yahoo-eng-team team mailing list archive

Thread
Date
[Bug 1452205] Re: VPNaaS: ipsec addconn failed

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: venkata anil <anil.venkata@xxxxxxxxxxxx>
Date: Mon, 11 May 2015 08:58:14 -0000
Reply-to: Bug 1452205 <1452205@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx
As Wei Hu explained, please enable libreswan driver
https://github.com/openstack/neutron-vpnaas/blob/master/etc/vpn_agent.ini#L16
Please see this patch
https://review.openstack.org//#/c/174299

** Changed in: neutron
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1452205

Title:
  VPNaaS: ipsec addconn failed

Status in OpenStack Neutron (virtual network service):
  Invalid

Bug description:
  When create an ipsec-connection

  2015-05-05 14:06:41.875 4555 DEBUG neutron.agent.linux.utils [-] Running command: ['sudo', 'neutron-rootwrap', '/etc/neutron/rootwrap.conf', 'ip', 'netns', 'exec', 'qrouter-a9e53c63-23fa-4544-9ad4-cdaa480eb5de', 'ipsec', 'addconn', '--ctlbase', '/var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/var/run/pluto.ctl', '--defaultroutenexthop', '10.62.72.1', '--config', '/var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/etc/ipsec.conf', '94a916ff-375f-46e8-8c58-8231ce0eea1c'] create_process /usr/lib/python2.7/site-packages/neutron/agent/linux/utils.py:46
  2015-05-05 14:06:41.973 4555 ERROR neutron.agent.linux.utils [-] 
  2015-05-05 14:06:41.974 4555 ERROR neutron.services.vpn.device_drivers.ipsec [-] Failed to enable vpn process on router a9e53c63-23fa-4544-9ad4-cdaa480eb5de
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec Traceback (most recent call last):
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron/services/vpn/device_drivers/ipsec.py", line 242, in enable
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec     self.restart()
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron/services/vpn/device_drivers/ipsec.py", line 342, in restart
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec     self.start()
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron/services/vpn/device_drivers/ipsec.py", line 395, in start
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec     ipsec_site_conn['id']
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron/services/vpn/device_drivers/ipsec.py", line 314, in _execute
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec     check_exit_code=check_exit_code)
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron/agent/linux/ip_lib.py", line 550, in execute
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec     check_exit_code=check_exit_code, extra_ok_codes=extra_ok_codes)
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec   File "/usr/lib/python2.7/site-packages/neutron/agent/linux/utils.py", line 84, in execute
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec     raise RuntimeError(m)
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec RuntimeError: 
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec Command: ['sudo', 'neutron-rootwrap', '/etc/neutron/rootwrap.conf', 'ip', 'netns', 'exec', 'qrouter-a9e53c63-23fa-4544-9ad4-cdaa480eb5de', 'ipsec', 'addconn', '--ctlbase', '/var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/var/run/pluto.ctl', '--defaultroutenexthop', '10.62.72.1', '--config', '/var/lib/neutron/ipsec/a9e53c63-23fa-4544-9ad4-cdaa480eb5de/etc/ipsec.conf', '94a916ff-375f-46e8-8c58-8231ce0eea1c']
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec Exit code: 255
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec Stdout: ''
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec Stderr: 'connect(pluto_ctl) failed: No such file or directory\n'
  2015-05-05 14:06:41.974 4555 TRACE neutron.services.vpn.device_drivers.ipsec

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1452205/+subscriptions
References

[Bug 1452205] [NEW] VPNaaS: ipsec addconn failed
From: baojie, 2015-05-06