DNS based policies: Pattern matching does not match subdomains

metal-stack / firewall-controller

A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics

MIT License

47 stars 4 forks source link

Closed mreiger closed 1 year ago

mreiger commented 1 year ago

Pattern matching does not match subdomains.

For example: matchPattern *.com matches example.com but not second.example.com.

This creates issues when pulling images from docker, but *.docker.com then does not match production.cloudflare.docker.com.