Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
proxy: opt-out from SNAT for L7 + Tunnel for some scenarios
Currently the L7 proxy performs SNAT for traffic when tunnel routing is enabled, even for cluster-internal traffic. This prevents cilium_host from detecting pod-level traffic, and we thus can't apply features. Modify SupportsOriginalSourceAddr(), so that the proxy doesn't SNAT such traffic when some conditions are met. Signed-off-by: Zhichuan Liang <gray.liang@isovalent.com>
- Loading branch information