apps sc & wc: private subnet as node-ips #1582
Conversation
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
2 times, most recently
from
8ae02ad to
52f1fdd
Compare
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
2 times, most recently
from
c41629f to
e222481
Compare
|
I think that this issue called for a more generic solution that allows us to preserve any given ip somehow. Something like this suggestion from the issue:
I especially like the idea that it will not remove anything with a comment. In addition to this I still want to keep your idea of always adding the private subnet (although as André said I'm not sure we should hard code it to 172.16.0.0/12). |
Yeah we had a discussion on Slack regarding it, and the new idea is that it will treat subnet CIDRs differently compared to individual IPs. And if it finds a configured CIDR it should keep it and ignore any IPs it finds that matches those CIDRs. We might still want to add the comment approach to to cover individual IPs as well, though I'm unsure if we have great use of that for those IPs we manage with the script. 🤔 |
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
4 times, most recently
from
5b9d8f4 to
7ce0db2
Compare
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
2 times, most recently
from
88af902 to
2aea072
Compare
robinelastisys
changed the title
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
3 times, most recently
from
9d1a66e to
5e2411b
Compare
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
from
5e2411b to
73a42c3
Compare
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
2 times, most recently
from
abb1fc3 to
74e90e2
Compare
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
from
74e90e2 to
4674937
Compare
|
The |
|
I propose that we try to hook into the process earlier by running this as a filter on the list of ips (rather than modify how the ips are written into the file, as then we don't need to do a similar thing for how we diff as well). And with that we should rework the update-ips script in general so we can have some common path for how we update and diff ips. |
robinelastisys
added
the
kind/improvement
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
2 times, most recently
from
00899c1 to
576d700
Compare
| @@ -36,7 +36,7 @@ usage() { | |||
| echo " validate <wc|sc> validates config files" 1>&2 | |||
| echo " providers lists supported cloud providers" 1>&2 | |||
| echo " flavors lists supported configuration flavors" 1>&2 | |||
| echo " update-ips <wc|sc|both> <update|dry-run> Automatically fetches and updates the IPs for network policies" 1>&2 | |||
| echo " update-ips <wc|sc|both> <apply|dry-run> Automatically fetches and applies the IPs for network policies" 1>&2 | |||
There was a problem hiding this comment.
| echo " update-ips <wc|sc|both> <apply|dry-run> Automatically fetches and applies the IPs for network policies" 1>&2 | |
| echo " update-ips <wc|sc|both> <apply|dry-run> Automatically fetches and updates the IPs for network policies" 1>&2 |
robinelastisys
force-pushed
the
robinr/sc-node-update-ips-octivia
branch
from
f68b4aa to
659a956
Compare
What this PR does / why we need it:
#1453 #1677
Which issue this PR fixes (use the format
fixes #<issue number>(, fixes #<issue_number>, ...)to automatically close the issue when PR gets merged):fixes #1453
fixes #1677
Public facing documentation PR (if applicable)
Special notes for reviewer:
Ready for review.
Add a screenshot or an example to illustrate the proposed solution:
Checklist:
E.g. logs or metrics are not being collected or Kubernetes API server
will not be responding while upgrading.
E.g. removes or changes any CK8S config options or Kubernetes APIs.
I.e. full cluster migration is required.
Pipeline config (if applicable)
If you change some config options (e.g. add/rename variable or change the default value) you may need to update the config used by the pipeline in
pipeline/config.