cloud-provider-openstack [occm] Security group missing when deplyoing load balancer

[occm] Security group missing when deplyoing load balancer

Open amrap030 opened this issue 6 months ago • 0 comments

Hello together,

I used juju charms to deploy the openstack cloud controller manager in version 1.30 with the following configuration:

floating-network-id: ${external_network}
lb-floating-network: ${external_network}
lb-subnet: ${cluster_subnet}
manage-security-groups: true
subnet-id: ${cluster_subnet}
bs-version: "v3"
auth-url: https://keystone.${region}.***.net:5000/v3
trust-device-path: true

So manage-security-groups is enabled.

I use traefik as my ingress controller and when I deploy traefik, it successfully creates a load balancer on openstack, however, it doesn't create the corresponding security group to be attached to the ports.

These are the logs, when I create the loadbalancer:

I0409 12:25:23.814558      12 loadbalancer.go:1930] "Deleting load balancer" lbID="54cf8442-5d34-44a7-9328-14c028db9c8f" service="traefik/my-traefik"
I0409 12:25:34.191754      12 loadbalancer.go:1934] "Deleted load balancer" lbID="54cf8442-5d34-44a7-9328-14c028db9c8f" service="traefik/my-traefik"
I0409 12:25:34.331568      12 event.go:389] "Event occurred" object="traefik/my-traefik" fieldPath="" kind="Service" apiVersion="v1" type="Normal" reason="DeletedLoadBalancer" message="Deleted load balancer"
I0409 12:26:21.213889      12 event.go:389] "Event occurred" object="traefik/my-traefik" fieldPath="" kind="Service" apiVersion="v1" type="Normal" reason="EnsuringLoadBalancer" message="Ensuring load balancer"
I0409 12:26:21.227770      12 loadbalancer.go:1786] "EnsureLoadBalancer" cluster="kubernetes-ktuu4luiizyeogvixexerlktcmfilz1d" service="traefik/my-traefik"
I0409 12:26:21.265595      12 loadbalancer.go:1668] "Creating loadbalancer" lbName="kube_service_kubernetes-ktuu4luiizyeogvixexerlktcmfilz1d_traefik_my-traefik" service="traefik/my-traefik"
I0409 12:26:23.392053      12 loadbalancer.go:166] "Waiting for load balancer ACTIVE" lbID="4d7eb08d-7e08-455b-bf6e-199094c0d03b"
I0409 12:29:00.357466      12 loadbalancer.go:184] "Load balancer ACTIVE" lbID="4d7eb08d-7e08-455b-bf6e-199094c0d03b"
I0409 12:29:01.184280      12 event.go:389] "Event occurred" object="traefik/my-traefik" fieldPath="" kind="Service" apiVersion="v1" type="Normal" reason="EnsuredLoadBalancer" message="Ensured load balancer"
I0409 12:29:01.195616      12 loadbalancer.go:1786] "EnsureLoadBalancer" cluster="kubernetes-ktuu4luiizyeogvixexerlktcmfilz1d" service="traefik/my-traefik"
I0409 12:29:01.195622      12 event.go:389] "Event occurred" object="traefik/my-traefik" fieldPath="" kind="Service" apiVersion="v1" type="Normal" reason="EnsuringLoadBalancer" message="Ensuring load balancer"
I0409 12:29:02.105898      12 event.go:389] "Event occurred" object="traefik/my-traefik" fieldPath="" kind="Service" apiVersion="v1" type="Normal" reason="EnsuredLoadBalancer" message="Ensured load balancer"

Do you have an idea why I don't get the security groups anymore? It worked in the past.

Apr 09 '25 12:04 amrap030

cloud-provider-openstack cloud-provider-openstack copied to clipboard

[occm] Security group missing when deplyoing load balancer

cloud-provider-openstack
cloud-provider-openstack copied to clipboard