centos-ci
commented
5 years ago Can one of the admins verify this patch?
Open robdewit opened 5 years ago
centos-ci
commented
5 years ago Can one of the admins verify this patch?
In GKE (Google's managed Kubernetes environment), the master nodes are outside the node network. When adding the StorrageClass with a node IP address, they cannot connect to Heketi.
Running the service as NodePort and using external IP address of one of the nodes would work, but I preferred using a non-ephemeral load balanced address. Of course some authentication should be in place. I added a warning for that.
Future work: setup firewall rule to only allow connects from the master nodes.
This change is