After updating a cluster from VKr 1.34 to 1.35, the NodePortLocal parameter is observed to be missing from the antrea-config ConfigMap. This results in pods lacking the required nodeportlocal annotation.

Consequently, the NSX Advanced Load Balancer (Avi) Kubernetes Operator (AKO) cannot discover the pods, causing the associated Virtual Services on Avi to report no backend servers. This results in all associated Load Balancers and Virtual Services failing (status down/red).

Manual attempts to add the parameter to the antrea-config ConfigMap or annotate pods directly are unsuccessful and do not persist the required nodeportlocal annotation.

• vSphere Kubernetes Service
• VKr 1.34, 1.35
• CNI: Antrea

The NodePortLocal (NPL) FeatureGate  transitioned to General Availability (GA) and is no longer exposed to users. However, legacy overlay files within the Antrea package continue to read the related FeatureGate setting. This conflict causes the NPL feature to remain disabled entirely in clusters upgraded to VKr 1.35, as well as in newly deployed VKr 1.35 clusters.

This issue is fixed in VKr 1.35.2

A configuration or overlay correction is required to bypass the legacy FeatureGate check.

Please contact Broadcom Support for assistance and reference this issue for the required remediation steps.

Japanese KB: https://knowledge.broadcom.com/external/article/437189