Bug 2119600

Summary: Add parameters shared_key_content, ike, esp, type, leftid, rightid
Product: Red Hat Enterprise Linux 8 Reporter: Rich Megginson <rmeggins>
Component: rhel-system-rolesAssignee: Rich Megginson <rmeggins>
Status: CLOSED ERRATA QA Contact: David Jež <djez>
Severity: unspecified Docs Contact: Jan Fiala <jafiala>
Priority: unspecified    
Version: 8.8CC: djez, dueno, mteixeira, rhel-cs-system-management-subsystem-qe, spetrosi
Target Milestone: rcKeywords: Triaged
Target Release: 8.8Flags: pm-rhel: mirror+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: role:vpn
Fixed In Version: rhel-system-roles-1.21.0-0.5.el8 Doc Type: Enhancement
Doc Text:
.New IPsec customization parameters for the `vpn` RHEL System Role Because certain network devices require IPsec customization to work correctly, the following parameters have been added to the `vpn` RHEL System Role: [IMPORTANT] ==== Do not change the following parameters without advanced knowledge. Most scenarios do not require their customization. Furthermore, for security reasons, encrypt a value of the `shared_key_content` parameter by using Ansible Vault. ==== * Tunnel parameters: ** `shared_key_content` ** `ike` ** `esp` ** `ikelifetime` ** `salifetime` ** `retransmit_timeout` ** `dpddelay` ** `dpdtimeout` ** `dpdaction` ** `leftupdown` * Per-host parameters: * `leftid` * `rightid` As a result, you can use the `vpn` role to configure IPsec connectivity to a wide range of network devices.
 Story Points: ---
Clone Of: 2119102 Environment:
Last Closed: 2023-05-16 08:31:12 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2119102    
Bug Blocks:    

Description Rich Megginson 2022-08-18 22:52:47 UTC 
+++ This bug was initially created as a clone of Bug #2119102 +++

The VPN role needs support for several parameters in order to configure tunnels to some devices like nfs servers
Comment 11 errata-xmlrpc 2023-05-16 08:31:12 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:2804