Nate Brown

@dioss-Machiel Thanks for the PR! I like that this resolves some silly race conditions at startup. We will need to support pre v4.4 linux kernels though, sadly.

@nbdd0121 thanks for the report. I see the issue and it appears to be a fairly simple change to the `Route` struct to indicate if it came from the system...

@jampe can you describe the situation that led you to a client authoritative approach for this?

@jampe I was looking for more information regarding your mesh network and what properties it had that led you to choose the client authoritative model. For example, a lighthouse authoritative...

We chatted a little about this today and it sounded like doing the source address rewriting in nebula would be interesting. There was some concern about information loss at the...

@dmurray14 @benyanke have you tried `tun.use_system_route_table`? https://github.com/slackhq/nebula/blob/7da79685fff9b34c30b3c6786ebf4b97b091daa1/examples/config.yml#L275-L277 I realize this is currently linux only but it's far better for nebula to respond to external forces than to force external actions....

We discussed this PR a little today and here are the takeaways 1. The built-in `ssh` server is neither easy to configure or friendly to use as an api. 2....

The primary issue seems to be that the `subnet` encoded in the certificate for the `HostInfo` that sent this traffic does not contain the source address in the packet. Which...

Thanks for the PR! To clarify (mostly for myself), this is default allow any unless a protected group is specified, once a group is declared as protected then only hosts...

This is actually more complicated than I initially imagined, turns out flutter doesn't support tvOS yet so while our backend would likely work just fine there is no good answer...