Canonical Juju

HA controllers unable to talk to 37017 with OCI provider

Bug #1834972 reported by David Lawson on 2019-07-01

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Canonical Juju	Fix Released	High	Harry Pidcock	Canonical Juju 2.6.9

Bug Description

OCI implements host firewalling as well as per network security groups, it appears that juju opens the API port (17070) through the host firewall but doesn't allow peers through the host firewall on the juju-db port (37017). Ideally when enabling HA in OCI juju would insert host firewall rules specifically allowing the IPs of its peers to reach port 37017.

Ian Booth (wallyworld) on 2019-08-08

Changed in juju:
milestone:	none → 2.6.7
status:	New → Triaged
importance:	Undecided → High

Harry Pidcock (hpidcock) on 2019-08-16

Changed in juju:
assignee:	nobody → Harry Pidcock (hpidcock)
status:	Triaged → In Progress

Revision history for this message

Harry Pidcock (hpidcock) wrote on 2019-08-16:

https://github.com/juju/juju/pull/10531

Richard Harding (rharding) on 2019-08-28

Changed in juju:
milestone:	2.6.7 → 2.6.9

Ian Booth (wallyworld) on 2019-09-05

Changed in juju:
status:	In Progress → Fix Committed

Canonical Juju QA Bot (juju-qa-bot) on 2019-09-25

Changed in juju:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.