Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-3166

zero network trust policies for openshift

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • None
    • None
    • False
    • None
    • False
    • Not Selected
    • 0
    • 0% 0%

      1. Proposed title of this feature request
      2. What is the nature and description of the request?

      In openshift installation phase I can see multiple multicast type traffics are initiated 

      For example : 

      1. VRRP multicast group-224.0.0.18 
      2. ARP request for management of Virtual IPs
      3. IGMPv3 Membership reports to 224.0.0.22

      Product documentation does not include these topics, which is causing hurdles for installation (and probably it will cause issues in future).

       

      Product document link : https://docs.openshift.com/container-platform/4.10/installing/installing_vsphere/installing-vsphere.html#installation-network-connectivity-user-infra_installing-vsphere

       

      Request :

        - can we include zero network trust policy testing for openshift  ?

      Additional information 

      We have a bug reported on similar topic (to add backend working on keepalived  to product document)

         link : https://bugzilla.redhat.com/show_bug.cgi?id=1864282

      3. Why does the customer need this? (List the business requirements here)

      improved network security.

      4. List any affected packages or components.

            mcurry@redhat.com Marc Curry
            rhn-support-dmule Dhananjay Mule (Inactive)
            Votes:
            2 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated: