Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-41797

GCP PrivateLink error due to missing global access on endpoints

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Critical Critical
    • None
    • 4.17.0
    • Hive
    • None
    • None
    • False
    • Hide

      None

      Show
      None

      Description of problem:

          Endpoints created in the gcp infra account need to have the "Enable Global Access" option enabled, as traffic otherwise can't flow cross-region. The cross-region traffic is required because the VPN routes all traffic to a single region and the VPC has global subnets.

      Version-Release number of selected component (if applicable):

      How reproducible:

          100%

      Steps to Reproduce:

          1. Create a gcp privatelink cluster on ROSA integration in a zone that is not the google cloud router / vpn's region
    2. Installation will fail as kube-api won't be reachable from hive
    3.

      Actual results:

          Installation will fail as kube-api won't be reachable from hive

      Expected results:

          GCP traffic can flow cross-region from the cloud router

      Additional info:

            jstuever@redhat.com Jeremiah Stuever
            cbusse.openshift Claudio Busse
            Mingxia Huang Mingxia Huang
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated: