github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-30 15:05:27 +00:00
Code Issues Projects Releases Wiki Activity

add some notes for e2e preserve source pod ip test

Browse Source 
Signed-off-by: joey <zchengjoey@gmail.com>
This commit is contained in:
joey 2024-07-16 10:18:05 +08:00
parent 2ad04a0505
commit 47133919e7
No known key found for this signature in database
GPG Key ID: B5AE69C27B241A78
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
test/e2e/network/service.go
View File

@ -986,6 +986,9 @@ var _ = common.SIGDescribe("Services", func() {
framework.ExpectNoError(err)
})
// NOTE: base on fundamental requirement of the kubernetes networking model(https://kubernetes.io/docs/concepts/services-networking/)
// pods can communicate with all other pods on any other node without NAT
// we should avoid masquerading the internal Pod traffic, detail see #126089
ginkgo.It("should preserve source pod IP for traffic thru service cluster IP [LinuxOnly]", func(ctx context.Context) {
// this test is creating a pod with HostNetwork=true, which is not supported on Windows.
e2eskipper.SkipIfNodeOSDistroIs("windows")
@ -1055,7 +1058,9 @@ var _ = common.SIGDescribe("Services", func() {
for _, pausePod := range pausePods.Items {
sourceIP, execPodIP := execSourceIPTest(pausePod, serviceAddress)
ginkgo.By("Verifying the preserved source ip")
gomega.Expect(sourceIP).To(gomega.Equal(execPodIP))
gomega.Expect(sourceIP).To(gomega.Equal(execPodIP),
"expected preserved source IP is %s, if not, please check whether the internal pod traffic is masqueraded",
sourceIP)
}
})