Create VPN Connection via API


  1. Creating your VPN Network
    1. openstack network create <name>
    2. openstack subnet create <name> --network <name or ID of the network> --subnet-range <CIDR of the subnet>
    3. openstack router create <name>
    4. openstack router set <router id> --external-gateway <network id>
    5. openstack router add subnet <router id> <subnet id>
  2. Create your VPN Service
    1. openstack vpn service create <name> --router <router id>
  3. Create your Site connection
    1. Create your IKE policy
      1. openstack vpn ike policy create <name of IKE policy>
    2. Create your IPSEC policy
      1. openstack vpn ipsec policy create <name of IPsec policy>
    3. Create local endpoint group
      1. openstack vpn endpoint group create <endpoint name> --type subnet --value <subnet id>
    4. Create peer endpoint group
      1. openstack vpn endpoint group create <name> --type cidr --value <CIRD>
    5. Create an ipsec site connection
      1. openstack vpn ipsec site connection create conn --vpnservice <vpn name> --ikepolicy <ike policy name> --ipsecpolicy <ipsec policy name> --peer-address <address> --peer-id <id> --psk secret --local-endpoint-group <ep subnet name> --peer-endpoint-group <ep_cidr name>