You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I run a node with multiple advertised routes that were masqueraded using iptabels with an client installed on Rocky 8.
Setting up a routing back into netbird for the 100.24.0.0 adresses works as expected as far as being able to ping Netbird clients from non Netbird clients.
This is not always true for Netbird clients, we can ping through the node with iptables but everything else like ssh or http is not working and stops at the routing node. Using nftables results in not being able to ping all together.
I reproduced this for Debian and a Docker client.
To Reproduce
Steps to reproduce the behavior:
Set a route for a node to advertise a subnet
Disable masquerading (its important to have no exit node on this node as this enables masqerading for all routes on this node, even when disabled)
Testing ping should not work
Enable iptabels with echo 'NB_SKIP_NFTABLES_CHECK=true' | sudo tee -a /etc/sysconfig/netbird and restarting netbird
Ping should now work but nothing else
We can see from iptables that currently no route advertises masquerading
Describe the problem
I run a node with multiple advertised routes that were masqueraded using iptabels with an client installed on Rocky 8.
Setting up a routing back into netbird for the 100.24.0.0 adresses works as expected as far as being able to ping Netbird clients from non Netbird clients.
This is not always true for Netbird clients, we can ping through the node with iptables but everything else like ssh or http is not working and stops at the routing node. Using nftables results in not being able to ping all together.
I reproduced this for Debian and a Docker client.
To Reproduce
Steps to reproduce the behavior:
echo 'NB_SKIP_NFTABLES_CHECK=true' | sudo tee -a /etc/sysconfig/netbird
and restarting netbirdWe can see from iptables that currently no route advertises masquerading
And ping is working but no ssh or http
For the ease of configuring masquerading i enable an exit node route which results in following ouput
And fixing the issues by being able to connect again with the network clients.
Are you using NetBird Cloud?
Self-hosted NetBird
NetBird version
0.30.1
The text was updated successfully, but these errors were encountered: