EK DNS netpol does not allow port 5353 for Openshift

Bug

Description

Attempting to deploy a fresh bigbang 1.11.0, all the logging-ek-* pods fail to come up. I was able to find this error in the elasticsearch container logs:

BindTransportException[Failed to resolve publish address]; nested: UnknownHostException[logging-ek-es-data-0.logging-ek-es-data.logging.svc: Name or service not known]; Likely root cause: java.net.UnknownHostException: logging-ek-es-data-0.logging-ek-es-data.logging.svc: Name or service not known

Openshift version 4.6.4

Found that removing all network policies in the logging namespace allows all the pods to come up succesfully.

BigBang Version

1.11.0

Edited Jul 20, 2021 by Ryan Garcia

Admin message

EK DNS netpol does not allow port 5353 for Openshift

Bug

Description

BigBang Version