airship
/
treasuremap
Code Issues Proposed changes

Merge "Remove unwated iptables NAT and forward rule"

This commit is contained in:
Zuul 2021-08-19 18:06:00 +00:00 committed by Gerrit Code Review
parent 1e30965e54 5696fe20b9
commit 433a38cf0b
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
manifests/function/k8scontrol-vm-infra/iptables-setup.yaml
View File

@ -33,6 +33,7 @@
# activate ip_forwarding # activate ip_forwarding
echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward
iptables -A FORWARD -i REPLACEMENT_VM_INFRA_INTF -j ACCEPT # Uncomment the below two lines when SIP creates VMs on control plane nodes.
iptables -t nat -A POSTROUTING -s REPLACEMENT_VM_SUBNET_CIDR -o REPLACEMENT_MGMT_INTF -j MASQUERADE #iptables -A FORWARD -i REPLACEMENT_VM_INFRA_INTF -j ACCEPT
#iptables -t nat -A POSTROUTING -s REPLACEMENT_VM_SUBNET_CIDR -o REPLACEMENT_MGMT_INTF -j MASQUERADE
exit 0 exit 0