So renaming the libreswan ipsec to something else, creating a symlink from ipsec to strongswan and applying this patch means that i now have strongswan up and running on one of the nodes.
Will go trough all of them and see if can get this part working at least
So renaming the libreswan ipsec to something else, creating a symlink from ipsec to strongswan and applying this patch means that i now have strongswan up and running on one of the nodes.
Will go trough all of them and see if can get this part working at least
diff --git a/etc/neutron/ rootwrap. d/vpnaas. filters b/etc/neutron/ rootwrap. d/vpnaas. filters .dc21cc6b1 100644 rootwrap. d/vpnaas. filters rootwrap. d/vpnaas. filters
index 846ac2d1c.
--- a/etc/neutron/
+++ b/etc/neutron/
@@ -8,11 +8,11 @@
[Filters]
-cp: RegExpFilter, cp, root, cp, -a, .*, .*/strongswan.d d|.*/ipsec/ [0-9a-z- ]+) .*/ipsec/ [0-9a-z- ]+) netns_wrapper: CommandFilter, neutron- vpn-netns- wrapper, root vpnaas/ services/ vpn/device_ drivers/ strongswan_ ipsec.py b/neutron_ vpnaas/ services/ vpn/device_ drivers/ strongswan_ ipsec.py .30cdabed5 100644 vpnaas/ services/ vpn/device_ drivers/ strongswan_ ipsec.py vpnaas/ services/ vpn/device_ drivers/ strongswan_ ipsec.py
'default_ config_ area',
default= os.path. join(
TEMPLATE_ PATH, n.d'),
help= _('The area where default StrongSwan configuration '
'files are located.')) ss(ipsec. BaseSwanProcess ):
self. vpnservice,
self. copy_and_ overwrite( cfg.CONF. strongswan. default_ config_ area, config_ filename( 'strongswan. d')) config_ filename( 'strongswan' ))
+cp: RegExpFilter, cp, root, cp, -a, .*, .*/strongswan
ip: IpFilter, ip, root
ip_exec: IpNetnsExecFilter, ip, root
ipsec: CommandFilter, ipsec, root
-rm: RegExpFilter, rm, root, rm, -rf, (.*/strongswan.
+rm: RegExpFilter, rm, root, rm, -rf, (.*/strongswan|
rm_file: RegExpFilter, rm, root, rm, -f, .*/ipsec.secrets
strongswan: CommandFilter, strongswan, root
neutron_
diff --git a/neutron_
index 708952a1f.
--- a/neutron_
+++ b/neutron_
@@ -51,7 +51,7 @@ strongswan_opts = [
- '/etc/strongswa
+ '/etc/strongswan'),
]
@@ -150,7 +150,7 @@ class StrongSwanProce
0o600)
- self._get_
+ self._get_
def get_status(self): [self.binary, 'status'],
return self._execute(