Description of problem: We need conntrack-tools for the OpenShift node proxy. This needs to be checked or installed during the OpenShift Ansible install. The node fails to flush the conntrack table if this is not installed. https://github.com/openshift/openshift-ansible/tree/master/roles/openshift_node How reproducible: Very Actual results: Installed OpenShift. Conntrack-tools package was not installed. Expected results: conntrack-tools package should be installed during an OpenShift install. Additional info: This was discovered by Dan Winship on a call with the customer.
We already do https://github.com/openshift/openshift-ansible/blob/release-1.4/roles/openshift_node/tasks/main.yml#L63-L67 This code has been there since openshift-ansible-3.4.64-1 What's the history of the cluster and which version of openshift-ansible was used to install the cluster?
(In reply to Scott Dodson from comment #1) > This code has been there since openshift-ansible-3.4.64-1 > > What's the history of the cluster and which version of openshift-ansible was > used to install the cluster? Customer reports "the nodes were upgraded from 3.3 to 3.4, then to 3.5." So, shouldn't the 3.5 installer have caught this?
Since this is now added in 3.4+ installs clusters that installed 3.3 and upgraded need to be checked for this package. We should add this in the upgrade playbooks.
It seems like we should also make the node RPM have "Requires: conntrack-tools". Right?
(In reply to Dan Winship from comment #5) > It seems like we should also make the node RPM have "Requires: > conntrack-tools". Right? Yeah I agree.
Actually, that's a more appropriate original fix for the problem. That would ensure that it's installed when upgrading (assuming it's backported to 3.4). Should I move this to networking and you can facilitate that in origin repo?
Done
included in https://github.com/openshift/origin/pull/16328
*** This bug has been marked as a duplicate of bug 1487438 ***