Description of problem: The security group rules created on the Cluster Network Operator needs to be revisited to ensure only the minimum required of ports is allowed whenever OSP13 or OSP16 is used with amphora or ovn-octavia providers. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Verified on 4.4.0-0.nightly-2020-03-31-053841 on OSP 13 (2020-03-25.1) and OSP 16 (RHOS_TRUNK-16.0-RHEL-8-20200324.n.0). The K8s NP tests results and conformance tests results are the expected ones. We filed 2 BZs [*] during this verification as there were some issues but not related to this BZ. [*] https://bugzilla.redhat.com/show_bug.cgi?id=1818066 https://bugzilla.redhat.com/show_bug.cgi?id=1820118
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:0581