Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Unresolved
Priority: Normal
Fix Version/s: None
Affects Version/s: openshift-4.14.z
Component/s: Network - Core
Labels:
- OVN-Kubernetes

Target Version:
None
Activity Type:
Product / Portfolio Work
Status Summary:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Products:
None
Hierarchy Progress Bar:
None

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Review Complete:
None
PX Impact Score:
PX Impact Range:
None
PX Priority Data:
None
PX Technical Impact:
None
PX Technical Impact Notes:
None
PX Scheduling Request:
None

1. Proposed title of this feature request
Add ICMP support to Network Policies

2. What is the nature and description of the request?
Add ICMP as possible protocol to be used in Network Policies. Here after a possible example of what is expected by my customer

spec:
  egress:
    - to:
      - ipBlock:
        cidr: 1.2.3.4/24
      ports:
      - protocol: icmp

As of today, it is not possible to use ICMP as a valid protocole in Network Policy rules.
Kubernetes API Networking types.go

3. Why does the customer need this? (List the business requirements here)
Security team on customer side asked for ICMP packets to be filtered like on any other network routers.

4. List any affected packages or components.
ovn-kubernetes

is related to

RFE-8007 ICMP Support in EgressFirewall

Backlog

relates to

RFE-6896 ICMP Support in MultiNetworkPolicy

Approved

Assignee:: Marc Curry

Reporter:: Franck Grosjean

Need Info From:: None

Votes:: 3 Vote for this issue

Watchers:: 10 Start watching this issue

Created:: 2024/06/24 3:27 PM

Updated:: 2026/02/23 4:50 PM

Target start:: None

Target end:: None

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates