Blueprint: support-vpnaas-in-mos

- Implement FUEL plugins for VPNaaS functionality in MOS

Implements blueprint: support-vpnaas-in-mos

Change-Id: Ib250fbe07fe6f26a751bb3679b0c91a548ffa5d0
This commit is contained in:
Andrey Epifanov 2015-02-02 18:32:58 +03:00
parent 8c7ea5d9d4
commit e2c7affc86
1 changed files with 135 additions and 0 deletions

View File

@ -0,0 +1,135 @@
===============================================
Fuel plugin for VPNaaS functionality in Neutron
===============================================
https://blueprints.launchpad.net/fuel/+spec/support-vpnaas-in-mos
VPNaaS (VPN-as-a-Service) is a Neutron extension that introduces VPN feature
set.
VPNaaS provides multiple tunneling and security protocols with static routing.
For now this plugin uses OpenSwan, which is an opensource IPsec implementation
for Linux.
Problem description
===================
Today multi-cloud integration is a popular topic, because very often we have
more than one cloud and want to have connectivity between tenants from the
different clouds, for example, to have HA for our services on the VMs. And of
course the most popular use case to have a VPN tunnel between your home network
and a private network in some cloud.
Proposed change
===============
Implement a FUEL plugin which will deploy IPSec service(OpenSwan) and configure
VPNaaS functionality in Neutron and Horizon.
Alternatives
------------
It also might be implemented as a part of FUEL core, but we decided to make
it as a plugin for several reasons:
* Community decided to separate VPNaaS and other aaS services into their own
project(repo), so we would do it the same way.
* Another reason is that any new additional functionality makes a project and
testing more difficult, which is an additional risk for the FUEL release.
Data model impact
-----------------
None
REST API impact
---------------
None
Upgrade impact
--------------
None
Security impact
---------------
None
Notifications impact
--------------------
None
Other end user impact
---------------------
None
Performance Impact
------------------
None
Other deployer impact
---------------------
None
Developer impact
----------------
None
Implementation
==============
Assignee(s)
-----------
Primary assignee:
Feature Lead: Andrey Epifanov
Mandatory Design Reviewers: Stanislaw Bogatkin, Sergey Kolekonov,
Sergey Vasilenko
Developers: Andrey Epifanov
QA: Timur Nurlygayanov
Work Items
----------
* Implement FUEL plugin.
* Implement puppet manifests.
* Testing.
* Write Documentation.
Dependencies
============
* OpenSwan package.
* FUEL 6.0 and higher.
Testing
=======
* Prepare a test plan.
* Test a deployment with activated plugin on all FUEL deployment modes.
* Test VPN connection with test VPN point.
* Integration tests with other OpenStack components and Neutron plugins.
Documentation Impact
====================
* Deployment Guide (how to prepare an env for installation, how to install
the plugin, how to deploy OpenStack env with the plugin).
* User Guide (which features the plugin provides, how to use them in the
deployed OS env).
* Test Plan.
* Test Report.
References
==========
* https://wiki.openstack.org/wiki/Neutron/VPNaaS
* https://wiki.openstack.org/wiki/Neutron/VPNaaS/HowToInstall
* http://docwiki.cisco.com/wiki/OpenStack:Havana:VPNaaS