cloudstack-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject git commit: CLOUDSTACK-5291 site to site vpn between two vr
Date Tue, 17 Dec 2013 09:02:13 GMT
Updated Branches:
  refs/heads/4.3 0f9a7a447 -> 23114a3bd

CLOUDSTACK-5291 site to site vpn between two vr


Branch: refs/heads/4.3
Commit: 23114a3bdd167c9d1bd6f76686444a159400c7d5
Parents: 0f9a7a4
Author: Radhika PC <>
Authored: Tue Dec 17 14:30:51 2013 +0530
Committer: Radhika PC <>
Committed: Tue Dec 17 14:31:52 2013 +0530

 en-US/create-passive-vpn-vpc.xml     | 54 +++++++++++++++++++++++++++++++
 en-US/create-vpn-connection-vpc.xml  | 12 +++++--
 en-US/create-vpn-gateway-for-vpc.xml |  6 +---
 en-US/site-to-site-vpn.xml           | 11 +++++--
 4 files changed, 73 insertions(+), 10 deletions(-)
diff --git a/en-US/create-passive-vpn-vpc.xml b/en-US/create-passive-vpn-vpc.xml
new file mode 100644
index 0000000..89f5d1d
--- /dev/null
+++ b/en-US/create-passive-vpn-vpc.xml
@@ -0,0 +1,54 @@
+<?xml version='1.0' encoding='utf-8' ?>
+<!DOCTYPE section PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN" ""
+<!ENTITY % BOOK_ENTITIES SYSTEM "cloudstack.ent">
+<!-- Licensed to the Apache Software Foundation (ASF) under one
+    or more contributor license agreements.  See the NOTICE file
+    distributed with this work for additional information
+    regarding copyright ownership.  The ASF licenses this file
+    to you under the Apache License, Version 2.0 (the
+    "License"); you may not use this file except in compliance
+    with the License.  You may obtain a copy of the License at
+    Unless required by applicable law or agreed to in writing,
+    software distributed under the License is distributed on an
+    KIND, either express or implied.  See the License for the
+    specific language governing permissions and limitations
+    under the License.
+<section id="create-passive-vpn-vpc">
+  <title>Creating a VPN Connection</title>
+  <para>&PRODUCT; provides you with the ability to establish a site-to-site VPN
connection between
+    &PRODUCT; virtual routers. To achieve that, add a passive mode Site-to-Site VPN.
With this
+    functionality, users can deploy applications in multiple Availability Zones or VPCs,
which can
+    communicate with each other by using a secure Site-to-Site VPN Tunnel.</para>
+  <para>This feature is supported on all the hypervisors.</para>
+  <orderedlist>
+    <listitem>
+      <para>Create two VPCs. For example, VPC A and VPC B.</para>
+      <para>For more information, see <xref linkend="configure-vpc"/>.</para>
+    </listitem>
+    <listitem>
+      <para>Create VPN gateways on both the VPCs you created.</para>
+      <para>For more information, see <xref linkend="create-vpn-gateway-for-vpc"/>.</para>
+    </listitem>
+    <listitem>
+      <para>Create VPN customer gateway for both the VPCs.</para>
+      <para>For more information, see <xref linkend="create-vpn-customer-gateway"/>.</para>
+    </listitem>
+    <listitem>
+      <para>Enable a VPN connection on VPC A in passive mode. </para>
+      <para>For more information, see <xref linkend="create-vpn-connection-vpc"/>.</para>
+      <para>Ensure that the customer gateway is pointed to VPC B. The VPN connection
is shown in the
+        Disconnected state.</para>
+    </listitem>
+    <listitem>
+      <para>Enable a VPN connection on VPC B in passive mode. </para>
+      <para>Ensure that the customer gateway is pointed to VPC A. The VPN connection
is shown in the
+        Disconnected state.</para>
+      <para>Creating VPN connection on both the VPCs initiates a VPN connection. Wait
for few seconds. The default is 30 seconds for both the VPN connections to show the Connected
+    </listitem>
+  </orderedlist>
diff --git a/en-US/create-vpn-connection-vpc.xml b/en-US/create-vpn-connection-vpc.xml
index 88a058c..2eeb22f 100644
