New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Skip node ipset updates if iptables masquerading is disabled #17871
Skip node ipset updates if iptables masquerading is disabled #17871
Conversation
31320e3
to
4f7bed0
Compare
3a8961e
to
6844b2e
Compare
I had put this in draft mode for a while to focus on other things. Should be ready now and I addressed your review @jibi. |
Backporting for this PR was skipped - #18488 (comment). @pchaigno Please check if the needs-backport/1.11 label needs to be removed from the PR. |
I've checked the code to try and understand how #18488 (comment) could happen, but I don't see any error. We also haven't had that error pop up in CI (or nobody reported it). So I'm going to try and label this for backport again. |
First commit introduces a helper function, the second skips all updates/creation of the node ipset if iptables-based masquerading is not used.
Fixes: #17711.