[ovs-dev] [PATCH v2] ovs-monitor-ipsec: Add support for tunnel 'local_ip'

Ilya Maximets i.maximets at ovn.org
Tue Jan 5 20:25:01 UTC 2021


On 12/24/20 8:41 PM, Flavio Leitner wrote:
> On Thu, Dec 24, 2020 at 07:57:01AM -0500, Mark Gray wrote:
>> In the libreswan case, 'ovs-monitor-ipsec' sets
>> 'left' to '%defaultroute' which will use the local address
>> of the default route interface as the source IP address. In
>> multihomed environments, this may not be correct if the user
>> wants to specify what the source IP address is. In OVS, this
>> can be set for tunnel ports using the 'local_ip' option. This
>> patch also uses that option to populate the 'ipsec.conf'
>> configuration. If the 'local_ip' option is not present, it
>> will default to the previous behaviour of using '%defaultroute'
>>
>> Reported-at: https://bugzilla.redhat.com/show_bug.cgi?id=1906280
>> Signed-off-by: Mark Gray <mark.d.gray at redhat.com>
>> Acked-by: Eelco Chaudron <echaudro at redhat.com>
>> ---
> 
> Acked-by: Flavio Leitner <fbl at sysclose.org>

Thanks!

Applied to master and backported down to 2.13.

Best regards, Ilya Maximets.


More information about the dev mailing list