openstack: remove SRV records from service VM

[trown]

This is part of the work to remove the service VM from the
openstack architecture. This relies on the coredns/mdns static
pods setup in: openshift/machine-config-operator/pull/740

[trown]

/hold

we need to merge openshift/machine-config-operator#740 first

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: trown

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• data/data/openstack/OWNERS [trown]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[trown]

/retest

[openshift-ci-robot]

@trown: The following tests failed, say /retest to rerun them all:

Test name	Commit	Details	Rerun command
ci/prow/e2e-openstack	c4b1983	link	/test e2e-openstack
ci/prow/e2e-aws-scaleup-rhel7	c4b1983	link	/test e2e-aws-scaleup-rhel7
ci/prow/e2e-aws-upgrade	c4b1983	link	/test e2e-aws-upgrade

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[tomassedovic]

Looks great, but it needs an extra security group rule for envs that block UDP by default.

Happy to merge it afterwards (once the MOC PR lands).

[tomassedovic]

I've got two separate OpenStack deployments where any UDP traffic is blocked by default. That means the mDNS messages are never received and each master is left without the DNS records for the other masters.

Adding this rule (5353 is the port used to send the update messages) got me to a successful deployment on both OpenStack envs:

resource "openstack_networking_secgroup_rule_v2" "master_ingress_mdns_udp" {
  direction         = "ingress"
  ethertype         = "IPv4"
  protocol          = "udp"
  port_range_min    = 5353
  port_range_max    = 5353
  remote_ip_prefix  = "${var.cidr_block}"
  security_group_id = "${openstack_networking_secgroup_v2.master.id}"
}

[tomassedovic]

I've created a separate PR for that here:

#1925

[openshift-ci-robot]

@trown: PR needs rebase.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[abhinavdahiya]

closing due to inactivity. Please reopen if needed.

/close

[openshift-ci-robot]

@abhinavdahiya: Closed this PR.

Details

In response to this:

closing due to inactivity. Please reopen if needed.

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.