Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1870303

Summary: NodePort stuck open within SDN after unidling
Product: OpenShift Container Platform Reporter: OpenShift BugZilla Robot <openshift-bugzilla-robot>
Component: NetworkingAssignee: Surya Seetharaman <surya>
Networking sub component: openshift-sdn QA Contact: zhaozhanqi <zzhao>
Status: CLOSED ERRATA Docs Contact:
Severity: urgent    
Priority: unspecified CC: aconstan, agk, cdc, nstielau
Version: 3.11.0   
Target Milestone: ---   
Target Release: 4.5.z   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-09-14 14:54:26 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1857743    
Bug Blocks: 1870304    

Comment 5 zhaozhanqi 2020-09-09 09:53:50 UTC 
Verified this bug on 4.5.0-0.nightly-2020-09-07-062006

steps:

1. oc new-project random
2. oc new-app centos/ruby-25-centos7~https://github.com/sclorg/ruby-ex.git
3. <wait the pod running>
4. oc create -f ruby-nodeport.yaml
apiVersion: v1
kind: Service
metadata:
  name: np-ruby-ex
spec:
  externalTrafficPolicy: Cluster
  ports:
  - name: 8080-tcp
    nodePort: 30035
    port: 8080
    protocol: TCP
    targetPort: 8080
  selector:
    app: ruby-ex
    deploymentconfig: ruby-ex
  sessionAffinity: None
  type: NodePort

5. oc idle -n random --all
6. oc delete ep --all
7. oc delete svc --all
8. oc delete project random
9. oc new-project random
10. oc new-app centos/ruby-25-centos7~https://github.com/sclorg/ruby-ex.git
11.  oc create -f ruby-nodeport.yaml

Check the sdn logs:

oc logs sdn-lq2gv -n openshift-sdn | grep 30035
I0909 09:45:29.026017    2758 proxier.go:1656] Opened local port "nodePort for random/np-ruby-ex:8080-tcp" (:30035/tcp)
I0909 09:45:53.783955    2758 proxier.go:818] Claimed local port <nil>:30035/TCP
I0909 09:45:53.789527    2758 proxier.go:866] Opened iptables from-containers public port for service "random/np-ruby-ex:8080-tcp" on TCP port 30035
I0909 09:45:53.796232    2758 proxier.go:877] Opened iptables from-host public port for service "random/np-ruby-ex:8080-tcp" on TCP port 30035
I0909 09:45:53.820822    2758 proxier.go:887] Opened iptables from-non-local public port for service "random/np-ruby-ex:8080-tcp" on TCP port 30035
I0909 09:47:41.894362    2758 proxier.go:1656] Opened local port "nodePort for random/np-ruby-ex:8080-tcp" (:30035/tcp)
Comment 7 errata-xmlrpc 2020-09-14 14:54:26 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (OpenShift Container Platform 4.5.9 bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:3618