Explicitly disable BGP export for Calico IPPools

We recently noticed that sometimes (probably after node reboots)
static routes to remote cluster CIDRs added by RouteAgent are overridden
by Calico (proto = bird) even though IPPool is set with Disabled=true.
Routes added by Calico point inter-cluster traffic to default interface
instead of vx-submariner which breaks datapath.

Adding DisableBGPExport=true to IPPool solves this issue.

Signed-off-by: Yossi Boaron <[email protected]>

Author: yboaron

pkg/routeagent_driver/handlers/calico/ippool_handler.go

@@ -161,9 +161,10 @@ func (h *calicoIPPoolHandler) createIPPool(endpoint *submV1.Endpoint) error {
 				Labels: map[string]string{SubmarinerIPPool: "true"},
 			},
 			Spec: calicoapi.IPPoolSpec{
-				CIDR:        subnet,
-				NATOutgoing: false,
-				Disabled:    true,
+				CIDR:             subnet,
+				NATOutgoing:      false,
+				Disabled:         true,
+				DisableBGPExport: true,
 			},
 		}
 		_, err := h.client.ProjectcalicoV3().IPPools().Create(context.TODO(), iPPoolObj, metav1.CreateOptions{})