Bug 1807032 - Adding RHEL compute node requires port 22623 to be opened on external LB
Summary: Adding RHEL compute node requires port 22623 to be opened on external LB
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Installer
Version: 4.4
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
: 4.4.0
Assignee: Russell Teague
QA Contact: Gaoyun Pei
URL:
Whiteboard:
Depends On: 1792822
Blocks:
TreeView+ depends on / blocked
 
Reported: 2020-02-25 13:45 UTC by Russell Teague
Modified: 2020-05-04 11:42 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Cause: Bootstrap server endpoint uses 'api' endpoint which goes through external load-balancer Consequence: Additional port required to be open on external load-balancer to bootstrap nodes Fix: Switched the bootstrap server endpoint to the internal endpoint 'api-int' Result: Additional open port not required on external load-balancer
Clone Of: 1792822
Environment:
Last Closed: 2020-05-04 11:42:22 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github openshift openshift-ansible pull 12108 0 None closed [release-4.4] Bug 1807032: Gather debug data on task failure 2020-11-13 15:57:55 UTC
Red Hat Product Errata RHBA-2020:0581 0 None None None 2020-05-04 11:42:41 UTC

Comment 4 Gaoyun Pei 2020-02-28 07:50:19 UTC
Verify this bug using openshift-ansible-4.4.0-202002252246.git.1.f37df7d.el7.noarch.rpm.

It's using the internal api LB address to fetch bootstrap.ign, so no need additional 22623 opened on external LB now.


TASK [openshift_node : Wait for bootstrap endpoint to show up] *****************
Friday 28 February 2020  13:47:00 +0800 (0:00:00.664)       0:09:23.974 ******* 
ok: [ip-10-0-49-13.us-east-2.compute.internal] => {"attempts": 1, "changed": false, "connection": "close", "content_length": "152208", "content_type": "application/json", "cookies": {}, "cookies_string": "", "date": "Fri, 28 Feb 2020 05:47:01 GMT", "elapsed": 0, "json": {"ignition": {"config": {}, "security": {"tls": {}}, "timeouts": {}, "version": "2.2.0"}, "networkd": {},
...
{"contents": "[Unit]\nBefore=pivot.service\nConditionFirstBoot=true\n[Service]\nExecStart=/bin/sh -c 'mkdir /run/pivot && touch /run/pivot/reboot-needed'\n[Install]\nWantedBy=multi-user.target\n", "enabled": true, "name": "mcd-write-pivot-reboot.service"}]}}, "msg": "OK (152208 bytes)", "redirected": false, "status": 200, "url": "https://api-int.gpei-44.qe.devcluster.openshift.com:22623/config/worker"}

Comment 6 errata-xmlrpc 2020-05-04 11:42:22 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:0581


Note You need to log in before you can comment on or make changes to this bug.