mirrors/kube-router
1
0
Fork 0
mirror of https://github.com/cloudnativelabs/kube-router.git synced 2025-10-08 08:21:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

switch --set to less ambiguous --match-set (#874)

Browse Source 
While --set is still ambiguous it can clash with other module options,
so it is better to be more specific and use the --match-set option. This
also more closely aligns with all other areas of the code that already
use --match-set.

From iptables-extensions man page:
The option --match-set can be replaced by --set if that does not clash
with an option of other extensions.
This commit is contained in:
Aaron U'Ren 2020-04-13 05:04:33 -05:00 committed by GitHub
parent 2c4911b9a9
commit 19e563701e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pkg/controllers/netpol/network_policy_controller.go
View File

@ -667,10 +667,10 @@ func (npc *NetworkPolicyController) appendRuleToPolicyChain(iptablesCmdHandler *
args = append(args, "-m", "comment", "--comment", comment)
}
if srcIpSetName != "" {
args = append(args, "-m", "set", "--set", srcIpSetName, "src")
args = append(args, "-m", "set", "--match-set", srcIpSetName, "src")
}
if dstIpSetName != "" {
args = append(args, "-m", "set", "--set", dstIpSetName, "dst")
args = append(args, "-m", "set", "--match-set", dstIpSetName, "dst")
}
if protocol != "" {
args = append(args, "-p", protocol)