Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Normal
Fix Version/s: v0.4.0
Affects Version/s: None
Component/s: None
Labels:
- qe-req

Story Points:
1

Sprint:
Serverless Sprint 164, Serverless Sprint 165

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

When deploying Knative Serving to OpenShift 4, we should default the `istio.sidecar.includeOutboundIPRanges` in serving's config-network to the address space of the OpenShift cluster.

This is available via a CRD in Openshift 4 as `status.serviceNetwork`:

`oc get network cluster`

Note that there could be more than one serviceNetworks defined there. We could cheat for now and assume only one or cheat even more and assume only `172.30.0.0/16`. But, that's cheating.

Without this set, any calls to external services from within Knative-deployed services will fail unless you create a specific egress rule allowing it in Istio.

Acceptance Criteria:

(maybe) The install script sets the value automatically
The new operator sets the value automatically

is related to

SRVKS-73 Use unstructured objects to get/set configmap for cluster networks/domain

Closed

relates to

SRVKS-74 Serving controller needs "list" networks permission during installation

Closed

Assignee:: Michal Vinkler

Reporter:: Ben Browning

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 2019/03/08 3:43 PM

Updated:: 2022/02/25 9:56 PM

Resolved:: 2019/04/12 7:42 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates