Comment 10 for bug 1831935

Dmitrii had me run:

---

iptables -t mangle -A OUTPUT -o ns-+ -p tcp --sport 80 -j CHECKSUM --checksum-fill

---

within the namespace and now the instance can curl the metadata url of 169.254.169.254

iptables-save from within the NS

https://www.irccloud.com/pastebin/V49B0uvB/

ss -tlpna from within the NS

https://www.irccloud.com/pastebin/sEwHqlwG/

ip a from within the NS

https://www.irccloud.com/pastebin/yeyDtoGs/

RE: https://review.opendev.org/#/c/654645/ where some checksum'ing was reverted

Applying field-critical per Dmitrii