-
Bug
-
Resolution: Done-Errata
-
Critical
-
4.16.0, 4.17.0
This is a clone of issue OCPBUGS-34389. The following is the description of the original issue:
—
Description of problem:
When publish: internal, bootstrap SSH rules are still open to public internet (0.0.0.0/0) instead of restricted to the machine cidr.
Version-Release number of selected component (if applicable):
How reproducible:
all private clusters
Steps to Reproduce:
1. set publish: internal in installconfig 2. inspect ssh rule 3.
Actual results:
ssh is open to public internet
Expected results:
should be restricted to machine network
Additional info:
- clones
-
OCPBUGS-34389 [AWS CAPI Install] SSH on private clusters is open to public internet
- Closed
- is blocked by
-
OCPBUGS-34389 [AWS CAPI Install] SSH on private clusters is open to public internet
- Closed
- links to
-
RHEA-2024:0041 OpenShift Container Platform 4.16.z bug fix update