Skip to content

Commit 76868f7

Browse files
jeana-redhatjeana-redhat
authored
Merge pull request #55774 from ShaunaDiaz/OSDOCS-5281
OSDOCS-5281: update module to procedure format
2 parents 6a0df8e + 3796883 commit 76868f7

File tree

1 file changed

+10
-6
lines changed

1 file changed

+10
-6
lines changed

modules/microshift-troubleshooting-nodeport.adoc

Lines changed: 10 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -6,31 +6,35 @@
66
[id="microshift-troubleshooting-nodeport_{context}"]
77
= Troubleshooting the NodePort service iptable rules
88

9-
OVN-Kubernetes sets up an iptable chain in the NAT table to handle incoming traffic to the NodePort service. When the NodePort service is not reachable or the connection is refused, check the iptable rules on the host to make sure the relevant rules are properly inserted.
10-
//procedure here
9+
OVN-Kubernetes sets up an iptable chain in the network address translation (NAT) table to handle incoming traffic to the NodePort service. When the NodePort service is not reachable or the connection is refused, check the iptable rules on the host to make sure the relevant rules are properly inserted.
1110

12-
Example iptable rules for the NodePort service:
11+
.Procedure
1312

13+
. View the iptable rules for the NodePort service by running the following command:
14+
+
1415
[source, terminal]
1516
----
1617
$ iptables-save | grep NODEPORT
1718
----
19+
+
1820
.Example output
1921
[source, terminal]
2022
----
2123
-A OUTPUT -j OVN-KUBE-NODEPORT
2224
-A OVN-KUBE-NODEPORT -p tcp -m addrtype --dst-type LOCAL -m tcp --dport 30326 -j DNAT --to-destination 10.43.95.170:80
2325
----
26+
OVN-Kubernetes configures the `OVN-KUBE-NODEPORT` iptable chain in the NAT table to match the destination port and Destination Network Address Translates (DNATs) the packet to the `clusterIP` service. The packet is then routed to the OVN network through the gateway bridge `br-ex` via routing rules on the host.
2427

25-
OVN-Kubernetes configures the OVN-KUBE-NODEPORT chain in iptable NAT table to match the destination port and DNATs the packet to the backend clusterIP service. The DNATed packet is then routed to the OVN network through gateway bridge br-ex via routing rules on the host:
26-
28+
. Route the packet through the network with routing rules by running the following command:
29+
+
2730
[source, terminal]
2831
----
2932
$ ip route
3033
----
34+
+
3135
.Example output
3236
[source, terminal]
3337
----
3438
10.43.0.0/16 via 192.168.122.1 dev br-ex mtu 1400
3539
----
36-
This routing rule matches the Kubernetes service IP address range and forwards the packet to the gateway bridge `br-ex`. You must enable `ip_forward` on the host. After the packet is forwarded to the OVS bridge `br-ex`, it is handled by openflow rules in OVS which steers the packet to the OVN network and eventually to the pod.
40+
This routing rule matches the Kubernetes service IP address range and forwards the packet to the gateway bridge `br-ex`. You must enable `ip_forward` on the host. After the packet is forwarded to the OVS bridge `br-ex`, it is handled by OpenFlow rules in OVS which steers the packet to the OVN network and eventually to the pod.

0 commit comments

Comments
 (0)