]> git.proxmox.com Git - ovs.git/commit
projects / ovs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5e8bc3c) | patch
openvswitch: Allow external IPsec tunnel management.
authorPravin B Shelar <pshelar@ovn.org>
Sat, 24 Sep 2016 18:44:53 +0000 (11:44 -0700)
committerPravin B Shelar <pshelar@ovn.org>
Tue, 27 Sep 2016 18:06:09 +0000 (11:06 -0700)
commit2b02d770c4cb381ec32cd4b7b1e991c42b448884
tree2ffe1064105f5cb7f20f4b884a66af7d7158a586tree
parent5e8bc3c549ca9bfa02c5525c02cb4ee12ef1f06ecommit | diff
openvswitch: Allow external IPsec tunnel management.

OVS GRE IPsec tunnel support has multiple issues, Therefore
it was deprecated in OVS 2.6.

Following patch removes support for GRE IPsec and allows external
IPsec tunnel management for any type of tunnel not just GRE.
e.g. user can encrypt Geneve or VxLan traffic.

It can be done by using openflow pipeline to set skb-mark
and using IPsec keying daemons to implement IPsec tunnels.
This packet can be matched for the skb-mark to encrypt
selective tunnel traffic.

VMware-BZ: 1710701
Signed-off-by: Pravin B Shelar <pshelar@ovn.org>
Acked-by: Ansis Atteka <aatteka@ovn.org>
24 files changed:
NEWS diff | blob | blame | history
README.md diff | blob | blame | history
debian/automake.mk diff | blob | blame | history
debian/control diff | blob | blame | history
debian/openvswitch-ipsec.dirs [deleted file] blob | blame | history
debian/openvswitch-ipsec.init [deleted file] blob | blame | history
debian/openvswitch-ipsec.install [deleted file] blob | blame | history
debian/ovs-monitor-ipsec [deleted file] blob | blame | history
lib/netdev-vport.c diff | blob | blame | history
lib/netdev.h diff | blob | blame | history
ofproto/ofproto-dpif-ipfix.c diff | blob | blame | history
ofproto/ofproto-dpif-sflow.c diff | blob | blame | history
ofproto/tunnel.c diff | blob | blame | history
tests/automake.mk diff | blob | blame | history
tests/ofproto-macros.at diff | blob | blame | history
tests/ovn-controller.at diff | blob | blame | history
tests/ovs-monitor-ipsec.at [deleted file] blob | blame | history
tests/testsuite.at diff | blob | blame | history
tests/tunnel-push-pop-ipv6.at diff | blob | blame | history
tests/tunnel-push-pop.at diff | blob | blame | history
tests/tunnel.at diff | blob | blame | history
utilities/bugtool/ovs-bugtool.in diff | blob | blame | history
utilities/ovs-appctl.8.in diff | blob | blame | history
vswitchd/vswitch.xml diff | blob | blame | history
openvswitch packages for PVE