Verified with "4.8.0-0.ci.test-2022-07-19-051628-ci-ln-0d4rz1k-latest" build with the fix. With this release, it is observed that that the "PROXY" protocol type gets properly applied on the routers pods: ------ Before change: oc get clusterversion NAME VERSION AVAILABLE PROGRESSING SINCE STATUS version 4.8.0-0.ci.test-2022-07-19-051628-ci-ln-0d4rz1k-latest True False 109s Cluster version is 4.8.0-0.ci.test-2022-07-19-051628-ci-ln-0d4rz1k-latest oc -n openshift-ingress-operator get ingresscontroller default -ojsonpath='{.status.endpointPublishingStrategy}' | jq . { "hostNetwork": { "protocol": "TCP" }, "type": "HostNetwork" } oc -n openshift-ingress get pods -o wide oc 0n oNAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES router-default-5fc745dd6c-9757p 1/1 Running 0 23m 10.0.1.33 0d4rz1k-b5564-m424v-worker-0-vkt5l <none> <none> router-default-5fc745dd6c-97d7k 1/1 Running 0 23m 10.0.2.137 0d4rz1k-b5564-m424v-worker-0-vqlz8 <none> <none> After change: oc -n openshift-ingress-operator get ingresscontroller default -ojsonpath='{.spec.endpointPublishingStrategy}' | jq . { "hostNetwork": { "protocol": "PROXY" }, "type": "HostNetwork" } oc -n openshift-ingress-operator get ingresscontroller default -ojsonpath='{.status.endpointPublishingStrategy}' | jq . { "hostNetwork": { "protocol": "PROXY" }, "type": "HostNetwork" } oc -n openshift-ingress get pods -o wide NAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES router-default-64bbdbc845-vtfzw 1/1 Running 0 51s 10.0.1.33 0d4rz1k-b5564-m424v-worker-0-vkt5l <none> <none> router-default-64bbdbc845-z8b6t 1/1 Running 0 86s 10.0.0.248 0d4rz1k-b5564-m424v-worker-0-m2msr <none> <none> oc -n openshift-ingress exec router-default-64bbdbc845-vtfzw -- env | grep ROUTER_USE_PROXY_PROTOCOL ROUTER_USE_PROXY_PROTOCOL=true oc -n openshift-ingress exec router-default-64bbdbc845-vtfzw -- cat haproxy.config | grep "accept-proxy" bind :80 accept-proxy bind :443 accept-proxy ------
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.8.50 bug fix update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2022:6511