Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 51D1C200C8C for ; Tue, 6 Jun 2017 16:30:37 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 50E42160BC3; Tue, 6 Jun 2017 14:30:37 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 986D1160BC6 for ; Tue, 6 Jun 2017 16:30:36 +0200 (CEST) Received: (qmail 30900 invoked by uid 500); 6 Jun 2017 14:30:35 -0000 Mailing-List: contact dev-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cloudstack.apache.org Delivered-To: mailing list dev@cloudstack.apache.org Received: (qmail 30487 invoked by uid 99); 6 Jun 2017 14:30:34 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 06 Jun 2017 14:30:34 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id 5E632CFE2F for ; Tue, 6 Jun 2017 14:30:34 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.121 X-Spam-Level: X-Spam-Status: No, score=-0.121 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd1-us-west.apache.org (amavisd-new); dkim=pass (1024-bit key) header.d=cloudops.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id 4myM2E8kyHHE for ; Tue, 6 Jun 2017 14:30:33 +0000 (UTC) Received: from mail-qt0-f176.google.com (mail-qt0-f176.google.com [209.85.216.176]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id 92A3E5F3BF for ; Tue, 6 Jun 2017 14:30:33 +0000 (UTC) Received: by mail-qt0-f176.google.com with SMTP id w1so131483957qtg.2 for ; Tue, 06 Jun 2017 07:30:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudops.com; s=google; h=mime-version:from:date:message-id:subject:to; bh=ZOMOnRto5zvxTIolIkS47aQPQ9cnEqIau0scE8X4gEc=; b=Lj9PMAylSZY6Rz5VFyyB7HMu0lAkWNp0OngqOIX78YyvtVggWHTRWFTq3Cqul6SrAg +Oc9+EgPCz2DpvvjgC5wf9t78ctKYMYNrml0lp4wbbNFojafHsVTCjSFB02Jn2yC0702 8JRzv7BJDJvRwTqQ41Sl83gSy7zVYb7wPM5TU= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=ZOMOnRto5zvxTIolIkS47aQPQ9cnEqIau0scE8X4gEc=; b=cZVMVVSjLrAN5xEQbjQDB6VvZvTCRLRkt/Gtn9p4JW0xwFpkAlz8pK1oYhQ3L70WSi gnL9NeSTaWVVUkBUClUgXWbfp3KBlLOHDMsvSeKjyvIdt7sjx5d6gaCBVih6QEONWa1E f5Al28IJa2n330nKPGIovk9drcx6uV+W/NiucavdNWQVkttZ/wsYGXGFRNeVITBPMLSL M5HxwCSLh0Sibj47z+H9KL1cl/VNP8b8w12qVqoTCg3w4efFevxfD4SZguT62OJnVMhL TKdMHGzZ8lvnoU/PIYjkWbSFTeTSlulUcQPEX2pmw/kuOplWi9YDWc3XmyzwxDxZBfDt Abxw== X-Gm-Message-State: AODbwcD3mk2yiK9R/FW0n+HqSr0DzEULOuUo/JNWmTG2YA0rsc5VsxC1 aRzn/ExPPDdXMHeEprWc0MX3Dc+HRONlsDo= X-Received: by 10.200.35.177 with SMTP id q46mr32917634qtq.158.1496759432987; Tue, 06 Jun 2017 07:30:32 -0700 (PDT) MIME-Version: 1.0 Received: by 10.140.85.139 with HTTP; Tue, 6 Jun 2017 07:30:12 -0700 (PDT) From: Andre Jacques Date: Tue, 6 Jun 2017 10:30:12 -0400 Message-ID: Subject: Site-to-site VPN Connection via API To: dev@cloudstack.apache.org Content-Type: text/plain; charset="UTF-8" archived-at: Tue, 06 Jun 2017 14:30:37 -0000 Hi there, I am currently creating Site-to-site VPN between different instance of CloudStack using the CloudStack API. Let's say I've got VPC_A in ENV_A and VPC_B in ENV_B. We create VpnCustomerGateway VCG_TO_B (IP Source NAT and CIDR of VPC_B in the ENV_A) and VCG_TO_A (IP Source NAT and CIDR of VPC_A in the ENV_B). I make sure both has the same preshared-key, IKE Policy and ESP Policy. Then I create the VpnGateway for VPC_A and VPC_B, then create the VpnConnection in VPC_A using the VCG_TO_B VpnCustomerGateway. I make sure the "passive" is checked, since the VPC_B is not yet configured. This call does return a 200 OK HTTP Status Code along with the data I need to refresh my UI. Then the problem start. When I come to create the VpnConnection in VPC_B to connect at VCG_TO_A VpnCustomerGateway, generally I will receive a 534 with the error message saying "Host with specified id is not in the right state: Down". The problem I've got with this is since I receive a 5xx error code, my presumption is that the VpnConnection has not been created, but it did. I know that the "Connection" has been established and there is an "Error" in that regard, nothing that a refresh can't solve, but I believe that if the VpnConnection is created properly in CloudStack, regardless of its state, it should be returned along with a 200 OK Status Code. Thank you for your time, A. Jacques Stagiaire - Intern t 514.447.3456