Endpoint Groups

A endpoint group is used to create groups of endpoints that then can be used to filter the endpoints that are available to a project. 

Endpoint Groups are used to support multiple local subnets. Each endpoint group will define one or more endpoints of a specific type, and can be used for specifying both local and peer endpoints for IPsec connections. The endpoint groups separate the “what gets connected” from the “how to connect” for a VPN service, and can be used for different flavors of VPN, in the future (Openstack Docs, 2020).  

City Control panel will display a list containing all Endpoint Groups in Networking > VPN Services > Endpoint Groups (Figure 1 ). 

IPsec site-to-site connections will support multiple local subnets, in addition to the current multiple peer CIDRs. The multiple local subnet feature is triggered by not specifying a local subnet, when creating a VPN service. Backwards compatibility is maintained with single local subnets, by providing the subnet in the VPN service creation.



Figure 1. Endpoint groups list

Figure 1. Endpoint groups list

Create a new Endpoint Group by clicking the creation button at the top of the Endpoint Groups page (Figure 2).


Figure 2. Create New Endpoint Group - button

Figure 2. Create New Endpoint Group - button


To create a new endpoint group, the user will need to select an endpoint type (Figure 3). The available types are CIDR (Classless Inter-Domain Routing) and Subnet

If the type select is

  1. CIDR:  Provide CIDR Endpoint in format X.X.X.X/X (Figure 4).
  2. Subnet: Select available subnets for the chosen region. The user have also the possibility to create a new subnet when selecting this endpoint type (Figure 5). 


Figure 3. Create Endpoint Groups - Endpoint type

Figure 3. Create Endpoint Groups - Endpoint type


Figure 4. Create Endpoint Groups - Type CIDR

Figure 4. Create Endpoint Groups - Type CIDR


Figure 5. Create Endpoint Groups - Type Subnet

Figure 5. Create Endpoint Groups - Type Subnet


Deleting an endpoint group

Endpoint groups can be delete in different two ways; By clicking , the user can select to option to delete that specific endpoint (Figure 6). To the left side of each endpoint group row, the user can select multiple endpoints and delete all of the selected by clicking on the trash bin on the up corner of Endpoint Groups page (Figure7).


 

Figure 6. Delete Endpoint Group 


Figure 7. Delete Multiple Endpoint Groups