Comment 3 for bug 1452205

Operating System: CentOS 7
VPN Driver: OpenSwan U2.6.43/K3.10.0-229.1.2.el7.x86_64

I have tried:
sudo neutron-rootwrap /etc/neutron/rootwrap.conf ip netns exec qrouter-a9e53c63-23fa-4544-9ad4-cdaa480eb5de ipsec addconn --ctlbase /var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/var/run/pluto.ctl --defaultroutenexthop 10.62.72.1 --config /var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/etc/ipsec.conf 94a916ff-375f-46e8-8c58-8231ce0eea1c

And it raised error:
connect(pluto_ctl) failed: No such file or directory

I think there is a bug around https://github.com/openstack/neutron-vpnaas/blob/master/neutron_vpnaas/services/vpn/device_drivers/ipsec.py#L431

self._execute([self.binary,
                           'addconn',
                           '--ctlbase', '%s.ctl' % self.pid_path,
                           '--defaultroutenexthop', nexthop,
                           '--config', self.config_file,
                           ipsec_site_conn['id']
                           ])

The '--ctlbase' config seems the error. When I replaced the above command with "... --ctlbase /var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/var/run/pluto ..." it worked well.