Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add iptables rule to prevent masquerade on some external traffic #745

Merged
merged 1 commit into from
Jun 19, 2017
Merged

Add iptables rule to prevent masquerade on some external traffic #745

merged 1 commit into from
Jun 19, 2017

Conversation

mgleung
Copy link
Contributor

@mgleung mgleung commented Jun 12, 2017

Description

This fixes a bug that was preventing OnlyLocal annotation in Kubernetes
from working correctly. Prevents masquerade on external traffic to
containers/pods in the subnet.

Fixes #734

@mgleung
Add iptables rule to prevent masquerade on some external traffic
81e8dc6 
This fixes a bug that was preventing OnlyLocal annotation in Kubernetes
from working correctly. Prevents masquerade on external traffic to
containers/pods in the subnet.

Fixes flannel-io#734
@caseydavenport
Copy link

This looks good to me.

@ironlung975 what sort of testing have you done on this?

@mgleung
Copy link
Contributor Author

mgleung commented Jun 12, 2017

@caseydavenport Just ran the go tests and ran this locally in flannel. I'm currently fixing some issues with my kubernetes test setup but that's the last thing I have planned for testing.

@mgleung
Copy link
Contributor Author

mgleung commented Jun 13, 2017

@caseydavenport got my tests working in kubernetes. Looks like this should be good to go from what I can tell.

@tomdee
Copy link
Contributor

tomdee commented Jun 15, 2017

LGTM

@tomdee tomdee merged commit e0706ca into flannel-io:master Jun 19, 2017
@mgleung mgleung deleted the onlylocal-annotation branch June 19, 2017 20:38
@simonklb simonklb mentioned this pull request Aug 17, 2017
Closed
@MrHohn MrHohn mentioned this pull request Aug 22, 2017
Closed
@MrHohn MrHohn mentioned this pull request Oct 3, 2017
Closed
This was referenced Nov 3, 2017
Closed
Closed
chenchun added a commit to chenchun/flannel that referenced this pull request Aug 11, 2020
@chenchun
Cherry-pick flannel-io#745 to fix preserving client ip if setting ser…
82f29e2 
…vice.spec.externalTrafficPolicy=Local
chenchun pushed a commit to chenchun/flannel that referenced this pull request Aug 11, 2020
@ChenLingPeng
Merge branch 'masq' into 'master'
2c9c5e4 
Cherry-pick flannel-io#745 to fix preserving client ip if setting service.spec.externalTrafficPolicy=Local

Cherry-pick flannel-io#745 to fix preserving client ip if setting service.spec.externalTrafficPolicy=Local

See merge request !22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tomdee tomdee Awaiting requested review from tomdee

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Support OnlyLocal annotation on Kubernetes
3 participants
@mgleung @caseydavenport @tomdee