New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support specifying more than 5 ports in L4 ILB service #99595
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The code changes look good, having a comment about eventing.
@@ -187,6 +189,10 @@ func (g *Cloud) ensureInternalLoadBalancer(clusterName, clusterID string, svc *v | |||
if options.AllowGlobalAccess { | |||
newFwdRule.AllowGlobalAccess = options.AllowGlobalAccess | |||
} | |||
if len(ports) > maxL4ILBPorts { | |||
newFwdRule.Ports = nil |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Is it necessary to surface a warning/event that all ports are configured now despite the given ports?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The firewall rules are added only for the specified ports, so traffic from clients to any non-listed ports will not work. We can add an Info event in any case.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks, in that sense it might be fine.
/retest |
/lgtm |
/retest |
/test pull-kubernetes-verify |
@prameshj: The following tests failed, say
Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
Added logic to set AllPorts field if more than 5 ports are specified.
/lgtm |
/assign @andrewsykim |
/assign @cheftako |
/lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: cheftako, MrHohn, prameshj The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Sorry for the late response, ack that this is a bug fix, thanks @prameshj |
Can you update release notes to indicate what this is fixing? |
Thanks Andrew. Do I just update the release-notes section in this PR? |
Yup :D |
…595-upstream-release-1.20 Automated cherry pick of #99595: Support > 5 ports in L4 ILB.
Added logic to set AllPorts field if more than 5 ports are specified.
What type of PR is this?
/kind bug
What this PR does / why we need it:
Currently, the k8s spec allows specifying more than 5 ports in the service spec, but ILB creation fails due to ForwardingRule limitation. This PR fixes the issue by setting the "AllPorts" field when more than 5 ports are specified.
Which issue(s) this PR fixes:
Fixes #
Special notes for your reviewer:
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: