Page MenuHomeDevCentral
Projects Secure HA tunnels

Secure HA tunnelsInfrastructure
ActivePublic
Watch Project

Members (4)

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

GRE tunnel with IPSEC and CARP

Recent Activity
View All

Yesterday

yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 17:56 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a revision to T2319: Automate GRE tunnel failover on CARP PRIMARY router: D4098: Add Salt reactor for GRE tunnel creation on CARP failover.
Wed, Apr 29, 17:55 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:39 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:37 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:36 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:35 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:34 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra assigned T2322: Create log file for GRE tunnel creation script to Duranzed.
Wed, Apr 29, 12:24 · Servers, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:19 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra renamed T2319: Automate GRE tunnel failover on CARP PRIMARY router from Automate GRE tunnel failover on CARP master switch to Automate GRE tunnel failover on CARP PRIMARY router.
Wed, Apr 29, 12:18 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

Tue, Apr 28

yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Tue, Apr 28, 08:11 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Tue, Apr 28, 08:11 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Tue, Apr 28, 07:45 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

Mon, Apr 27

Duranzed added a comment to T2319: Automate GRE tunnel failover on CARP PRIMARY router.

We noticed that Windriver is unable to ping the public IP addresses of router-002 and router-003. However, GRE tunnel creation is successful, and tunnel connectivity works with router-002, although pinging its public IP is still unsuccessful.

Mon, Apr 27, 15:10 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a project to T2322: Create log file for GRE tunnel creation script: Servers.
Mon, Apr 27, 15:02 · Servers, Secure HA tunnels
yousra moved T2322: Create log file for GRE tunnel creation script from Backlog to Working on on the Secure HA tunnels board.
Mon, Apr 27, 15:02 · Servers, Secure HA tunnels
Duranzed updated the task description for T2322: Create log file for GRE tunnel creation script.
Mon, Apr 27, 15:00 · Servers, Secure HA tunnels
Duranzed created T2322: Create log file for GRE tunnel creation script.
Mon, Apr 27, 14:59 · Servers, Secure HA tunnels
Duranzed added a comment to T2319: Automate GRE tunnel failover on CARP PRIMARY router.

When creating a GRE tunnel to the alias IP of ysul as an endpoint the tunnel is unpingable however when creating the GRE tunnel using the public IP of ysul, GRE tunnel responds well to ping.
I suspect that the problem might come from using an alias IP as GRE endpoint that might cause this as it suggest encapsulation/decapsulation issues

Mon, Apr 27, 12:37 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

Sun, Apr 26

yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 19:05 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 19:03 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 19:02 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a comment to T2319: Automate GRE tunnel failover on CARP PRIMARY router.

I created and tested a Salt reactor that listens for the carp/master event sent by the routers. For now, the reactor only runs a test command on Ysul and Windriver to confirm that the event is correctly received and that the master can trigger actions on those hosts.

Sun, Apr 26, 18:19 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 17:24 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 16:52 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 14:34 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 14:21 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a comment to T2319: Automate GRE tunnel failover on CARP PRIMARY router.

Test to validate Salt event emission and reception on the master :

Sun, Apr 26, 14:19 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 14:03 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 14:00 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 13:53 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Sun, Apr 26, 13:52 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

Fri, Apr 24

yousra added a revision to T2315: Reprovision Ysul: D4095: Fix IPv4 alias not applied on Ysul.
Fri, Apr 24, 09:36 · Secure HA tunnels, Servers
yousra added a project to T2319: Automate GRE tunnel failover on CARP PRIMARY router: Monitoring and reporting.
Fri, Apr 24, 08:28 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a project to T2276: Automate CARP VIP MAC reassignment using devd and OVH API: Python.
Fri, Apr 24, 08:27 · Python, Drake network, Servers, Monitoring and reporting, Secure HA tunnels
yousra added projects to T2319: Automate GRE tunnel failover on CARP PRIMARY router: Drake network, Salt, Python.
Fri, Apr 24, 08:26 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added projects to T2303: Installation and configuration of FRRouting: Salt, Drake network.
Fri, Apr 24, 08:25 · Drake network, Salt, Secure HA tunnels
yousra renamed T2302: CARP + GRE + OSPF conflict from CARP + GRE + OSPF conflict in HA setup to CARP + GRE + OSPF conflict.
Fri, Apr 24, 08:22 · Secure HA tunnels
yousra moved T2302: CARP + GRE + OSPF conflict from Backlog to Done on the Secure HA tunnels board.
Fri, Apr 24, 08:20 · Secure HA tunnels
yousra closed T2302: CARP + GRE + OSPF conflict as Resolved.
Fri, Apr 24, 08:20 · Secure HA tunnels
yousra added a comment to T2302: CARP + GRE + OSPF conflict.

This explanation is not fully correct. Indeed the VIP cannot be used to establish two GRE tunnels at the same time on Windriver or on Ysul.

Fri, Apr 24, 08:20 · Secure HA tunnels
yousra updated the task description for T2302: CARP + GRE + OSPF conflict.
Fri, Apr 24, 08:09 · Secure HA tunnels
yousra moved T1741: Wrong GRE tunnel configuration Ysul on boot from Backlog to Done on the Secure HA tunnels board.
Fri, Apr 24, 07:57 · Secure HA tunnels, Salt, Drake network, Servers
yousra closed T1741: Wrong GRE tunnel configuration Ysul on boot as Resolved.
Fri, Apr 24, 07:56 · Secure HA tunnels, Salt, Drake network, Servers
yousra added a comment to T1741: Wrong GRE tunnel configuration Ysul on boot.

This issue is indeed not longer relevant.

Fri, Apr 24, 07:50 · Secure HA tunnels, Salt, Drake network, Servers
yousra moved T2319: Automate GRE tunnel failover on CARP PRIMARY router from Backlog to Working on on the Secure HA tunnels board.
Fri, Apr 24, 07:30 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

Thu, Apr 23

yousra added a revision to T2303: Installation and configuration of FRRouting: D4093: FRRouting : installation and configuration.
Thu, Apr 23, 21:29 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
Thu, Apr 23, 21:27 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
Thu, Apr 23, 21:27 · Drake network, Salt, Secure HA tunnels

Wed, Apr 22

yousra added a comment to T2315: Reprovision Ysul.

@dereckson I tried applying these units for role devserver:

Wed, Apr 22, 20:37 · Secure HA tunnels, Servers
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator