ff3d4a55b0
Automatic merge from submit-queue (batch tested with PRs 37468, 36546, 38713, 38902, 38614) Adds e2e firewall tests for LoadBalancer service, ingress, and e2e cluster Fixes #25488 and fixes #31827. This PR adds e2e firewall test for LoadBalancer type service, ingress and e2e cluster. Test details for LoadBalancer type service as below: - Verifies corresponding firewall rule has correct `sourceRanges`, `ports and protocols` and `target tags`. - Verifies requests can reach all expected instances. - Verifies requests can not reach instances that are not included. Overview of the test procedure: - Creates a LoadBalancer type service. - Validates the corresponding firewall rule. - Creates netexec pods as service backends. - Sends requests from outside of the cluster and examine hitting all instances in range. - Removes tags from one of the instances in order to get it out of firewall rule's range. - Sends requests from outside of the cluster and examine not hitting this instance. - Recovers tags for this instances and verifies its traffic is back. @bprashanth @bowei @thockin
7.1 KiB
7.1 KiB