Bug 1659204 - Conntrack rule for UDP traffic is not removed when using NodePort
Summary: Conntrack rule for UDP traffic is not removed when using NodePort
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Networking
Version: 3.10.0
Hardware: Unspecified
OS: Unspecified
urgent
high
Target Milestone: ---
: 3.10.z
Assignee: Casey Callendrello
QA Contact: zhaozhanqi
URL:
Whiteboard:
Depends On: 1537780 1659194
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-12-13 19:49 UTC by Jacob Tanenbaum
Modified: 2023-09-07 19:35 UTC (History)
8 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of: 1659194
Environment:
Last Closed: 2019-02-20 10:11:10 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Origin (Github) 21657 0 None None None 2018-12-13 19:53:27 UTC
Red Hat Product Errata RHBA-2019:0328 0 None None None 2019-02-20 10:11:17 UTC

Comment 3 Ryan Howe 2019-02-16 01:37:02 UTC 
Conntrack entries are updating as expected.

The following errata has been release:
https://access.redhat.com/errata/product/290/ver=3.10/rhel---7/x86_64/RHBA-2019:0206


https://github.com/openshift/origin/pull/21657
Comment 5 errata-xmlrpc 2019-02-20 10:11:10 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:0328
Comment 7 Jacob Tanenbaum 2019-03-12 20:04:13 UTC 
I posted an upstream fix for the externalIP case 

https://github.com/kubernetes/kubernetes/pull/75265

I will start backporting it when it gets merged
Note You need to log in before you can comment on or make changes to this bug.