Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-21532

Cannot configure ipsec mode with 'type' in nmstate config

XMLWordPrintable

    • nmstate-2.2.23-1.el9
    • Major
    • ZStream
    • sst_network_management
    • ssg_networking
    • 26
    • 1
    • False
    • Hide

      None

      Show
      None
    • NMT - RHEL 8.10/9.4 DTM 22
    • Approved Blocker
    • Hide

      Given a system administrator using Nmstate to configure an IPsec host-to-host connection in transport mode,

      When they specify the 'type' field in the nmstate configuration as 'transport' along with other necessary IPsec settings,

      Then Nmstate should accept the configuration without errors, and successfully set up the IPsec connection in transport mode.

      Definition of Done:

      • The implementation meets the acceptance criteria
      • Unit test and integration test are written and pass
      • The code is part of a downstream build attached to an errata
      • The fix is backported into RHEL-9.2
      Show
      Given a system administrator using Nmstate to configure an IPsec host-to-host connection in transport mode, When they specify the 'type' field in the nmstate configuration as 'transport' along with other necessary IPsec settings, Then Nmstate should accept the configuration without errors, and successfully set up the IPsec connection in transport mode. Definition of Done: The implementation meets the acceptance criteria Unit test and integration test are written and pass The code is part of a downstream build attached to an errata The fix is backported into RHEL-9.2
    • Pass

      What were you trying to do that didn't work?

      Configure ipsec host-to-host with nmsate config in transport mode
      discussion about the issue in slack https://redhat-internal.slack.com/archives/C06665AQN0J/p1705022984494649?thread_ts=1704964168.895169&cid=C06665AQN0J

                ikev2: insist
          left: 10.0.128.3
          leftcert: left_server
          leftid: '%fromcert'
          leftrsasigkey: '%cert'
          right: 10.0.0.2
          rightid: '%fromcert'
          rightrsasigkey: '%cert'
          type: transport

      Please provide the package NVR for which bug is seen:

      How reproducible:

      100%

      Steps to reproduce

      Expected results

      The ipsec connection can be setup in transport mode.

      Actual results

      file is not valid NetworkState or NetworkPolicy: unknown field `type`
      type was not supported yet.

            rh-ee-mshi1 Mingyu Shi
            huirwang Huiran Wang
            Gris Ge Gris Ge
            Mingyu Shi Mingyu Shi
            Votes:
            0 Vote for this issue
            Watchers:
            12 Start watching this issue

              Created:
              Updated:
              Resolved: