github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-05 02:09:56 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #14914 from fgrzadkowski/reject_drop_fix

Browse Source 
Use REJECT instead of DROP when blocking node
This commit is contained in:
Jerzy Szczepkowski 2015-10-02 11:22:50 +02:00
commit 89859ff14c
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
test/e2e/resize_nodes.go
View File

@ -320,7 +320,7 @@ func performTemporaryNetworkFailure(c *client.Client, ns, rcName string, replica
default: default:
Failf("This test is not supported for provider %s and should be disabled", testContext.Provider) Failf("This test is not supported for provider %s and should be disabled", testContext.Provider)
} }
iptablesRule := fmt.Sprintf("OUTPUT --destination %s --jump DROP", master) iptablesRule := fmt.Sprintf("OUTPUT --destination %s --jump REJECT", master)
defer func() { defer func() {
// This code will execute even if setting the iptables rule failed. // This code will execute even if setting the iptables rule failed.
// It is on purpose because we may have an error even if the new rule // It is on purpose because we may have an error even if the new rule
@ -346,7 +346,7 @@ func performTemporaryNetworkFailure(c *client.Client, ns, rcName string, replica
} }
}) })
if err != nil { if err != nil {
Failf("Failed to remove the iptable DROP rule. Manual intervention is "+ Failf("Failed to remove the iptable REJECT rule. Manual intervention is "+
"required on node %s: remove rule %s, if exists", node.Name, iptablesRule) "required on node %s: remove rule %s, if exists", node.Name, iptablesRule)
} }
}() }()