Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-55261

iptables-alerter does not run on tainted nodes

XMLWordPrintable

    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • None
    • Moderate
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Description of problem:

          When a custom taint is set on a node the iptable-alerter will not start on that node. This taint can be an infra node for instance. The network operator does not allow for toleration modification.

      Version-Release number of selected component (if applicable):

          OCP 4.18

      How reproducible:

          100%

      Steps to Reproduce:

          1.Taint a note
    2.New pod is not triggered on the tainted node

      Actual results:

          iptables-alerter is not started inthe tainted node

      Expected results:

          Ideally the tolerations are se in more open way:

        tolerations:
        - operator: Exists

    Which ignores all taints. It would also be great if it would be possible to set customer tolerations in the operator.openshift.io/Network

      Additional info:

      The reason behind is that if an end user creates a new node and they set taints there. They cannot track all the openshift system components and set the right tolerations there as there is out fo their knowledge. Openshift should deal with this automatically.

       

              dwinship@redhat.com Dan Winship
              rhn-support-rhodain1 Roman Hodain
              None
              None
              Anurag Saxena Anurag Saxena
              None
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: