From 1ec456c514a13c3b75f3635bd4e228f874cf6f93 Mon Sep 17 00:00:00 2001 From: aabughosh Date: Mon, 1 Dec 2025 11:10:46 +0200 Subject: [PATCH] Add hostIP 127.0.0.1 to machine-config-daemon port 8798 - Added `hostIP: 127.0.0.1` to the containerPort 8798 to explicitly indicate that the health port is only bound to localhost. - Matches the existing behavior in logs: "Starting health listener on 127.0.0.1:8798" and address config: Addr: "127.0.0.1:8798" - This is informational and clarifies that this port is not externally exposed. --- manifests/machineconfigdaemon/daemonset.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/manifests/machineconfigdaemon/daemonset.yaml b/manifests/machineconfigdaemon/daemonset.yaml index 1d32e44348..6900e81346 100644 --- a/manifests/machineconfigdaemon/daemonset.yaml +++ b/manifests/machineconfigdaemon/daemonset.yaml @@ -24,6 +24,7 @@ spec: image: {{.Images.MachineConfigOperator}} ports: - containerPort: 8798 + hostIP: 127.0.0.1 name: health protocol: TCP command: ["/usr/bin/machine-config-daemon"]