sendnrw/netbird
2
0
Fork 0
mirror of https://github.com/netbirdio/netbird.git synced 2026-04-18 08:16:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

[management] added exception on not appending route firewall rules if we have all wildcard (#4801)

Browse Source
This commit is contained in:
Vlad
2025-11-17 18:20:30 +01:00
committed by GitHub
parent d71a82769c
commit 4eeb2d8deb
1 changed files with 9 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
management/server/types/networkmapbuilder.go
View File

@@ -22,10 +22,11 @@ import (
) )
const ( const (
allPeers = "0.0.0.0" allPeers = "0.0.0.0"
fw = "fw:" allWildcard = "0.0.0.0/0"
rfw = "route-fw:" v6AllWildcard = "::/0"
nr = "network-resource-" fw = "fw:"
rfw = "route-fw:"
) )
type NetworkMapCache struct { type NetworkMapCache struct {
@@ -1640,6 +1641,10 @@ func (b *NetworkMapBuilder) updateRouteFirewallRules(routesView *PeerRoutesView,
} }
if string(rule.RouteID) == update.RuleID { if string(rule.RouteID) == update.RuleID {
if hasWildcard := slices.Contains(rule.SourceRanges, allWildcard) || slices.Contains(rule.SourceRanges, v6AllWildcard); hasWildcard {
break
}
sourceIP := update.AddSourceIP sourceIP := update.AddSourceIP
if strings.Contains(sourceIP, ":") { if strings.Contains(sourceIP, ":") {