tailscale/util/linuxfw
Maisem Ali fbfee6a8c0 cmd/containerboot: use linuxfw.NetfilterRunner
This migrates containerboot to reuse the NetfilterRunner used
by tailscaled instead of manipulating iptables rule itself.
This has the added advantage of now working with nftables and
we can potentially drop the `iptables` command from the container
image in the future.

Updates #9310

Co-authored-by: Irbe Krumina <irbe@tailscale.com>
Signed-off-by: Maisem Ali <maisem@tailscale.com>
2023-10-11 12:23:52 -07:00
..
linuxfwtest util/linuxfw: initial implementation of package 2023-02-09 14:20:24 -05:00
detector.go util/linuxfw: move detection logic 2023-10-10 20:29:24 -07:00
fake.go util/linuxfw: move fake runner into pkg 2023-10-11 11:48:43 -07:00
helpers.go util/linuxfw: initial implementation of package 2023-02-09 14:20:24 -05:00
iptables_runner_test.go util/linuxfw: move fake runner into pkg 2023-10-11 11:48:43 -07:00
iptables_runner.go cmd/containerboot: use linuxfw.NetfilterRunner 2023-10-11 12:23:52 -07:00
iptables.go util/linuxfw: move detection logic 2023-10-10 20:29:24 -07:00
linuxfw_unsupported.go util/linuxfw: move detection logic 2023-10-10 20:29:24 -07:00
linuxfw.go util/linuxfw: rename ErrorFWModeNotSupported 2023-08-10 09:27:05 -07:00
nftables_runner_test.go util/linuxfw: move detection logic 2023-10-10 20:29:24 -07:00
nftables_runner.go cmd/containerboot: use linuxfw.NetfilterRunner 2023-10-11 12:23:52 -07:00
nftables_types.go util/linuxfw: add new arch build constraints 2023-06-30 18:22:15 -04:00
nftables.go util/linuxfw: move detection logic 2023-10-10 20:29:24 -07:00