Remove hardcoded eth0 MASQUERADE rule
Any data that should be masqueraded will be masqueraded
by the following rule which is earlier in the chain.
iptables -t nat-A BOOTSTACK_MASQ_NEW -s $NETWORK ! -d $NETWORK -j MASQUERADE
Closes-Bug: #1690584
Change-Id: Ic30b24959ca3259974160abcfa213e6a14c953f5
(cherry picked from commit 333ca292fc
)
This commit is contained in:
parent
2046b2eab1
commit
a48f3a8ed6
|
@ -10,7 +10,6 @@ NETWORK={{.}}
|
|||
# Workaround iptables not permitting two -d parameters in one call.
|
||||
iptables -w -t nat -A BOOTSTACK_MASQ_NEW -s $NETWORK -d 192.168.122.1 -j RETURN
|
||||
iptables -w -t nat -A BOOTSTACK_MASQ_NEW -s $NETWORK ! -d $NETWORK -j MASQUERADE
|
||||
iptables -w -t nat -A POSTROUTING -s $NETWORK -o eth0 -j MASQUERADE
|
||||
{{/masquerade_networks}}
|
||||
# Link it in.
|
||||
iptables -w -t nat -I POSTROUTING -j BOOTSTACK_MASQ_NEW
|
||||
|
|
Loading…
Reference in New Issue