search

zalando / postgres-operator

Postgres operator creates and manages PostgreSQL clusters running in Kubernetes
https://postgres-operator.readthedocs.io/
MIT License
4.36k stars 980 forks source link

OpenStack Octavia Load Balancers don't support allowedSourceRanges #1046

Open bonhamcm opened 4 years ago

bonhamcm commented 4 years ago

Our Kubernetes environment is deployed on OpenStack and the Octavia load balancer implementation doesn't support the allowedSourceRanges option:

Warning   CreatingLoadBalancerFailed   service-controller            Error creating load balancer (will retry): failed to ensure load balancer for service postgresql/postgresql: source range restrictions are not supported for openstack load balancers without managing security groups

Is it possible to have a flag to disable the allowedSourceRanges option? Or maybe a value that won't add it to the service manifest to prevent the error?

Based on your feedback, I would be interested in providing a pull request for the solution.

Thank you.

FxKu commented 4 years ago

What does "without managing security groups" in the log message mean? Is there a way it can be supported with OpenStack? Do you really require load balancers and can't work with the ClusterIP services?

zetaab commented 4 years ago

@FxKu it is supported only in enough new OpenStack installations (read: latest or something).