As we're running trunk kernel packages, these updates will cause issues for ipsec deployment until reboot (can't load new modules). The reboot generally takes a while, as we can't take down much of an entire site+cluster at any given time. We probably want a moratorium on any ongoing reboot process during Apr 28-30-ish for GTT's link outages that affect cache PoP redundancy/capacity as well.
See also: T96146