Skip to content

Program IPTables SNAT rules in CNS #1484

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Jul 21, 2022
Merged

Program IPTables SNAT rules in CNS #1484

merged 5 commits into from
Jul 21, 2022

Conversation

@nddq
Copy link
Member

@nddq nddq commented Jul 20, 2022

Draft PR for programming iptables snat rules in CNS, which is a part of delegated IPAM.

@nddq nddq requested a review from a team as a code owner July 20, 2022 23:03
@nddq nddq requested review from thatmattlong and removed request for a team July 20, 2022 23:03
@nddq nddq added cns Related to CNS. cni Related to CNI. swift Related to SWIFT networking. labels Jul 20, 2022
rbtr
rbtr requested changes Jul 20, 2022
View reviewed changes
Copy link
Collaborator

@rbtr rbtr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good, needs one addition - programming the iptables rules should be gated on a config flag eg: EnableProgramIPTables that we default false. this way we can keep rolling out CNS without expecting this functionality to just start running unexpectedly.

@nddq nddq force-pushed the cnsProgramIptables branch from c500fac to 607c1f5 Compare July 21, 2022 17:44
@nddq nddq enabled auto-merge (squash) July 21, 2022 17:44
rbtr
rbtr requested changes Jul 21, 2022
View reviewed changes
cns/configuration/configuration.go Outdated
WireserverIP string
KeyVaultSettings KeyVaultSettings
MSISettings MSISettings
DelegatedIPAMUsed bool
Copy link
Collaborator

@rbtr rbtr Jul 21, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i think updating this var name was missed

@nddq nddq force-pushed the cnsProgramIptables branch from 607c1f5 to 514820e Compare July 21, 2022 19:41
@nddq nddq merged commit c6cafd4 into Azure:master Jul 21, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rbtr rbtr rbtr approved these changes

@thatmattlong thatmattlong Awaiting requested review from thatmattlong thatmattlong is a code owner automatically assigned from Azure/acn-cns-reviewers

Assignees

No one assigned

Labels

cni Related to CNI. cns Related to CNS. swift Related to SWIFT networking.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nddq @rbtr