Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Done
Priority: Major
Fix Version/s: openshift-4.14
Affects Version/s: None
Component/s: None
Labels:
- IPI
- aws
- installer

Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Intelligence Requested:
Market:
PX Impact Score:
PX Priority Data:
PX Review Complete:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

1. Proposed title of this feature request

eGress Security Group for OCP using 0.0.0.0 during IPI AWS installation. Should use exact ports/IP details (if there is any requirements)

2. What is the nature and description of the request?

eGress Security Group for OCP using 0.0.0.0 during IPI AWS installation. Should use exact ports/IP details (if there is any requirements)

3. Why does the customer need this? (List the business requirements here)

As per https://docs.openshift.com/container-platform/4.12/installing/installing_aws/installing-restricted-networks-aws-installer-provisioned.html

This is introduced as OCP need to interact with multiple AWS services such as Route53, I AM service etc which needs internet access, however, my customer is using VPC endpoints as internet service is not available to them and also their security policy doesn't allow them to use SG 0.0.0.0

4. List any affected packages or components.

Security Breach

is related to

OCPSTRAT-148 Support adding custom security groups in AWS

Closed

Assignee:: Marcos Entenza Garcia

Reporter:: Sumeet Kachhwaha (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2023/04/07 5:48 AM

Updated:: 2023/11/07 5:00 PM

Resolved:: 2023/04/27 2:02 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates