-
Bug
-
Resolution: Done
-
Major
-
4.16, 4.17, 4.18, 4.19, 4.20
-
Quality / Stability / Reliability
-
False
-
-
None
-
None
-
None
-
None
-
Rejected
-
Metal Platform 276
-
1
-
Done
-
Release Note Not Required
-
N/A
-
None
-
None
-
None
-
None
This is a clone of issue OCPBUGS-60586. The following is the description of the original issue:
—
This is a clone of issue OCPBUGS-60286. The following is the description of the original issue:
—
This is a clone of issue OCPBUGS-53392. The following is the description of the original issue:
—
Description of problem:
The communication matrix project aims to automatically generate an accurate and up-to-date communication flows matrix that can be delivered to customers as part of product documentation for all ingress flows of OpenShift (see documented communication matrix example[https://docs.openshift.com/container-platform/4.16/installing/install_config/configuring-firewall.html#network-flow-matrix_configuring-firewall]). The communication matrix consists of the cluster's endpoint slices which are created automatically for every service on the cluster. Your operator includes some open ports that are not connected to a service, and by that there are missing endpoint slices. To solve this issue, please connect a service to the following ports: 5050 (master node, TCP protocol, version 4.16), 9447 (master node, TCP protocol, versions 4.16 and 4.17), 6385 (master node, TCP protocol, versions 4.16 and above).
Version-Release number of selected component (if applicable):
How reproducible:
Compare between endpoint slices to open ports.
Steps to Reproduce:
1. Get endpoint slices: run the following command: `oc get endpointslices -n <operator's-namespace>` 2. Get open ports: Make sure the `ss` command is available within your pod - if not use the following command to install iprune2 on your pod: `dnf install -y iproute` In order to get ports using TCP protocol run from your node: `ss -anpltH` In order to get ports using UDP protocol run from your node: `ss -anpluH` 3. Compare the ports between the outputs.
Actual results:
The following ports are missing endpoint slices: 5050 (master node, TCP protocol, version 4.16), 9447 (master node, TCP protocol, versions 4.16 and 4.17), 6385 (master node, TCP protocol, versions 4.16 and above).
Expected results:
Every open port will have an endpoint slice.
Additional info:
In order to resolve this issue, a service should be connected to the following ports: 5050 (master node, TCP protocol, version 4.16), 9447 (master node, TCP protocol, versions 4.16 and 4.17), 6385 (master node, TCP protocol, versions 4.16 and above). The endpoint slices should be created automatically once the service is up.
- blocks
-
OCPBUGS-61504 Missing endpoint slices for open ports the operator uses
-
- Verified
-
- clones
-
OCPBUGS-60586 Missing endpoint slices for open ports the operator uses
-
- Closed
-
- is blocked by
-
OCPBUGS-60586 Missing endpoint slices for open ports the operator uses
-
- Closed
-
- is cloned by
-
OCPBUGS-61504 Missing endpoint slices for open ports the operator uses
-
- Verified
-
- links to