1573302 – [RFE] Ability to preserve the SDN source IP of a pod when connecting to another pod.

Bug 1573302 - [RFE] Ability to preserve the SDN source IP of a pod when connecting to another pod.

Summary: [RFE] Ability to preserve the SDN source IP of a pod when connecting to anoth...

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	Networking
Sub Component:
Version:	3.9.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Target Release:	---
Assignee:	Ben Bennett
QA Contact:	Meng Bo
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2018-04-30 19:25 UTC by Ryan Howe
Modified:	2018-04-30 19:52 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2018-04-30 19:52:55 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Description Ryan Howe 2018-04-30 19:25:49 UTC

Description of problem:

We are looking to the ability to preserver the source IP of a pod when connecting to another pod on the SDN. At this time all traffic is masqueraded to the IP of tun0. 

https://github.com/openshift/origin/blob/release-3.7/pkg/network/node/iptables.go#L145-L234

We would like to be able to implement network visualization of traffic and be able to link the source IP of the request to the pod name. At this time it is not possible because the IP is that of tun0.

Comment 1 Ben Bennett 2018-04-30 19:52:55 UTC

You can achieve this using the OpenShift networkpolicy plugin.  The feature is not available with the other OpenShift network plugin.

Note You need to log in before you can comment on or make changes to this bug.