gravitl/netmaker
1
1
Fork 0
mirror of https://github.com/gravitl/netmaker.git synced 2025-09-05 04:34:30 +08:00
Code Issues Projects Releases Packages Wiki Activity

NM-9: fix all rsrc static node rule (#3593)

Browse source 
* user policies fix

* fix user acl rules for all resources tag

* handle relayed comms via gateway with active acl policies

* fix static node comms to all resources

* add all resources src rule for static node
This commit is contained in:
Abhishek K 2025-08-11 22:04:39 +05:30 committed by GitHub
parent 32657dde82
commit b3253cd17d
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 16 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
logic/acls.go
View file

@ -59,6 +59,14 @@ func GetFwRulesOnIngressGateway(node models.Node) (rules []models.FwRule) {
},
Allow: true,
})
rules = append(rules, models.FwRule{
SrcIP: node.NetworkRange,
DstIP: net.IPNet{
IP: nodeI.Address.IP,
Mask: net.CIDRMask(32, 32),
},
Allow: true,
})
}
if nodeI.Address6.IP != nil {
rules = append(rules, models.FwRule{
@ -68,6 +76,14 @@ func GetFwRulesOnIngressGateway(node models.Node) (rules []models.FwRule) {
},
Allow: true,
})
rules = append(rules, models.FwRule{
SrcIP: node.NetworkRange6,
DstIP: net.IPNet{
IP: nodeI.Address.IP,
Mask: net.CIDRMask(128, 128),
},
Allow: true,
})
}
continue
}