Description of problem: Enable OVNs support of IPSec encryption of the tunnels. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. http://docs.openvswitch.org/en/stable/tutorials/ovn-ipsec/ 2. 3. Actual results: openvswitch-ipsec is missing Expected results: All required software to use encrypted tunnels are available for RHV. Additional info:
With regards to testing for this feature, the following tutorial gives a detailed description of test set-up: https://docs.openvswitch.org/en/latest/tutorials/ipsec/. * There are three authentication methods, we should probably test all three but "Using CA-signed certificate" is the priority. * This can be used with a number of tunnel types, we should probably test at least "vxlan" and "geneve" but maybe others. As this openvswitch package will enable OVN IPsec to work, we may also have to validate that. Instructions for setup can be found here: https://docs.ovn.org/en/latest/tutorials/ovn-ipsec.html
What's left to do for this bug?
Based on the IPsec improvements in the 21.03 and 21.06 cycles, I'm closing this bug as CURRENTRELEASE. Please re-open if you find something specific that's not yet implemented. Thanks!