Open v-ctiutiu opened 2 years ago
It's very easy to create overlapping IPs/subnets across multiple CRDs, for same or different gateways.
Have the controller logic check if same route is not managed by other CRDs, and deny the request if so.
Hint:
Maybe admission control is more appropriate, via validating webhooks.
Background
It's very easy to create overlapping IPs/subnets across multiple CRDs, for same or different gateways.
Proposal
Have the controller logic check if same route is not managed by other CRDs, and deny the request if so.
Hint:
Maybe admission control is more appropriate, via validating webhooks.