Bugzilla (bugzilla.redhat.com) will be under maintenance for infrastructure upgrades and will not be unavailable on July 31st between 12:30 AM - 05:30 AM UTC. We appreciate your understanding and patience. You can follow status.redhat.com for details.
Bug 1573302 - [RFE] Ability to preserve the SDN source IP of a pod when connecting to another pod.
Summary: [RFE] Ability to preserve the SDN source IP of a pod when connecting to anoth...
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Networking
Version: 3.9.0
Hardware: Unspecified
OS: Unspecified
unspecified
medium
Target Milestone: ---
: ---
Assignee: Ben Bennett
QA Contact: Meng Bo
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-04-30 19:25 UTC by Ryan Howe
Modified: 2018-04-30 19:52 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2018-04-30 19:52:55 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Ryan Howe 2018-04-30 19:25:49 UTC 
Description of problem:

We are looking to the ability to preserver the source IP of a pod when connecting to another pod on the SDN. At this time all traffic is masqueraded to the IP of tun0. 

https://github.com/openshift/origin/blob/release-3.7/pkg/network/node/iptables.go#L145-L234

We would like to be able to implement network visualization of traffic and be able to link the source IP of the request to the pod name. At this time it is not possible because the IP is that of tun0.
Comment 1 Ben Bennett 2018-04-30 19:52:55 UTC 
You can achieve this using the OpenShift networkpolicy plugin.  The feature is not available with the other OpenShift network plugin.
Note You need to log in before you can comment on or make changes to this bug.