Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
bpf: dsr: also RevDNAT the tunnel_key for replies in hs-ipcache mode
When a DSR backend replies back to the client in a hs-ipcache configuration, it potentially uses tunnel encapsulation (based on the configured WorldCIDR). RevDNAT for the reply is then handled in to-overlay. To match the LB path (where both the inner and outer DstIP were set to the service IP), we should also revDNAT the outer SrcIP. As we're in the to-overlay program, the SrcIP is stored in the tunnel_key. Signed-off-by: Julian Wiedmann <jwi@isovalent.com>
- Loading branch information