New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add netpol endport documentation #26714
Conversation
Deploy preview for kubernetes-io-master-staging ready! Built with commit c0bb986 https://deploy-preview-26714--kubernetes-io-master-staging.netlify.app |
* As an alpha feature, this is disabled by default. To enable endPort field at a cluster level, you (or your cluster administrator) will need to enable the `NetworkPolicyEndPort` [feature gate](/docs/reference/command-line-tools-reference/feature-gates/) for the API server with `--feature-gates=NetworkPolicyEndPort=true,…`. | ||
* The `endPort` field must be equal than or greater to `port` field. | ||
* `endPort` can only be defined if `port` is also defined. | ||
* When using `endPort` field, the `port` field must be numeric. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
maybe bringing a more global statement like namedPorts are not supported
or both ports must be numeric.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
makes sense, will improve this statement during the weekend
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks for proposing this @rikatz
Two problems I think:
- This PR should target the dev-1.21 branch; master represents the live (v1.20) documentation.
- We need to make sure that the
NetworkPolicyEndPort
feature gate is documented in the list of feature gates.
/milestone 1.21
content/en/docs/concepts/services-networking/network-policies.md
Outdated
Show resolved
Hide resolved
content/en/docs/concepts/services-networking/network-policies.md
Outdated
Show resolved
Hide resolved
KEP issue: kubernetes/enhancements#2079 |
/retitle Add netpol endport documentation “before release” is implicit, not documenting features ahead of release is a bug. |
Co-authored-by: Tim Bannister <tim@scalefactory.com>
OK! Will work on this during the weekend. Is there a deadline for docs proposals targeting v1.21? |
/sig network |
Deploy preview for kubernetes-io-vnext-staging processing. Building with commit 77f868e https://app.netlify.com/sites/kubernetes-io-vnext-staging/deploys/603d520263efcb000749b600 |
/lgtm |
LGTM label has been added. Git tree hash: 6e879663f73001ccc7bc1e660841c2e8a0c5e8ac
|
If the k/kubernetes and any other related changes are merged, this is good to go into dev-1.21 |
Yes, it's already implemented in k/k repo :) |
/approve |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: sftim The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
endPort field is going to be part of release v1.21 as per https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/2079-network-policy-port-range
While this still need to be supported by the CNIs and it's an alpha feature, it's worth to document it and remove from non supported features.