Closed ymmt2005 closed 3 years ago
This PR contains necessary changes to run Egress NAT feature and adds end-to-end tests for the feature.
modprobe
iptables
coil-controller
coil-egress
/proc/sys/net
This PR contains necessary changes to run Egress NAT feature and adds end-to-end tests for the feature.
modprobe
andiptables
.coil-controller
is granted to access Pods. This is necessary becausecoil-controller
needs to grant the same privilege to Egress pods.coil-egress
is run as privileged. This is necessary to edit sysctl files under/proc/sys/net
.coil-egress
should use the name of Egress resource to find client pods instead of the name of itself.