You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
KevinLiang10
e05e620096
util/linuxfw: fix delete snat rule ( #15763 ) ...
* util/linuxfw: fix delete snat rule
This pr is fixing the bug that in nftables mode setting snat-subnet-routes=false doesn't
delete the masq rule in nat table.
Updates #15661
Signed-off-by: Kevin Liang <kevinliang@tailscale.com>
* change index arithmetic in test to chunk
Signed-off-by: Kevin Liang <kevinliang@tailscale.com>
* reuse rule creation function in rule delete
Signed-off-by: Kevin Liang <kevinliang@tailscale.com>
* add test for deleting the masq rule
Signed-off-by: Kevin Liang <kevinliang@tailscale.com>
---------
Signed-off-by: Kevin Liang <kevinliang@tailscale.com>
12 months ago
..
linuxfwtest
util/linuxfw: initial implementation of package
3 years ago
detector.go
util/linuxfw: fall back to nftables when iptables not found
2 years ago
fake.go
cmd/containerboot,cmd/k8s-operator: enable IPv6 for fqdn egress proxies ( #12577 )
2 years ago
helpers.go
util/slicesx: add FirstElementEqual and LastElementEqual
2 years ago
iptables.go
util/linuxfw: fall back to nftables when iptables not found
2 years ago
iptables_for_svcs.go
cmd/containerboot,kube,util/linuxfw: configure kube egress proxies to route to 1+ tailnet targets ( #13531 )
2 years ago
iptables_for_svcs_test.go
cmd/containerboot,kube,util/linuxfw: configure kube egress proxies to route to 1+ tailnet targets ( #13531 )
2 years ago
iptables_runner.go
cmd/containerboot,util/linuxfw: create a SNAT rule for dst/src only once, clean up if needed ( #13658 )
2 years ago
iptables_runner_test.go
cmd/containerboot,util/linuxfw: create a SNAT rule for dst/src only once, clean up if needed ( #13658 )
2 years ago
linuxfw.go
all: add test for package comments, fix, add comments as needed
2 years ago
linuxfw_unsupported.go
all: cleanup unused code, part 2 ( #10670 )
2 years ago
nftables.go
all: use Go 1.21's binary.NativeEndian
1 year ago
nftables_for_svcs.go
cmd/containerboot,kube,util/linuxfw: configure kube egress proxies to route to 1+ tailnet targets ( #13531 )
2 years ago
nftables_for_svcs_test.go
cmd/containerboot,util/linuxfw: create a SNAT rule for dst/src only once, clean up if needed ( #13658 )
2 years ago
nftables_runner.go
util/linuxfw: fix delete snat rule ( #15763 )
12 months ago
nftables_runner_test.go
util/linuxfw: fix delete snat rule ( #15763 )
12 months ago
nftables_types.go
util/linuxfw: add new arch build constraints
3 years ago
KevinLiang10
e05e620096