x
/
vmware-nsx
Code Issues Proposed changes

NSX|P: Set ipsec endpoints advertisment 

Depends-on: I4bfa618937efd03f2ec3fcc5c9733554023f0701
Change-Id: Ic4c5f69a726e5fa17324e6abfe65a02dbc1ce6ba
This commit is contained in:
Adit Sarfaty 2019-06-12 12:07:37 +03:00
parent 248744b7c5
commit de438d1af3
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
vmware_nsx/services/vpnaas/nsxp/ipsec_driver.py
View File

@ -194,6 +194,7 @@ class NSXpIPsecVpnDriver(common_driver.NSXcommonIPsecVpnDriver):
services = self.vpn_plugin.get_vpnservices(
context.elevated(), filters=filters)
rule_name_pref = 'VPN advertisement service'
has_connections = False
for srv in services:
# use only services with non-errored connections
filters = {'vpnservice_id': [srv['id']],
@ -202,6 +203,7 @@ class NSXpIPsecVpnDriver(common_driver.NSXcommonIPsecVpnDriver):
context.elevated(), filters=filters)
if not connections:
continue
has_connections = True
if srv['subnet_id']:
subnet = self.l3_plugin.get_subnet(
context.elevated(), srv['subnet_id'])
@ -223,6 +225,10 @@ class NSXpIPsecVpnDriver(common_driver.NSXcommonIPsecVpnDriver):
self._nsxpolicy.tier1.update_advertisement_rules(
router_id, rules, name_prefix=rule_name_pref)
# Also update the ipsec endpoints advertisement
self._nsxpolicy.tier1.update_route_advertisement(
router_id, ipsec_endpoints=has_connections)
def _nsx_tags(self, context, object):
return self._nsxpolicy.build_v3_tags_payload(
object, resource_type='os-vpn-connection-id',