Gitiles
Code Review Sign In
gerrit-dev.monogon.dev / monogon / 2c3956750bb75b0d18ddd52565f998492b0f83f4
commit2c3956750bb75b0d18ddd52565f998492b0f83f4[log] [tgz]
authorLorenz Brun <lorenz@monogon.tech>Tue Feb 18 12:26:41 2025 +0100
committerLorenz Brun <lorenz@monogon.tech>Tue Feb 25 16:04:13 2025 +0000
treee74900cf54d9476463bde2bac7a8c3e040ff18a6
parentd842aaf9b5b45c6a0851542e8c9d21032f99a249 [diff]
m/n/c/network: drop random snat mapping workaround

Linux has since fixed the issue that if two connections get assigned the
same mapped port/address combo one of them drops the packet. Instead
they just "requeue" it so it gets a new non-conflicting mapping.

This allows us the drop the workaround that mappings need to be
generated on a per-connection basis instead of just a per-port basis,
this makes Linux behave more like an endpoint-independent NAT which is
better for anything trying to establish P2P connections and also a bit
easier to debug as source ports get preserved if possible.

Change-Id: Ibfaf63746a269ec6bf0444e8c7dddb3a51b07900
Reviewed-on: https://review.monogon.dev/c/monogon/+/3907
Reviewed-by: Tim Windelschmidt <tim@monogon.tech>
Tested-by: Jenkins CI
1 file changed
tree: e74900cf54d9476463bde2bac7a8c3e040ff18a6
  1. .github/
  2. .vscode/
  3. build/
  4. cloud/
  5. go/
  6. intellij/
  7. metropolis/
  8. osbase/
  9. third_party/
  10. tools/
  11. version/
  12. .bazelignore
  13. .bazelproject
  14. .bazelrc
  15. .bazelrc.ci
  16. .bazelrc.sandboxroot
  17. .bazelversion
  18. .git-ignore-revs
  19. .gitignore
  20. BUILD.bazel
  21. CODING_STANDARDS.md
  22. go.mod
  23. go.sum
  24. LICENSE
  25. MODULE.bazel
  26. MODULE.bazel.lock
  27. README.md
  28. SETUP.md
  29. shell.nix
  30. WORKSPACE
README.md

Monogon Monorepo

This is the main repository containing the source code for the Monogon Platform.

This is pre-release software - take a look, and check back later! In the meantime, join us on Matrix (#monogon-os-community:matrix.org) or Discord.

Environment

Our build environment is self-contained and requires only minimal host dependencies:

  • A Linux machine or VM.
  • Bazelisk >= v1.15.0 (or a working Nix environment).
  • A reasonably recent kernel with user namespaces enabled.
  • Working KVM with access to /dev/kvm (if you want to run tests).

Our docs assume that Bazelisk is available as bazel on your PATH.

Refer to SETUP.md for detailed instructions.

Monogon OS

The source code lives in //metropolis (Metropolis is the codename of Monogon OS).

See the //metropolis/README.md for a developer quick start guide, or see the Monogon OS Handbook for user documentation.