Red Hat Bugzilla – Bug 1297833
VPNaaS should use libreswan driver instead of openswan by default
Last modified: 2017-06-18 02:06:03 EDT
Description of problem:
When installing OSP-8 with packstack and enabling "VPNaaS" in answer file
it install VPNaaS with openswan driver when it should be liberswan.
Driver configuration should be :
service_plugins = neutron.services.vpn.plugin.VPNDriverPlugin
Steps to Reproduce:
1.deploy with packstack osp-8 and enable vpnass
2.verify in vpnagent.ini which driver is used
Currently, the upstream puppet-neutron code only supports openswan as a provider (https://github.com/openstack/puppet-neutron/blob/master/manifests/agents/vpnaas.pp#L63-L74), and treats libreswan as a drop-in replacement (https://github.com/openstack/puppet-neutron/blob/master/manifests/params.pp#L63-L67).
Is this correct, or are there any differences that recommend using the libreswan-specific driver?
As far as I know its correct
Apparently we should use the Libreswan driver, because there are some specific initialization steps required for it (https://bugs.launchpad.net/neutron/+bug/1444017).
Adding support for Libreswan in Packstack via https://review.openstack.org/273471 (puppet-neutron support) and https://review.openstack.org/277951 (Packstack support).
This bug was accidentally moved from POST to MODIFIED via an error in automation, please see email@example.com with any questions
Looks like this was merged so can be closed now?