mirror of
https://github.com/slackhq/nebula.git
synced 2026-05-15 20:37:36 +02:00
696903d6d9
Some checks failed
gofmt / Run gofmt (push) Failing after 2s
smoke-extra / freebsd-amd64 (push) Failing after 2s
smoke-extra / linux-amd64-ipv6disable (push) Failing after 3s
smoke-extra / netbsd-amd64 (push) Failing after 3s
smoke-extra / openbsd-amd64 (push) Failing after 3s
smoke-extra / linux-386 (push) Failing after 3s
smoke / Run multi node smoke test (push) Failing after 2s
Build and test / Build all and test on ubuntu-linux (push) Failing after 3s
Build and test / Build and test on linux with boringcrypto (push) Failing after 2s
Build and test / Build and test on linux with pkcs11 (push) Failing after 2s
smoke-extra / Run windows smoke test (push) Has been cancelled
Build and test / Build and test on macos-latest (push) Has been cancelled
Build and test / Build and test on windows-latest (push) Has been cancelled
24 lines
656 B
Go
24 lines
656 B
Go
//go:build (amd64 || arm64) && !e2e_testing
|
|
// +build amd64 arm64
|
|
// +build !e2e_testing
|
|
|
|
package overlay
|
|
|
|
import (
|
|
"log/slog"
|
|
|
|
"github.com/slackhq/nebula/wfp"
|
|
)
|
|
|
|
// installInterfaceBypass installs a WFP PERMIT filter scoped to the wintun interface LUID so inbound traffic on the
|
|
// nebula adapter bypasses Windows Defender Firewall.
|
|
func installInterfaceBypass(l *slog.Logger, luid uint64) closer {
|
|
s, err := wfp.PermitInterface(luid)
|
|
if err != nil {
|
|
l.Warn("Failed to install WFP bypass filters on nebula interface", "error", err)
|
|
return nil
|
|
}
|
|
l.Info("Installed WFP filters bypassing Windows Defender Firewall on nebula interface")
|
|
return s
|
|
}
|