Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

allowedSourceRanges should support ipv6 #2787

Open
viceice opened this issue Oct 21, 2024 · 1 comment
Open

allowedSourceRanges should support ipv6 #2787

viceice opened this issue Oct 21, 2024 · 1 comment

Comments

@viceice
Copy link

viceice commented Oct 21, 2024

Please, answer some short questions which should help us to understand your problem / question better?

  • Which image of the operator are you using? ghcr.io/zalando/postgres-operator:v1.13.0
  • Where do you run it - cloud or metal? Kubernetes or OpenShift? Bare Metal K8s
  • Are you running Postgres Operator in production? yes
  • Type of issue? feature request

I've a cluster which supports dualstack networking and i like to allow ipv6 access to my postgresql clusters.

To get this working i need to set ipv6 ranges to allowedSourceRanges to the postgresql crd.

it should also be possible to set the ipFamilyPolicy and ipFamilies fields on the service opbjects.

Workaround: Create my own service

Error:

postgresql/db/pgc1 dry-run failed (Invalid): postgresql.acid.zalan.do "pgc1" is invalid: [spec.allowedSourceRanges[1]: Invalid value: "fd01::/48": spec.allowedSourceRanges[1] in body should match '^(\d|[1-9]\d|1\d\d|2[0-4]\d|25[0-5]).(\d|[1-9]\d|1\d\d|2[0-4]\d|25[0-5]).(\d|[1-9]\d|1\d\d|2[0-4]\d|25[0-5]).(\d|[1-9]\d|1\d\d|2[0-4]\d|25[0-5])/(\d|[1-2]\d|3[0-2])
\(']
@FxKu
Copy link
Member

FxKu commented Nov 26, 2024

I welcome a PR that updates the pattern for allowedSourceRanges field to allow all the stuff you've mentioned @viceice 😃

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants