summaryrefslogtreecommitdiffstats
path: root/roles/nuage_node/tasks/iptables.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/nuage_node/tasks/iptables.yml')
-rw-r--r--roles/nuage_node/tasks/iptables.yml6
1 files changed, 6 insertions, 0 deletions
diff --git a/roles/nuage_node/tasks/iptables.yml b/roles/nuage_node/tasks/iptables.yml
index 847c8395d..95ee8643a 100644
--- a/roles/nuage_node/tasks/iptables.yml
+++ b/roles/nuage_node/tasks/iptables.yml
@@ -15,3 +15,9 @@
when: "'nuage-underlay-overlay' not in iptablesrules.stdout"
notify:
- save iptable rules
+
+- name: Allow docker daemon traffic from underlay to overlay
+ command: /sbin/iptables -t nat -A POSTROUTING ! -s {{ hostvars[groups.oo_first_master.0].openshift.master.sdn_cluster_network_cidr }} -o svc-pat-tap -j MASQUERADE -m comment --comment "nuage-docker-underlay-overlay"
+ when: "'nuage-docker-underlay-overlay' not in iptablesrules.stdout"
+ notify:
+ - save iptable rules
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-04 03:26:50 +0000