[ovs-dev] [PATCH v3] docs: Add instruction to set local_ip to ipsec tutorial

Ilya Maximets i.maximets at ovn.org
Fri Feb 19 23:19:06 UTC 2021


On 2/17/21 7:00 PM, Mark Gray wrote:
> On 17/02/2021 15:17, Balazs Nemeth wrote:
>> Signed-off-by: Balazs Nemeth <bnemeth at redhat.com>
>> ---
>>  Documentation/tutorials/ipsec.rst | 21 ++++++++++++++++++++-
>>  1 file changed, 20 insertions(+), 1 deletion(-)
>>
>> diff --git a/Documentation/tutorials/ipsec.rst b/Documentation/tutorials/ipsec.rst
>> index 3b3e42c59..b6cc1c3a8 100644
>> --- a/Documentation/tutorials/ipsec.rst
>> +++ b/Documentation/tutorials/ipsec.rst
>> @@ -273,7 +273,26 @@ external IP is 1.1.1.1, and `host_2`'s external IP is 2.2.2.2. Make sure
>>          authenticated; otherwise, any certificate signed by the CA would be
>>          accepted.
>>
>> -3. Test IPsec tunnel.
>> +3. Set the `local_ip` field in the Interface table (Optional)
>> +
>> +    Make sure that the `local_ip` field in the Interface table is set to the
>> +    NIC used for egress traffic.
>> +
>> +    On `host 1`::
>> +
>> +       # ovs-vsctl set Interface tun options:local_ip=$ip_1
>> +
>> +    Similarly, on `host 2`::
>> +
>> +       # ovs-vsctl set Interface tun options:local_ip=$ip_2
>> +
>> +   .. note::
>> +
>> +        It is not strictly necessary to set the `local_ip` field if your system
>> +        only has one NIC or the default gateway interface is set to the NIC
>> +        used for egress traffic.
>> +
>> +4. Test IPsec tunnel.
>>
>>     Now you should have an IPsec GRE tunnel running between two hosts. To verify
>>     it, in `host_1`::
>> --
>> 2.29.2
>>
> Acked-by: Mark Gray <mark.d.gray at redhat.com>
> 
> I also ran make docs-check to check that it renders correctly - it does.
> Thanks for the patch Balazs.

Thanks!
Applied to master.

Best regards, Ilya Maximets.



More information about the dev mailing list