diff options
| author | Qiuyu Xiao <qiuyu.xiao.qyx@gmail.com> | 2018-09-19 17:15:55 -0400 |
|---|---|---|
| committer | Ben Pfaff <blp@ovn.org> | 2018-11-09 15:03:48 -0800 |
| commit | bdddc715358e346a5a19365ad59dc8627ebd4e9a (patch) | |
| tree | f4fd60687185652214a6172ee7fb21c7c6aa394c /utilities | |
| parent | 22c5eafb6efa874014a5234de8ca587b693db4df (diff) | |
| download | openvswitch-bdddc715358e346a5a19365ad59dc8627ebd4e9a.tar.gz | |
debian and rhel: Create IPsec package.
Added rules and files to create debian and rpm ovs-ipsec packages.
Signed-off-by: Qiuyu Xiao <qiuyu.xiao.qyx@gmail.com>
Signed-off-by: Ansis Atteka <aatteka@ovn.org>
Co-authored-by: Ansis Atteka <aatteka@ovn.org>
Signed-off-by: Ben Pfaff <blp@ovn.org>
Diffstat (limited to 'utilities')
| -rw-r--r-- | utilities/ovs-ctl.in | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/utilities/ovs-ctl.in b/utilities/ovs-ctl.in index 2d01c7553..e42f0f1e6 100644 --- a/utilities/ovs-ctl.in +++ b/utilities/ovs-ctl.in @@ -224,6 +224,14 @@ start_forwarding () { return 0 } +start_ovs_ipsec () { + ${datadir}/scripts/ovs-monitor-ipsec \ + --pidfile=${rundir}/ovs-monitor-ipsec.pid \ + --ike-daemon=$IKE_DAEMON \ + --log-file --detach --monitor unix:${rundir}/db.sock || return 1 + return 0 +} + ## ---- ## ## stop ## ## ---- ## @@ -240,6 +248,11 @@ stop_forwarding () { fi } +stop_ovs_ipsec () { + ${bindir}/ovs-appctl -t ovs-monitor-ipsec exit || return 1 + return 0 +} + ## --------------- ## ## enable-protocol ## ## --------------- ## @@ -320,6 +333,8 @@ set_defaults () { DPORT= SPORT= + IKE_DAEMON= + type_file=$etcdir/system-type.conf version_file=$etcdir/system-version.conf @@ -360,6 +375,8 @@ Commands: module, reload kernel module, start OVS, restore state enable-protocol enable protocol specified in options with iptables delete-transient-ports delete transient (other_config:transient=true) ports + start-ovs-ipsec start Open vSwitch ipsec daemon + stop-ovs-ipsec stop Open vSwitch ipsec daemon help display this help message One of the following options is required for "start", "restart" and "force-reload-kmod": @@ -397,6 +414,10 @@ Options for "enable-protocol": --sport=PORT source port to match (for tcp or udp protocol) --dport=PORT ddestination port to match (for tcp or udp protocol) +Option for "start-ovs-ipsec": + --ike-daemon=IKE_DAEMON + the IKE daemon for ipsec tunnels (either libreswan or strongswan) + Other options: -h, --help display this help message -V, --version display version information @@ -527,6 +548,12 @@ case $command in delete-transient-ports) del_transient_ports ;; + start-ovs-ipsec) + start_ovs_ipsec + ;; + stop-ovs-ipsec) + stop_ovs_ipsec + ;; help) usage ;; |