Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix logic for default source range in firewall ingress rules #1815

Merged
merged 4 commits into from
Oct 26, 2023

Conversation

ludoo
Copy link
Collaborator

@ludoo ludoo commented Oct 26, 2023

This fixes i bug I observed today in the real world, where an unwanted source range set to 0/0 is added when

  • sources is set to tags or service accounts
  • no source_ranges are specified

The fix has been tested live with a customer and we have confirmed it removes the unwanted source range, with the resulting rule being identical to one defined int he console with the same input parameters.

@ludoo ludoo requested review from sruffilli and wiktorn October 26, 2023 13:51
@ludoo ludoo enabled auto-merge (squash) October 26, 2023 13:53
Copy link
Collaborator

@wiktorn wiktorn left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Scary bug!

@ludoo
Copy link
Collaborator Author

ludoo commented Oct 26, 2023

Scary bug!

ahah yes :) thanks for the reviews!

@ludoo ludoo merged commit d0b1ced into master Oct 26, 2023
9 checks passed
@ludoo ludoo deleted the ludo/net-vpc-firewall-source-fix branch October 26, 2023 15:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants