Bug 2119102

Summary: Add parameters shared_key_content, ike, esp, type, leftid, rightid
Product: Red Hat Enterprise Linux 9 Reporter: Rich Megginson <rmeggins>
Component: rhel-system-rolesAssignee: Rich Megginson <rmeggins>
Status: CLOSED ERRATA QA Contact: Evgeny Fedin <efedin>
Severity: unspecified Docs Contact: Jan Fiala <jafiala>
Priority: unspecified    
Version: 9.2CC: djez, dueno, efedin, mteixeira, pasik, spetrosi
Target Milestone: rcKeywords: Triaged
Target Release: 9.2Flags: pm-rhel: mirror+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: role:vpn
Fixed In Version: rhel-system-roles-1.21.0-0.5.el9 Doc Type: Enhancement
Doc Text:
.New IPsec customization parameters for the `vpn` RHEL System Role Because certain network devices require IPsec customization to work correctly, the following parameters have been added to the `vpn` RHEL System Role: [IMPORTANT] ==== Do not change the following parameters without advanced knowledge. Most scenarios do not require their customization. Furthermore, for security reasons, encrypt a value of the `shared_key_content` parameter by using Ansible Vault. ==== * Tunnel parameters: ** `shared_key_content` ** `ike` ** `esp` ** `ikelifetime` ** `salifetime` ** `retransmit_timeout` ** `dpddelay` ** `dpdtimeout` ** `dpdaction` ** `leftupdown` * Per-host parameters: ** `leftid` ** `rightid` As a result, you can use the `vpn` role to configure IPsec connectivity to a wide range of network devices.
 Story Points: ---
Clone Of:
: 2119600 (view as bug list) Environment:
Last Closed: 2023-05-09 07:37:53 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2119600    

Description Rich Megginson 2022-08-17 14:38:49 UTC 
The VPN role needs support for several parameters in order to configure tunnels to some devices like nfs servers
Comment 12 errata-xmlrpc 2023-05-09 07:37:53 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:2246