2119102 – Add parameters shared_key_content, ike, esp, type, leftid, rightid

Bug 2119102 - Add parameters shared_key_content, ike, esp, type, leftid, rightid

Summary: Add parameters shared_key_content, ike, esp, type, leftid, rightid

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 9
Classification:	Red Hat
Component:	rhel-system-roles
Sub Component:
Version:	9.2
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	9.2
Assignee:	Rich Megginson
QA Contact:	Evgeny Fedin
Docs Contact:	Jan Fiala
URL:
Whiteboard:	role:vpn
Depends On:
Blocks:	2119600
TreeView+	depends on / blocked

Reported:	2022-08-17 14:38 UTC by Rich Megginson
Modified:	2023-08-03 12:20 UTC (History)
CC List:	6 users (show)
Fixed In Version:	rhel-system-roles-1.21.0-0.5.el9
Doc Type:	Enhancement
Doc Text:	.New IPsec customization parameters for the `vpn` RHEL System Role Because certain network devices require IPsec customization to work correctly, the following parameters have been added to the `vpn` RHEL System Role: [IMPORTANT] ==== Do not change the following parameters without advanced knowledge. Most scenarios do not require their customization. Furthermore, for security reasons, encrypt a value of the `shared_key_content` parameter by using Ansible Vault. ==== * Tunnel parameters: `shared_key_content` `ike` `esp` `ikelifetime` `salifetime` `retransmit_timeout` `dpddelay` `dpdtimeout` `dpdaction` `leftupdown` * Per-host parameters: `leftid` `rightid` As a result, you can use the `vpn` role to configure IPsec connectivity to a wide range of network devices.
Clone Of:
Clones:	2119600 (view as bug list)
Environment:
Last Closed:	2023-05-09 07:37:53 UTC
Type:	---
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Github	linux-system-roles vpn pull 65	None	open	Various improvements required to connect to a managed remote host	2022-08-17 14:40:10 UTC
Red Hat Issue Tracker	RHELPLAN-131342	None	None	None	2022-08-17 14:48:50 UTC
Red Hat Product Errata	RHEA-2023:2246	None	None	None	2023-05-09 07:38:20 UTC

Description Rich Megginson 2022-08-17 14:38:49 UTC

The VPN role needs support for several parameters in order to configure tunnels to some devices like nfs servers

Comment 12 errata-xmlrpc 2023-05-09 07:37:53 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:2246

Note You need to log in before you can comment on or make changes to this bug.