You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Maisem Ali
1f51bb6891
net/tstun: do SNAT after filterPacketOutboundToWireGuard ...
In a configuration where the local node (ip1) has a different IP (ip2)
that it uses to communicate with a peer (ip3) we would do UDP flow
tracking on the `ip2->ip3` tuple. When we receive the response from
the peer `ip3->ip2` we would dnat it back to `ip3->ip1` which would
then not match the flow track state and the packet would get dropped.
To fix this, we should do flow tracking on the `ip1->ip3` tuple instead
of `ip2->ip3` which requires doing SNAT after the running filterPacketOutboundToWireGuard.
Updates tailscale/corp#19971 , tailscale/corp#8020
Signed-off-by: Maisem Ali <maisem@tailscale.com>
2 years ago
..
art
all: use Go 1.22 range-over-int
2 years ago
connstats
all: use Go 1.22 range-over-int
2 years ago
dns
net/dns/resolver, control/controlknobs, tailcfg: use UserDial instead of SystemDial to dial DNS servers
2 years ago
dnscache
net/netns, net/dns/resolver, etc: make netmon required in most places
2 years ago
dnsfallback
tsd, ipnlocal, etc: add tsd.System.HealthTracker, start some plumbing
2 years ago
flowtrack
all: update copyright and license headers
3 years ago
ktimeout
net/ktimeout: add a package to set TCP user timeout
2 years ago
memnet
net/memnet: export the network name ( #9111 )
3 years ago
netaddr
all: update copyright and license headers
3 years ago
netcheck
net/netcheck: do not add derps if IPv4/IPv6 is set to "none"
2 years ago
neterror
net/neterror, wgengine/magicsock: use UDP GSO and GRO on Linux ( #7791 )
3 years ago
netkernelconf
client/tailscale,ipn/{ipnlocal,localapi}: check UDP GRO config ( #10071 )
2 years ago
netknob
all: update copyright and license headers
3 years ago
netmon
net/netmon: remove spammy log statements ( #11953 )
2 years ago
netns
net/{interfaces,netmon}, all: merge net/interfaces package into net/netmon
2 years ago
netstat
net/{netns,netstat}: use new x/sys/cpu.IsBigEndian
3 years ago
netutil
net/netmon, add: add netmon.State type alias of interfaces.State
2 years ago
packet
all: use Go 1.22 range-over-int
2 years ago
ping
net/ping: fix ICMP echo code field to 0
3 years ago
portmapper
net/portmapper: add envknob to disable portmapper in localhost integration tests
2 years ago
proxymux
all: cleanup unused code, part 1 ( #10661 )
2 years ago
routetable
net/{interfaces,netmon}, all: merge net/interfaces package into net/netmon
2 years ago
socks5
net/socks5: add password auth support
3 years ago
sockstats
net/{interfaces,netmon}, all: merge net/interfaces package into net/netmon
2 years ago
speedtest
all: update copyright and license headers
3 years ago
stun
all: make more tests pass/skip in airplane mode
2 years ago
stunserver
all: use Go 1.22 range-over-int
2 years ago
tcpinfo
all: use Go 1.22 range-over-int
2 years ago
tlsdial
tsd, ipnlocal, etc: add tsd.System.HealthTracker, start some plumbing
2 years ago
tsaddr
types/views: remove duplicate SliceContainsFunc
2 years ago
tsdial
ipn/ipnlocal, net/tsdial: plumb routes into tsdial and use them in UserDial
2 years ago
tshttpproxy
all: use Go 1.22 range-over-int
2 years ago
tstun
net/tstun: do SNAT after filterPacketOutboundToWireGuard
2 years ago
wsconn
net/wsconn: accept a remote addr string and plumb it through
3 years ago
Maisem Ali
1f51bb6891