Pods try to reach external destination with wrong MAC

Solution Verified - Updated -

Issue

  • Since an IP in the node network changed its associated MAC address (e.g. a VIP moved to a node with different MAC), it is no longer reachable from s ome nodes.
  • On some nodes, pods try to reach external destinations on the node subnet with the wrong MAC address.
  • On some nodes, any destination that goes via default gateway is not reachable.
  • On some nodes, some concrete destinations in the node subnet are not reachable.
  • On some nodes, pods cannot connect to the ingress VIP or the kube-apiserver VIP although it is reachable from the host network.

Environment

  • Red Hat OpenShift Container Platform 4.y
  • OVN-Kubernetes network plugin

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content