--- a/en-US/create-vpn-connection-vpc.xml
+++ b/en-US/create-vpn-connection-vpc.xml
@@ -21,6 +21,7 @@
 <section id="create-vpn-connection-vpc">
   <title>Creating a VPN Connection</title>
   <note><para>&PRODUCT; supports creating up to 8 VPN connections.</para></note>
+  <para/>
       <para>Log in to the &PRODUCT; UI as an administrator or end user.</para>
@@ -88,13 +89,20 @@
           <imagedata fileref="./images/create-vpn-connection.png"/>
-          <phrase>createvpnconnection.png: creating a vpn connection to the customer
+          <phrase>createvpnconnection.png: creating a VPN connection to the customer
-      <para>Select the desired customer gateway, then click OK to confirm.</para>
+      <para>Select the desired customer gateway.</para>
+    </listitem>
+    <listitem>
+      <para>Select Passive if you want to establish a connection between two VPC virtual
+        routers.</para>
+    </listitem>
+    <listitem>
+      <para>Click OK to confirm.</para>
       <para>Within a few moments, the VPN Connection is displayed.</para>
       <para>The following information on the VPN connection is displayed:</para>
diff --git a/en-US/create-vpn-gateway-for-vpc.xml b/en-US/create-vpn-gateway-for-vpc.xml
index 0f8a0dc..1104d69 100644
--- a/en-US/create-vpn-gateway-for-vpc.xml
+++ b/en-US/create-vpn-gateway-for-vpc.xml
@@ -33,11 +33,7 @@
       <para>Click the Configure button of the VPC to which you want to deploy the VMs.</para>
-      <para>The VPC page is displayed where all the tiers you created are listed in
-        diagram.</para>
-    </listitem>
-    <listitem>
-      <para>Click the Settings icon.</para>
+      <para>The VPC page is displayed where all the tiers you created are listed in
a diagram. </para>
       <para>For each tier, the following options are displayed:</para>
diff --git a/en-US/site-to-site-vpn.xml b/en-US/site-to-site-vpn.xml
index a26ac6c..dda96df 100644
--- a/en-US/site-to-site-vpn.xml
+++ b/en-US/site-to-site-vpn.xml
@@ -26,8 +26,9 @@
   <para>A Site-to-Site VPN connection helps you establish a secure connection from
an enterprise
     datacenter to the cloud infrastructure. This allows users to access the guest VMs by
     establishing a VPN connection to the virtual router of the account from a device in the
-    datacenter of the enterprise. Having this facility eliminates the need to establish VPN
-    connections to individual VMs.</para>
+    datacenter of the enterprise. You can also establish a secure connection between two
VPC setups
+    or high availability zones in your environment. Having this facility eliminates the need
+    establish VPN connections to individual VMs. </para>
   <para>The difference from Remote VPN is that Site-to-site VPNs connects entire networks
to each
     other, for example, connecting a branch office network to a company headquarters network.
In a
     site-to-site VPN, hosts do not have VPN client software; they send and receive normal
@@ -40,13 +41,16 @@
       <para>Juniper J-Series routers with JunOS 9.5 or later</para>
+    <listitem>
+      <para>&PRODUCT; virtual routers</para>
+    </listitem>
     <para>In addition to the specific Cisco and Juniper devices listed above, the expectation
       that any Cisco or Juniper device running on the supported operating systems are able
       establish VPN connections.</para>
-  <para></para>
+  <para/>
   <para>To set up a Site-to-Site VPN connection, perform the following:</para>
@@ -66,5 +70,6 @@
   <xi:include href="create-vpn-customer-gateway.xml" xmlns:xi=""/>
   <xi:include href="create-vpn-gateway-for-vpc.xml" xmlns:xi=""/>
   <xi:include href="create-vpn-connection-vpc.xml" xmlns:xi=""/>
+  <xi:include href="create-passive-vpn-vpc.xml" xmlns:xi=""/>
   <xi:include href="delete-reset-vpn.xml" xmlns:xi=""/>

View raw message