Anthos Service Mesh and Traffic Director are now Cloud Service Mesh. For more information, see the Cloud Service Mesh overview.

Troubleshooting NEGs with CI/CD Tools

If your cluster is using the Traffic Director control plane (see Check control plane implementation to check which control plane your cluster is using) and you are using CI/CD tools for managing your Kubernetes resources, then you need to be aware of possible incompatibilities and workarounds.

Traffic Director and NEG annotations

When using the Traffic Director control plane your services are annotated with 'cloud.google.com/neg' and 'cloud.google.com/neg-status' annotations. This could cause contention between the CI/CD tool and Cloud Service Mesh. In case your CI/CD tool finds this annotation unexpected and tries to remove it, you must configure your CI/CD tool to ignore the NEG annotations.

The configuration to ignore the NEG annotation will differ for every tool. For example, if you are using ArgoCD you can configure it to ignore NEG annotation.

ArgoCD

Utilize ArgoCD's Diffing Customization to instruct ArgoCD to ignore the NEG annotation. The configuration should look like the following:

spec:
  ignoreDifferences:
    - group: 'v1'
      kind: 'Service'
      jsonPointers:
        - /metadata/annotations/cloud.google.com~1neg-status
        - /metadata/annotations/cloud.google.com~1neg