Closed praveenkumar closed 4 months ago
/cherry-pick release-4.15
@praveenkumar: once the present PR merges, I will cherry-pick it on top of release-4.15 in a new PR and assign it to you.
This is unrelated to libvirt socket activation (as in 'systemd socket activation'), this commit stops accessing libvirt over unauthenticated qemu+tcp (which was needed by cluster-api-provider-libvirt), and uses the local/default libvirt connection instead.
accessing libvirt over unauthenticated qemu+tcp
Thanks, updated with the info.
# check if firewalld is configured to allow traffic from 192.168.126.0/24 to 192.168.122.1
can be removed (it's already commented out anyway)
# check that api.${SNC_PRODUCT_NAME}.${BASE_DOMAIN} either can't be resolved, or resolves to 192.168.126.1[01]
This also can be reworked to only check for 192.168.126.11
Should we completely remove this because this was commented out for a long period and we didn't hit any issue around firewalld stuff?
# check if firewalld is configured to allow traffic from 192.168.126.0/24 to 192.168.122.1
can be removed (it's already commented out anyway)
# check that api.${SNC_PRODUCT_NAME}.${BASE_DOMAIN} either can't be resolved, or resolves to 192.168.126.1[01]
This also can be reworked to only check for 192.168.126.11
Should we completely remove this because this was commented out for a long period and we didn't hit any issue around firewalld stuff?
We no longer need the VMs to be able to connect to the host libvirtd, so this can be removed. The fact that it was removed is one more reason for the removal :) The DNS resolution check should be kept.
[APPROVALNOTIFIER] This PR is APPROVED
This pull-request has been approved by: cfergeau
The full list of commands accepted by this bot can be found here.
The pull request process is described here
@praveenkumar: new pull request created: #859
As part of libvirt IPI installation, it was required to have tcp socket enabled for cluster-api to work. We shifted to use SNO and now we don't require it anymore.