Uploaded image for project: 'OpenStack as Infra'
  1. OpenStack as Infra
  2. OSASINFRA-3101

External load balancers with OpenStack IPI (GA)

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Done
    • Icon: Major Major
    • openshift-4.14
    • openshift-4.14
    • None
    • None
    • External load balancers with OpenStack IPI (GA)
    • BU Product Work
    • False
    • None
    • False
    • Not Selected
    • Done
    • OCPSTRAT-213 - External load balancers with OpenStack IPI (GA)
    • Impediment
    • OCPSTRAT-213External load balancers with OpenStack IPI (GA)
    • 0% To Do, 0% In Progress, 100% Done

      Epic Goal

      As an OpenShift infrastructure owner I need to deploy OCP on OpenStack with the installer-provisioned infrastructure workflow and configure my own load balancers

      Why is this important?

      Customers want to use their own load balancers and IPI comes with built-in LBs based in keepalived and haproxy. 

      Scenarios

      1. A large deployment routed across multiple failure domains without stretched L2 networks, would require to dynamically route the control plane VIP traffic through load-balancers capable of living in multiple L2.
      2. Customers who want to use their existing LB appliances for the control plane.

      Acceptance Criteria

      • Should we require the support of migration from internal to external LB?
      • CI - MUST be running successfully with tests automated
      • Release Technical Enablement - Provide necessary release enablement details and documents.
      • QE - must be testing a scenario where we disable the internal LB and setup an external LB and OCP deployment is running fine.
      • Documentation - we need to document all the gotchas regarding this type of deployment, even the specifics about the load-balancer itself (routing policy, dynamic routing, etc)

      Dependencies (internal and external)

      1. Fixed IPs would be very interesting to support, already WIP by vsphere (need to Spike on this): https://issues.redhat.com/browse/OCPBU-179
      2. Confirm with customers that they are ok with external LB or they prefer a new internal LB that supports BGP

      Previous Work:

      vsphere has done the work already via https://issues.redhat.com/browse/SPLAT-409

      Done Checklist

      • CI - CI is running, tests are automated and merged.
      • Release Enablement <link to Feature Enablement Presentation>
      • DEV - Upstream code and tests merged: <link to meaningful PR or GitHub Issue>
      • DEV - Upstream documentation merged: <link to meaningful PR or GitHub Issue>
      • DEV - Downstream build attached to advisory: <link to errata>
      • QE - Test plans in Polarion: <link or reference to Polarion>
      • QE - Automated tests merged: <link or reference to automated tests>
      • DOC - Downstream documentation merged: <link to meaningful PR>

       

      Notes: https://github.com/EmilienM/ansible-role-routed-lb is an example of a LB that will be used for CI, can be used by QE and customers.

              emacchi@redhat.com Emilien Macchi
              emacchi@redhat.com Emilien Macchi
              Emilien Macchi Emilien Macchi
              Itshak Brown Itshak Brown
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: