There is no OpenShift documentation available for the firewall rules required for hosted control plane nodes to properly join the hosted control plane.

The only documentation available is this upstream documentation, but it has some problems:

• First and foremost, it is upstream, not downstream. We need product documentation that has undergone the proper QA checks.
• Second: It focus too much on the ports that the pods need, mixing internal hosted control plane traffic with traffic that comes from outside the management cluster. We need a documentation on what external traffic has to be allowed on any firewalls between the hosted control plane nodes and the management cluster, such that the hosted control planes can work.
• Third: That documentation is not very clear, it might benefit from some rewrite to be clearer. Efforts made to write a clearer OCP doc may be fed back to upstream one.