Merge pull request #115 from leonnicolas/bug_encapsulation

pkg/mesh/mesh.go: iptables rules in encapsulation
2021-02-20 09:13:07 +01:00
parent 4ae1ccf1e8 52d8d13047
commit afea50a388
1 changed files with 4 additions and 1 deletions
--- a/pkg/mesh/mesh.go
+++ b/pkg/mesh/mesh.go
@@ -490,7 +490,10 @@ func (m *Mesh) applyTopology() {
 	if m.enc.Strategy() != encapsulation.Never && m.local {
 		var cidrs []*net.IPNet
 		for _, s := range t.segments {
-			if s.location == nodes[m.hostname].Location {
+			// If the location prefix is not logicalLocation, but nodeLocation,
+			// we don't need to set any extra rules for encapsulation anyways
+			// because traffic will go over WireGuard.
+			if s.location == logicalLocationPrefix+nodes[m.hostname].Location {
 				for i := range s.privateIPs {
 					cidrs = append(cidrs, oneAddressCIDR(s.privateIPs[i]))
 				}