Cleanup iptables rules for other CNI networks #16455
Labels
stage/accepted
Confirmed, and intend to work on. No timeline committment though.
theme/cni
theme/networking
type/enhancement
Projects
Comments
lgfa29
added
type/enhancement
theme/networking
stage/accepted
lgfa29
moved this from Needs Triage
to Needs Roadmapping
in Nomad - Community Issues Triage
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Proposal
#15407 introduced a mechanism to monitor and clean-up iptables rules created by Nomad. The code uses a regular expression to find rules managed by Nomad, but it hardcodes
"name: \\"nomad\\"wherenomadis the default name that Nomad uses for its built-in bridge. Users that have custom CNI bridges will have different names that would not match this expression and therefore may leak.Use-cases
Run a custom bridge using CNI plugins.
Attempted Solutions
N/A
The text was updated successfully, but these errors were encountered: