vmware-nsx/neutron
Paul Michali f8a870ac30 Cisco VPN with in-band CSR (interim solution)
Currently, the Cisco VPN drivers use two routers for the proof of concept
solution. A Neutron router provides access to the public and private
subnets, and a Cisco CSR (out-of-band) provides the VPN tunneling.

The end goal is to integrate the Cisco VPN drivers with the Cisco L3
routing plugin being developed (as a separate blueprint), allowing an
in-band CSR to be used as a Neutron router for VPN functionality.

This commit provides an incremental approach to that goal, by modifying
the Cisco VPN drivers to be able to dynamically obtain CSR info from
an INI file, instead of statically reading the INI file at start-up.

A CSR VM can be created out-of-band (or in-band using Nova) and the INI
file can be updated with the router info. Then, the Cisco VPN driver
can use that information (dynamically) to create IPSec connections.

Once the Cisco L3 router plugin is available, the INI file will be
removed, and two calls to the plugin will be used to obtain the needed
router information, for an integrated solution.

The main advantages are:
    - Dynamically use the CSR for VPN.
    - Less manual intervention and setup.
    - Easy migration to final solution.
    - No dependency on the Cisco L3 router plugin implementation.

Note 1: The INI unit tests are moved from device driver to service
        driver and modified.

Note 2: I added a unit test for deleting IPSec site-to-site connection,
        which was missing (pass).

Note 3: For more details on the change, you can view this Google Doc:
        http://goo.gl/DXir8c

Change-Id: I307fc79952e3e12a0f77679ac1fc2b314fa63684
Partially-Implements: blueprint cisco-vpnaas-with-cisco-csr-router
2014-08-26 19:36:40 -04:00
..
agent Merge "ext-gw update on dvr router improperly handled by l3-agent" 2014-08-26 09:05:15 +00:00
api Send HTTP exceptions in the format expected by neutronclient 2014-08-18 17:21:45 +04:00
cmd Move ARP responder test to sanity command 2014-07-29 18:44:07 +03:00
common Merge "Log exceptions inside spawned functions" 2014-08-26 09:03:18 +00:00
db Merge "Change autogenerate to be unconditional" 2014-08-26 17:15:28 +00:00
debug Remove the useless vim modelines 2014-06-21 15:07:31 +08:00
extensions Merge "SecurityGroupRuleExists should point out rule id inseand of group id" 2014-08-19 21:50:03 +00:00
hacking Use jsonutils instead of stdlib json 2014-08-14 12:45:58 +02:00
locale Imported Translations from Transifex 2014-08-26 06:04:57 +00:00
notifiers Fix spelling mistakes 2014-08-01 16:10:23 +00:00
openstack Fix spelling mistakes 2014-08-01 16:10:23 +00:00
plugins Merge "Add template attr. for subnet, router create in Nuage plugin" 2014-08-26 20:24:06 +00:00
scheduler Merge "Minor refactoring of auto_schedule_routers" 2014-08-25 22:14:58 +00:00
server Configure agents using neutron.common.config.init (formerly .parse) 2014-06-17 21:56:24 +02:00
services Cisco VPN with in-band CSR (interim solution) 2014-08-26 19:36:40 -04:00
tests Cisco VPN with in-band CSR (interim solution) 2014-08-26 19:36:40 -04:00
__init__.py Remove the useless vim modelines 2014-06-21 15:07:31 +08:00
auth.py add auth token to context 2014-08-12 11:17:21 +09:00
context.py add auth token to context 2014-08-12 11:17:21 +09:00
hooks.py Remove the useless vim modelines 2014-06-21 15:07:31 +08:00
manager.py Moved rpc_compat.py code back into rpc.py 2014-06-24 10:35:39 +02:00
neutron_plugin_base_v2.py Renamed start_rpc_listener -> start_rpc_listeners 2014-06-19 12:58:01 +02:00
policy.py Allow to import _LC, _LE, _LI and _LW functions directly 2014-07-17 14:56:19 +00:00
quota.py Remove the useless vim modelines 2014-06-21 15:07:31 +08:00
service.py Moved rpc_compat.py code back into rpc.py 2014-06-24 10:35:39 +02:00
version.py Remove the useless vim modelines 2014-06-21 15:07:31 +08:00
wsgi.py Remove the useless vim modelines 2014-06-21 15:07:31 +08:00