dcarns
42ffa2be32
Merge pull request #1672 from tt2468/bugfix_v0.16.1_ingress-egress-error
...
Fix netclient breaking when both ingress and egress modes are enabled
2022-11-04 10:00:39 -04:00
tt2468
b38061480e
Add missing line ending in ingress postUp command
...
Adds a missing line ending in the postUp masquerade command. This missing line is sneaky, and only seems to pose an issue when both ingress and egress modes are enabled.
2022-10-18 22:56:42 -07:00
Matthew R. Kasun
e65d1cf600
maintain server listen port on failover/ingress deletion
2022-10-17 11:04:17 -04:00
Matthew R. Kasun
fa2ad00de9
add check to create egress as well
2022-10-05 13:49:15 -04:00
Matthew R. Kasun
643714799e
ipv6 ingress not supported on server
2022-10-05 13:30:27 -04:00
Alex Feiszli
c46ddeddc7
Merge pull request #1607 from gravitl/bugfix_v0.16.1_ingress-egress
...
Bugfix v0.16.1 ingress egress
2022-10-03 09:06:25 -04:00
afeiszli
c8672818fe
adding resets and single peer update on metrics disconnect detections
2022-09-29 14:49:44 -04:00
0xdcarns
f2606dd3cb
addressed PR comments
2022-09-29 09:49:06 -04:00
0xdcarns
eb75a6829c
added wipe failover cases and ceased node update on metrics update
2022-09-28 16:17:49 -04:00
0xdcarns
b95f3eb846
initial PoC completed
2022-09-28 14:59:21 -04:00
0xdcarns
75fc15ac4c
commented out logic
2022-09-28 13:05:41 -04:00
afeiszli
78bacce528
add ability to reset failover
2022-09-27 14:42:14 -04:00
afeiszli
54258bcbac
add ability to set failover nodes
2022-09-27 14:04:28 -04:00
Matthew R. Kasun
24f78b172e
eliminate extra ; when creating ingress followed by egress
2022-09-26 14:05:51 -04:00
afeiszli
1723f57035
fixing flags and config
2022-09-20 11:50:15 -04:00
Matthew R. Kasun
f47d89ef62
remove unnecessary nft rule
2022-09-13 13:56:47 -04:00
Matthew R. Kasun
e4761ef21b
add check in nft rules for dual stack internet gateway
2022-09-12 15:11:19 -04:00
Matthew R Kasun
d8bcf33701
Merge branch 'develop' into feature_v0.15.1_normalize_networks
2022-09-07 06:57:14 -04:00
Matthew R. Kasun
e2b50d9a0f
ipv6 rules - case
2022-09-06 10:37:49 -04:00
Matthew R. Kasun
e364423beb
return error
2022-09-06 07:03:21 -04:00
Matthew R. Kasun
6b42cbe120
normalize cidr on network/egress gateway creation
2022-09-03 08:55:49 -04:00
Matthew R. Kasun
24cbaaa50b
fix case for iptables rules
2022-09-03 08:41:38 -04:00
Matthew R. Kasun
dd7945bb5c
fix postup/postdown for dualstack
2022-09-02 16:33:48 -04:00
Matthew R. Kasun
9ac0bdc41d
fix ingress rules
2022-09-02 11:31:17 -04:00
Matthew R. Kasun
ecc9ef5aac
clean up nft rules
2022-09-02 11:01:19 -04:00
Matthew R. Kasun
16959f395a
ipv6 nat
2022-09-02 09:25:17 -04:00
Matthew R. Kasun
ea3a1933e1
add ip6table rules for gateways
2022-09-01 08:10:49 -04:00
Matthew R. Kasun
0d00e8289f
fix nft rules for internet gateway
2022-08-25 14:55:03 -04:00
Matthew R. Kasun
ed7e263fb1
fix parsing postup/postdown
2022-08-25 09:38:36 -04:00
Matthew R. Kasun
b7ea52c3b2
fix ; spacing on postup/postdown
2022-08-25 08:35:48 -04:00
Matthew R. Kasun
5240da222a
freebsd saving post up/post down command to conf file
2022-08-25 06:59:12 -04:00
Matthew R. Kasun
f536f0465c
check firewall type on gateway creation
2022-08-19 15:32:25 -04:00
Matthew R Kasun
d7384b6a81
Merge pull request #1462 from gravitl/refactor_v0.14.7_unnecessary_code
...
remove func NetworkNodesUpdatePullChanges
2022-08-18 15:51:01 -04:00
Matthew R. Kasun
3a1dd8dc1e
remove func NetworkNodesUpdatePullChanges
2022-08-18 04:49:35 -04:00
Matthew R. Kasun
e3c1189008
flush tables vice delete rules for nft
2022-08-18 04:20:23 -04:00
cameronts
e190bff807
Fix failing test.
2022-08-07 20:28:10 -07:00
cameronts
a6660bb377
Pull firewall command building to separate functions for easier maintenance/reuse. Change DeleteIngressGateway's approach to preserving the egress gateway (if present).
2022-08-07 19:22:54 -07:00
cameronts
aeca559a8a
Update code handling of firewall commands and add more logging.
2022-08-06 15:00:20 -07:00
cameronts
9f92b20a15
Added chain creation for nftables.
2022-08-05 05:07:00 -07:00
cameronts
7c2fce3a55
Change to expandable switch-based firewall detection.
2022-08-03 12:18:04 -07:00
cameronts
eab23b7022
Modified ingress deletion handling to preserve egress gateway if present. Removed ingress from FreeBSD as not supported.
2022-08-03 11:36:16 -07:00
cameronts
e6d7c95669
Add netclient detection of nftables.
2022-08-02 15:01:45 -07:00
cameronts
1b01914c52
Added logging for nftables handling.
2022-08-01 15:52:49 -07:00
cameronts
81c896b22a
Add nftables support.
2022-08-01 11:12:25 -07:00
Mathias Neerup
0b4aca18db
Make NatEnabled string instead of boolean + add tests
2022-07-20 13:01:28 +02:00
Mathias Neerup
f9666c0a66
Add option to select if source NATing should be enabled or not
2022-07-19 16:28:44 +02:00
Scott Ullrich
360a13312a
Update gateway.go
...
* Add support for FreeBSD egress
* Make Post up and down commands a bit more readable
2022-05-08 13:37:22 -04:00
afeiszli
3bd4be258f
fix gateway error
2022-03-07 14:48:56 -05:00
Schemen
dbe5336a8e
Add accept iptables rule for out interface
2022-03-03 11:58:17 +01:00
afeiszli
be1763bb74
removing old node logic
2022-02-18 10:15:21 -05:00