Pod level metrics for drop may miss localCtx labels #80
Labels
area/metrics
area/plugins
control-plane/legacy
good first issue
Good for newcomers
help wanted
Extra attention is needed
lang/go
The Go Programming Language
priority/2
P2
scope/S
Change is Small
type/bug
Something isn't working
Comments
|
This issue is stale because it has been open for 7 days with no activity. Remove stale label or comment or this will be closed in 7 days |
github-actions
bot
added
the
meta/waiting-for-author
anubhabMajumdar
added
good first issue
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Consider the following scenario:
Server is running in a pod on node-1
We annotate the server to observe dropped packets
Apply a network policy for ingress
When a pod on other nodes try to connect to server, the IPTABLE rule on that node will drop the packet. However, for local context, our filter_map won't have the IP of the server, hence we will not generate any event. Thus, we will see drop_count increase at the node level, but no pod level labels for the drops
True for external connections as well
This is due to how Azure NPM works today. May need to add disclaimer to account for this behavior.
cc @anubhabMajumdar
The text was updated successfully, but these errors were encountered: