IPSec strongswan driver implemention
Redhat doesn't support strongswan, but strongswan is supported VPN solution in main as of ubuntu 14.04.
However, Neutron's VPNaaS uses openswan, this blueprint will also implement a strongswan driver similar to openswan driver.
openswan is fairly similar to strongSwan in terms of configuration, looking at:
- neutron/
So
* We'd have to create a strongswan_opts based off openswan_opts.
* Create a StrongSwanProcess class based off OpenSwanProcess (openswan uses pluto and whack, while strongSwan uses 'charon' and 'stroke' respectively).
* The IPsecDriver.
Actually, patchset 67 of https:/
For neutron-spec of this BP, pls refer https:/
Blueprint information
- Status:
- Complete
- Approver:
- Kyle Mestery
- Priority:
- Medium
- Drafter:
- Hua Zhang
- Direction:
- Approved
- Assignee:
- Hua Zhang
- Definition:
- Approved
- Series goal:
- Accepted for kilo
- Implementation:
- Implemented
- Milestone target:
- 2015.1.0
- Started by
- Kyle Mestery
- Completed by
- Kyle Mestery
Related branches
Related bugs
Sprints
Whiteboard
February-3 (mestery): Moving to Kilo-3. After discussion with pc_m, he was having trouble getting StrongSwan to work with Neutron VPNaaS.
December-18 (mestery): Kilo-2.
Gerrit topic: https:/
Addressed by: https:/
IPsec strongswan driver implemention
Addressed by: https:/
IPSec Strongswan Driver
Addressed by: https:/
netns wrapper
Addressed by: https:/
IPsec strongswan driver implemention
Addressed by: https:/
netns wrapper
Addressed by: https:/
Add functional tests for strongSwan driver
Addressed by: https:/
Sometimes vpnservice's status can't be updated
Addressed by: https:/
Functional tests of ipsec strongswan vpnaas driver
Gerrit topic: https:/