[jira] [Commented] (CLOUDSTACK-9342) PFS not being set correctly for S2S VPN Tunnel

ASF GitHub Bot (JIRA) Fri, 08 Apr 2016 10:23:54 -0700

    [ 
https://issues.apache.org/jira/browse/CLOUDSTACK-9342?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15232513#comment-15232513
 ]


ASF GitHub Bot commented on CLOUDSTACK-9342:
--------------------------------------------

Github user kiwiflyer commented on the pull request:

    https://github.com/apache/cloudstack/pull/1478#issuecomment-207524802
  
    PR https://github.com/apache/cloudstack/pull/872 is going to replacing 
openswan with strongswan.
    
    I believe PFS is depreciated in strongwan, so it might make sense to just 
remove PFS once 872 is committed.
    It might be worth while looking at addressing this just in 4.7.x and 4.8.x.
    
    Thoughts?


> PFS not being set correctly for S2S VPN Tunnel
> ----------------------------------------------
>
>                 Key: CLOUDSTACK-9342
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9342
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the 
> default.) 
>          Components: Virtual Router
>    Affects Versions: 4.8.0
>         Environment: SystemVM
>            Reporter: Sean Lair
>            Priority: Critical
>              Labels: systemvm, vpn
>   Original Estimate: 48h
>  Remaining Estimate: 48h
>
> Bug in configure.py sets PFS to the same value (yes/no) as DPD.  See snippet 
> below:
> In file: systemvm/patches/debian/config/opt/cloud/bin/configure.py
> file.addeq(" pfs=%s" % CsHelper.bool_to_yn(obj['dpd']))



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (CLOUDSTACK-9342) PFS not being set correctly for S2S VPN Tunnel

Reply via email to