SNAT for externally routed traffic should be only for EC2 and for subnets in the VPC
Bug #1443942 reported by
James Tunnicliffe
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
juju-core |
Won't Fix
|
Medium
|
Unassigned |
Bug Description
In worker/
Changed in juju-core: | |
milestone: | none → 1.24-alpha1 |
tags: | added: ec2-provider network |
Changed in juju-core: | |
milestone: | 1.24-alpha1 → 1.25.0 |
tags: | added: tech-debt |
Changed in juju-core: | |
status: | Triaged → In Progress |
Changed in juju-core: | |
status: | In Progress → Triaged |
tags: | added: bug-squad |
Changed in juju-core: | |
milestone: | 1.25-alpha1 → 1.25-beta1 |
Changed in juju-core: | |
importance: | High → Medium |
milestone: | 1.25-beta1 → 1.26.0 |
no longer affects: | juju-core/1.24 |
Changed in juju-core: | |
milestone: | 1.26.0 → 2.0-alpha2 |
Changed in juju-core: | |
milestone: | 2.0-alpha2 → 2.0-alpha3 |
Changed in juju-core: | |
milestone: | 2.0-alpha3 → 2.0-beta4 |
Changed in juju-core: | |
assignee: | James Tunnicliffe (dooferlad) → Dimiter Naydenov (dimitern) |
Changed in juju-core: | |
milestone: | 2.0.1 → none |
To post a comment you must log in.
I'm retriaging this for post 1.24-alpha1, as the fix we had in place for 1.23 will still work on AWS (hardcoding the /16 VPC super-range which is true for all default VPCs in AWS, in the SNAT rule), but can be improved (explicitly listing each VPC's subnet CIDRs in separate SNAT rules).