ovs-monitor-ipsec: Allow custom options per tunnel.

Tunnels in LibreSwan and OpenSwan allow for many options to be set on a per tunnel basis. Pass through any options starting with ipsec_ to the connection in the configuration file. Administrators are responsible for picking valid key/value pairs. Signed-off-by: Andreas Karis <ak.karis@gmail.com> Acked-by: Mike Pattrick <mkp@redhat.com> Signed-off-by: Ilya Maximets <i.maximets@ovn.org>
author: Andreas Karis <ak.karis@gmail.com> 2022-03-02 14:40:05 +0100
committer: Ilya Maximets <i.maximets@ovn.org> 2022-05-04 16:30:21 +0200
commit: e8515c8cc082964f7611e6f03300e614b9b8eaca (patch)
tree: 5580898aff959d682b6d75213e4314664001bbf4 /vswitchd
parent: af864cedb0c893bad0c54b7f7f6a73627965b358 (diff)
download: openvswitch-e8515c8cc082964f7611e6f03300e614b9b8eaca.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/vswitchd/vswitch.xml b/vswitchd/vswitch.xml
index 0c6632617..b124fee54 100644
--- a/vswitchd/vswitch.xml
+++ b/vswitchd/vswitch.xml
@@ -1046,7 +1046,9 @@
       <p>
         These settings control the global configuration of IPsec tunnels.  The
         <code>options</code> column of the <code>Interface</code> table
-        configures IPsec for individual tunnels.
+        configures IPsec for individual tunnels. The <code>options</code>
+        column also allows for custom options prefixed with <code>ipsec_</code>
+        to be passed to the individual connections.
       </p>
       <p>
         OVS IPsec supports the following three forms of authentication.
author	Andreas Karis <ak.karis@gmail.com>	2022-03-02 14:40:05 +0100
committer	Ilya Maximets <i.maximets@ovn.org>	2022-05-04 16:30:21 +0200
commit	e8515c8cc082964f7611e6f03300e614b9b8eaca (patch)
tree	5580898aff959d682b6d75213e4314664001bbf4 /vswitchd
parent	af864cedb0c893bad0c54b7f7f6a73627965b358 (diff)
download	openvswitch-e8515c8cc082964f7611e6f03300e614b9b8eaca.tar.gz