Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1659204

Summary: Conntrack rule for UDP traffic is not removed when using NodePort
Product: OpenShift Container Platform Reporter: Jacob Tanenbaum <jtanenba>
Component: NetworkingAssignee: Casey Callendrello <cdc>
Networking sub component: openshift-sdn QA Contact: zhaozhanqi <zzhao>
Status: CLOSED ERRATA Docs Contact:
Severity: high    
Priority: urgent CC: anusaxen, aos-bugs, bmeng, jdesousa, mnaldini, openshift-bugs-escalate, rhowe, weliang
Version: 3.10.0   
Target Milestone: ---   
Target Release: 3.10.z   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1659194 Environment:
Last Closed: 2019-02-20 10:11:10 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1537780, 1659194    
Bug Blocks:    

Comment 3 Ryan Howe 2019-02-16 01:37:02 UTC 
Conntrack entries are updating as expected.

The following errata has been release:
https://access.redhat.com/errata/product/290/ver=3.10/rhel---7/x86_64/RHBA-2019:0206


https://github.com/openshift/origin/pull/21657
Comment 5 errata-xmlrpc 2019-02-20 10:11:10 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:0328
Comment 7 Jacob Tanenbaum 2019-03-12 20:04:13 UTC 
I posted an upstream fix for the externalIP case 

https://github.com/kubernetes/kubernetes/pull/75265

I will start backporting it when it gets merged