Clarifying about the VPN agent and L3 agent for the reference implementations... There is a hierarchy for the agents. At the bottom is the FW agent. The L3 agent, is a subclass of the FW agent, using a flag to indicate that FW is enabled. The VPN agent is a subclass of the L3 agent. As a result, there is only ONE agent process started. If you want VPN, you select the VPN agent, which includes all the functionality of the L3 agent (and FW, if flag selected in the code).
so, when you install neutron-vpn-agent with apt-get in ubuntu os, it will remove l3 agent automatically.
1, install command:
apt-get install neutron-vpn-agent neutron-plugin-vpn-agent
2, configuration
/etc/neutron/vpn_agent.ini
[DEFAULT] interface_driver = neutron.agent.linux.interface.OVSInterfaceDriver [vpnagent] vpn_device_driver=neutron_vpnaas.services.vpn.device_drivers.strongswan_ipsec.StrongSwanDriver [ipsec] # Status check interval ipsec_status_check_interval=60
/etc/neutron/neutron.conf
[DEFAULT] service_plugins = router,lbaas,vpnaas,firewall [service_providers] service_provider=VPN:strongswan:neutron_vpnaas.services.vpn.service_drivers.ipsec.IPsecVPNDriver:default
l3-agent.ini keeps as before.
3, update db
neutron-db-manage --service vpnaas upgrade head
neutron-db-manage --service vpnaas current
Thanks a lot! It helps!
Thx Shaun,
This helped me alot with Mitaka release.
root@Mil-controller:/home/super# apt-get install neutron-vpn-agent neutron-plugin-vpn-agent
Reading package lists… Done
Building dependency tree
Reading state information… Done
E: Unable to locate package neutron-plugin-vpn-agent