Can't update peer-cidr in created ipsec-site-connection in CLI. But peer-cidr ipcec-site-connection can be updated in Horizon
Steps to reproduce:
1) Create new IKE Policy: neutron vpn-ikepolicy-create test_ike_policy
2) Create IPSec Policy: neutron vpn-ipsecpolicy-create test_ipsec_policy
3) Create VPN Service: neutron vpn-service-create --name test_service router04 net04__subnet
4) Create IPSec Service Connection: neutron ipsec-site-connection-create --name test_connection --vpnservice-id <vpn_service_id> --ikepolicy-id <ike_policy_id> --ipsecpolicy-id <ipsec_policy_id> --peer-address 172.18.161.181 --peer-id 172.18.161.181 --peer-cidr 10.10.10.1/24 --psk key
5) Update test_connection: neutron ipsec-site-connection-update <ipsec_service_connection_id> --peer-cidr 10.10.20.1/24
The ipsec-site-connection hasn't been updated with error message "Bad Request (HTTP 400) (Request-ID: req-a29c5794-6f0d-44b8-a9c2-f9e579547866)"
iso:
{"build_id": "2015-02-10_22-54-44", "ostf_sha": "6c046b69d29021524906109f18092363505ee222", "build_number": "112", "release_versions": {"2014.2-6.1": {"VERSION": {"build_id": "2015-02-10_22-54-44", "ostf_sha": "6c046b69d29021524906109f18092363505ee222", "build_number": "112", "api": "1.0", "nailgun_sha": "e6d6cd143b3c52713e301b721807ac199482680b", "production": "docker", "python-fuelclient_sha": "e2e556f6654f9ba280ae43e1cdd0c12d1825bb43", "astute_sha": "214604ee6ba164a112cef6775f428de68372eff3", "feature_groups": ["mirantis"], "release": "6.1", "fuelmain_sha": "a6e7cc1b8998dd86f627ec4b556310ae1fc1d31e", "fuellib_sha": "6435016559edf22bd790c6d2f627272de447e8d7"}}}, "auth_required": true, "api": "1.0", "nailgun_sha": "e6d6cd143b3c52713e301b721807ac199482680b", "production": "docker", "python-fuelclient_sha": "e2e556f6654f9ba280ae43e1cdd0c12d1825bb43", "astute_sha": "214604ee6ba164a112cef6775f428de68372eff3", "feature_groups": ["mirantis"], "release": "6.1", "fuelmain_sha": "a6e7cc1b8998dd86f627ec4b556310ae1fc1d31e", "fuellib_sha": "6435016559edf22bd790c6d2f627272de447e8d7"}
(3 controllers, 1 compute, neutron + gre)
For the neutron ipsec-site- connection- update command you should use --peer-cidrs flag instead of --peer-cidr
neutron ipsec-site- connection- update <ipsec_ service_ connection_ id> --peer-cidrs 10.10.20.1/24