Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-1583

Namespace-to-namespace IPsec OCP 4.

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Done
    • Icon: Normal Normal
    • None
    • None
    • SDN
    • False
    • False
    • Undefined

      Proposed title of this feature request: Namespace-to-namespace IPsec OCP 4.

      It is mentioned that it is expected to have IPSec new features in the future like project scoped so it is great to have a tracker. 

      "What's new in OpenShift 4.7" video at 18:20 indicates that IPsec per namespace may come in a future release: https://www.youtube.com/watch?v=74q5nO-VCRc

      2. What is the nature and description of the request?

      To have the ability to configure IPsec in NS, so it is possible to tune the project scope and not only node-to-node configuration.

      3. Why does the customer need this? (List the business requirements here)

      To improve the security tuning in namespaces as sometimes, the full node scope is not accurate for all the workloads. This will improve the security to the maximum detail of encryption.

      4. List any affected packages or components.

      • libreswan,ovn,ipsec.

            mcurry@redhat.com Marc Curry
            rhn-support-dahernan David Hernandez Fernandez
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: