gravitl/netmaker
1
1
Fork 0
mirror of https://github.com/gravitl/netmaker.git synced 2024-09-20 23:36:18 +08:00
Code Issues Packages Projects Releases Wiki Activity

remove unnecessary nft rule

Browse source
This commit is contained in:
Matthew R. Kasun 2022-09-13 13:56:47 -04:00
parent 44d0ef6565
commit f47d89ef62
1 changed files with 0 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
logic/gateway.go
View file

@ -4,7 +4,6 @@ import (
"encoding/json"
"errors"
"fmt"
"net"
"strings"
"time"
@ -334,12 +333,6 @@ func firewallNFTCommandsCreateEgress(networkInterface string, gatewayInterface s
postUp += "nft add table nat ; "
postUp += "nft 'add chain ip nat prerouting { type nat hook prerouting priority 0 ;}' ; "
postUp += "nft 'add chain ip nat postrouting { type nat hook postrouting priority 0 ;}' ; "
for _, networkCIDR := range gatewayranges {
if net.ParseIP(networkCIDR).To16() != nil {
continue
}
postUp += "nft add rule nat postrouting iifname " + networkInterface + " oifname " + gatewayInterface + " ip saddr " + networkCIDR + " masquerade ; "
}
postDown += "nft flush table filter ; "