7c2018b6fb
* Update the router (holding RouterInfo objects) with current data on update / sync. Since the sync method should reconcile out of any state, we need to update the RouterInfo we store locally in the driver to ensure we have not missed e.g. a ha_state_change. * Consistently use RouterInfo instead of some mix of dict and Router and RouterInfo. * Ensure NAT rules are current by using a tag to clean them all and then re-create the currently required rules before applying them via iptables manager. This ensures there are no dangling rules or duplicates. Co-Authored-By: Niklas Schwarz <niklas.schwarz@inovex.de> Closes-Bug: https://bugs.launchpad.net/neutron/+bug/1943449 Change-Id: I378ba5a0b500110ce5f9293a885730c0a62578b0
11 lines
505 B
YAML
11 lines
505 B
YAML
---
|
|
prelude: >
|
|
Due to an change in the IPtables NAT rule format, with the tag "vpnaas"
|
|
upgrading to this release requires either a machine reboot or a move of
|
|
all routers from this agent to ensure there is rules of the old format left.
|
|
fixes:
|
|
- |
|
|
Reconciling via the sync method has been improved to ensure no
|
|
`ha_state_change` event was missed.
|
|
Also all IPtables NAT rules are now tagged "vpnaas" and refreshed on sync
|
|
to ensure they are current and there are no duplicates. |