[ovs-dev] [PATCH] ovs-monitor-ipsec: Add support for tunnel 'local_ip'

Eelco Chaudron echaudro at redhat.com
Wed Dec 23 14:58:22 UTC 2020



On 21 Dec 2020, at 11:10, Mark Gray wrote:

> In the libreswan case, 'ovs-monitor-ipsec' sets
> 'left' to '%defaultroute' which will use the local address
> of the default route interface as the source IP address. In
> multihomed environments, this may not be correct if the user
> wants to specify what the source IP address is. In OVS, this
> can be set for tunnel ports using the 'local_ip' option. This
> patch also uses that option to populate the 'ipsec.conf'
> configuration. If the 'local_ip' option is not present, it
> will default to the previous behaviour of using '%defaultroute'
>
> Signed-off-by: Mark Gray <mark.d.gray at redhat.com>
>

Change looks good, and verified in my setup.

Maybe you also want to change the Documentation/tutorials/ipsec.rst to 
include the new output.

Acked-by: Eelco Chaudron <echaudro at redhat.com>



More information about the dev mailing list