Nginx Ingress does not work after setting `externalTrafficPolicy: Local`

[ghost]

Is this a request for help?: No

Is this an ISSUE or FEATURE REQUEST? (choose one): Issue

What version of acs-engine?: 0.18.9

Orchestrator and version (e.g. Kubernetes, DC/OS, Swarm) Kubernetes 1.10.5

What happened: Installed nginx-ingress with helm chart. Trying to get sourceIP of client by setting externalTrafficPolicy: Local. Once set; all the routing stops. I cant hit the LoadBalancer IP to get the service. I get no response and http request times out. If I revert back to externalTrafficPolicy: Cluster it works fine.

I think it might be azure specific issue. However, it says in the docs that it should work on Azure.

Source: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-type-loadbalancer

What you expected to happen: After setting externalTrafficPolicy: Local ; I should get client SourceIP and routing should work normally.

How to reproduce it (as minimally and precisely as possible):

1. Install nginx-ingress
2. Set externalTrafficPolicy: Local

Anything else we need to know: Its really a hit or miss; it worked on 1 of my clusters. Does not work on 2 others. Using Calico CNI AAD integration.

[stale[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contribution. Note that acs-engine is deprecated--see https://github.com/Azure/aks-engine instead.