: unspecified CC: mifiedle, padillon, tsze
Version: 4.9   
Target Milestone: ---   
Target Release: 4.9.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 2008599 Environment:
Last Closed: 2021-10-18 17:51:56 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2008599, 2008990    
Bug Blocks:    

Description Scott Dodson 2021-09-29 14:32:44 UTC 
+++ This bug was initially created as a clone of Bug #2008599 +++

Azure Stack UPI does not have an internal load balancer. This was an oversight on my part. Clusters install successfully but all internal (api-int) traffic sent over the public internet rather than going to a private IP address.

--- Additional comment from Patrick Dillon on 2021-09-28 13:35:14 EDT ---

To verify this, use the modified templates and just follow the instructions as updated in the PR. The only change in the instructions is that when creating the api-int record you should use the PRIVATE_IP variable as specified in the PR.
Comment 1 Scott Dodson 2021-09-29 14:34:33 UTC 
Cloning this back to 4.9.0 so that those tracking blockers are aware. This will be a change to the Installer repo that is then mirrored into docs. The installer repo changes do not directly affect the product. Patrick has coordinatd with docs team to ensure that they can land these late changes in time for GA as well as making sure that QE is aware of this change coming.
Comment 3 To Hung Sze 2021-10-01 12:44:50 UTC 
Verified the version that is one step from the final version earlier in the week.
Can't verify the final version as ASH environment is down.

(assuming it is to track merging the changes to installer github repo)
Comment 4 To Hung Sze 2021-10-04 18:38:42 UTC 
ASH environment is still down.
Developer is in daily contact with Microsoft getting update.
No ETA.
Comment 5 To Hung Sze 2021-10-05 12:53:28 UTC 
Portal is accessible now but manual install / verification is still blocked due to one of steps early on still fails.
Comment 6 Mike Gahagan 2021-10-08 15:26:33 UTC 
confirmed presence of Internal LB with 4.9.0-rc5, also was able to confirm that the internal nodes can access the /healthz endpoint.
Comment 10 errata-xmlrpc 2021-10-18 17:51:56 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.9.0 bug fix and security update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2021:3759