Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-8095

Alert cluster admin when UDN is enabled with an insufficient masquerade subnet size

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • Network - Core, udn
    • None
    • None
    • Product / Portfolio Work
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      We upgraded a cluster from 4.12 to 4.19 and attempted to run a VM with UDN enabled. The VM networking did not work out-of-the-box.

      After investigation, we found the issue was caused by the masquerade subnet size, which had not been explicitly set in the `network/cluster` CR.

      By updating the CR as documented here and restarting the VM, egress connectivity (ping) began working as expected.

      Proposal:
      Add a console alert (or similar notification) when:

      • UDN is in use, and
      • The configured masquerade subnet size is too small to support UDN.

      This would proactively inform administrators of a misconfiguration that currently only surfaces at runtime, reducing troubleshooting time.

      Or

      Auto updating the masquerade subnet size as part of the OCP upgrade.

              mcurry@redhat.com Marc Curry
              ryasharz@redhat.com Rabin Yasharzadehe
              None
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                None
                None