gravitl/netmaker
1
1
Fork 0
mirror of https://github.com/gravitl/netmaker.git synced 2025-09-09 22:55:02 +08:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #1554 from gravitl/bugfix_v0.15.2_nft_rules

Browse source 
remove unnecessary nft rule
This commit is contained in:
Alex Feiszli 2022-09-13 14:24:44 -04:00 committed by GitHub
commit 0da5c388b6
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 0 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
logic/gateway.go
View file

@ -4,7 +4,6 @@ import (
"encoding/json"
"errors"
"fmt"
"net"
"strings"
"time"
@ -334,12 +333,6 @@ func firewallNFTCommandsCreateEgress(networkInterface string, gatewayInterface s
postUp += "nft add table nat ; "
postUp += "nft 'add chain ip nat prerouting { type nat hook prerouting priority 0 ;}' ; "
postUp += "nft 'add chain ip nat postrouting { type nat hook postrouting priority 0 ;}' ; "
for _, networkCIDR := range gatewayranges {
if net.ParseIP(networkCIDR).To16() != nil {
continue
}
postUp += "nft add rule nat postrouting iifname " + networkInterface + " oifname " + gatewayInterface + " ip saddr " + networkCIDR + " masquerade ; "
}
postDown += "nft flush table filter ; "