mirror of
https://github.com/tailscale/tailscale.git
synced 2024-11-29 21:15:39 +00:00
9bd158cc09
The AddSNATRuleForDst rule was adding a new rule each time it was called including: - if a rule already existed - if a rule matching the destination, but with different desired source already existed This was causing issues especially for the in-progress egress HA proxies work, where the rules are now refreshed more frequently, so more redundant rules were being created. This change: - only creates the rule if it doesn't already exist - if a rule for the same dst, but different source is found, delete it - also ensures that egress proxies refresh firewall rules if the node's tailnet IP changes Updates tailscale/tailscale#13406 Signed-off-by: Irbe Krumina <irbe@tailscale.com> |
||
---|---|---|
.. | ||
callback.go | ||
consolidating_router_test.go | ||
consolidating_router.go | ||
ifconfig_windows_test.go | ||
ifconfig_windows.go | ||
router_darwin.go | ||
router_default.go | ||
router_fake.go | ||
router_freebsd.go | ||
router_linux_test.go | ||
router_linux.go | ||
router_openbsd.go | ||
router_test.go | ||
router_userspace_bsd.go | ||
router_windows_test.go | ||
router_windows.go | ||
router.go | ||
runner.go |