From f42c04e3c615e8459fde79d627ee3b1923c7f11e Mon Sep 17 00:00:00 2001
From: "Matthew R. Kasun" <mkasun@nusak.ca>
Date: Tue, 27 Dec 2022 06:15:29 -0500
Subject: [PATCH] set allowedip mask to /32 /128

---
 logic/peers.go | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/logic/peers.go b/logic/peers.go
index 53f16b22..769b9962 100644
--- a/logic/peers.go
+++ b/logic/peers.go
@@ -922,10 +922,18 @@ func getEgressIPs(node, peer *models.Node) []net.IPNet {
 func getNodeAllowedIPs(peer, node *models.Node) []net.IPNet {
 	var allowedips = []net.IPNet{}
 	if peer.Address.IP != nil {
-		allowedips = append(allowedips, peer.Address)
+		allowed := net.IPNet{
+			IP:   peer.Address.IP,
+			Mask: net.CIDRMask(32, 32),
+		}
+		allowedips = append(allowedips, allowed)
 	}
 	if peer.Address6.IP != nil {
-		allowedips = append(allowedips, peer.Address6)
+		allowed := net.IPNet{
+			IP:   peer.Address6.IP,
+			Mask: net.CIDRMask(128, 128),
+		}
+		allowedips = append(allowedips, allowed)
 	}
 	// handle egress gateway peers
 	if peer.IsEgressGateway {