You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cloudstack.apache.org by ra...@apache.org on 2013/12/17 10:01:13 UTC

git commit: CLOUDSTACK-5291 site to site vpn between two vr

Updated Branches:
  refs/heads/master 0f9a7a447 -> 25dfc1c84


CLOUDSTACK-5291 site to site vpn between two vr


Project: http://git-wip-us.apache.org/repos/asf/cloudstack-docs/repo
Commit: http://git-wip-us.apache.org/repos/asf/cloudstack-docs/commit/25dfc1c8
Tree: http://git-wip-us.apache.org/repos/asf/cloudstack-docs/tree/25dfc1c8
Diff: http://git-wip-us.apache.org/repos/asf/cloudstack-docs/diff/25dfc1c8

Branch: refs/heads/master
Commit: 25dfc1c84e95607d014c80005bfa57fe0a98fbe9
Parents: 0f9a7a4
Author: Radhika PC <ra...@citrix.com>
Authored: Tue Dec 17 14:30:51 2013 +0530
Committer: Radhika PC <ra...@citrix.com>
Committed: Tue Dec 17 14:30:51 2013 +0530

----------------------------------------------------------------------
 en-US/create-passive-vpn-vpc.xml     | 54 +++++++++++++++++++++++++++++++
 en-US/create-vpn-connection-vpc.xml  | 12 +++++--
 en-US/create-vpn-gateway-for-vpc.xml |  6 +---
 en-US/site-to-site-vpn.xml           | 11 +++++--
 4 files changed, 73 insertions(+), 10 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cloudstack-docs/blob/25dfc1c8/en-US/create-passive-vpn-vpc.xml
----------------------------------------------------------------------
diff --git a/en-US/create-passive-vpn-vpc.xml b/en-US/create-passive-vpn-vpc.xml
new file mode 100644
index 0000000..89f5d1d
--- /dev/null
+++ b/en-US/create-passive-vpn-vpc.xml
@@ -0,0 +1,54 @@
+<?xml version='1.0' encoding='utf-8' ?>
+<!DOCTYPE section PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN" "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
+<!ENTITY % BOOK_ENTITIES SYSTEM "cloudstack.ent">
+%BOOK_ENTITIES;
+]>
+<!-- Licensed to the Apache Software Foundation (ASF) under one
+    or more contributor license agreements.  See the NOTICE file
+    distributed with this work for additional information
+    regarding copyright ownership.  The ASF licenses this file
+    to you under the Apache License, Version 2.0 (the
+    "License"); you may not use this file except in compliance
+    with the License.  You may obtain a copy of the License at
+    http://www.apache.org/licenses/LICENSE-2.0
+    Unless required by applicable law or agreed to in writing,
+    software distributed under the License is distributed on an
+    "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+    KIND, either express or implied.  See the License for the
+    specific language governing permissions and limitations
+    under the License.
+-->
+<section id="create-passive-vpn-vpc">
+  <title>Creating a VPN Connection</title>
+  <para>&PRODUCT; provides you with the ability to establish a site-to-site VPN connection between
+    &PRODUCT; virtual routers. To achieve that, add a passive mode Site-to-Site VPN. With this
+    functionality, users can deploy applications in multiple Availability Zones or VPCs, which can
+    communicate with each other by using a secure Site-to-Site VPN Tunnel.</para>
+  <para>This feature is supported on all the hypervisors.</para>
+  <orderedlist>
+    <listitem>
+      <para>Create two VPCs. For example, VPC A and VPC B.</para>
+      <para>For more information, see <xref linkend="configure-vpc"/>.</para>
+    </listitem>
+    <listitem>
+      <para>Create VPN gateways on both the VPCs you created.</para>
+      <para>For more information, see <xref linkend="create-vpn-gateway-for-vpc"/>.</para>
+    </listitem>
+    <listitem>
+      <para>Create VPN customer gateway for both the VPCs.</para>
+      <para>For more information, see <xref linkend="create-vpn-customer-gateway"/>.</para>
+    </listitem>
+    <listitem>
+      <para>Enable a VPN connection on VPC A in passive mode. </para>
+      <para>For more information, see <xref linkend="create-vpn-connection-vpc"/>.</para>
+      <para>Ensure that the customer gateway is pointed to VPC B. The VPN connection is shown in the
+        Disconnected state.</para>
+    </listitem>
+    <listitem>
+      <para>Enable a VPN connection on VPC B in passive mode. </para>
+      <para>Ensure that the customer gateway is pointed to VPC A. The VPN connection is shown in the
+        Disconnected state.</para>
+      <para>Creating VPN connection on both the VPCs initiates a VPN connection. Wait for few seconds. The default is 30 seconds for both the VPN connections to show the Connected state.</para>
+    </listitem>
+  </orderedlist>
+</section>

http://git-wip-us.apache.org/repos/asf/cloudstack-docs/blob/25dfc1c8/en-US/create-vpn-connection-vpc.xml
----------------------------------------------------------------------
diff --git a/en-US/create-vpn-connection-vpc.xml b/en-US/create-vpn-connection-vpc.xml
index 88a058c..2eeb22f 100644
--- a/en-US/create-vpn-connection-vpc.xml
+++ b/en-US/create-vpn-connection-vpc.xml
@@ -21,6 +21,7 @@
 <section id="create-vpn-connection-vpc">
   <title>Creating a VPN Connection</title>
   <note><para>&PRODUCT; supports creating up to 8 VPN connections.</para></note>
+  <para/>
   <orderedlist>
     <listitem>
       <para>Log in to the &PRODUCT; UI as an administrator or end user.</para>
@@ -88,13 +89,20 @@
           <imagedata fileref="./images/create-vpn-connection.png"/>
         </imageobject>
         <textobject>
-          <phrase>createvpnconnection.png: creating a vpn connection to the customer
+          <phrase>createvpnconnection.png: creating a VPN connection to the customer
             gateway.</phrase>
         </textobject>
       </mediaobject>
     </listitem>
     <listitem>
-      <para>Select the desired customer gateway, then click OK to confirm.</para>
+      <para>Select the desired customer gateway.</para>
+    </listitem>
+    <listitem>
+      <para>Select Passive if you want to establish a connection between two VPC virtual
+        routers.</para>
+    </listitem>
+    <listitem>
+      <para>Click OK to confirm.</para>
       <para>Within a few moments, the VPN Connection is displayed.</para>
       <para>The following information on the VPN connection is displayed:</para>
       <itemizedlist>

http://git-wip-us.apache.org/repos/asf/cloudstack-docs/blob/25dfc1c8/en-US/create-vpn-gateway-for-vpc.xml
----------------------------------------------------------------------
diff --git a/en-US/create-vpn-gateway-for-vpc.xml b/en-US/create-vpn-gateway-for-vpc.xml
index 0f8a0dc..1104d69 100644
--- a/en-US/create-vpn-gateway-for-vpc.xml
+++ b/en-US/create-vpn-gateway-for-vpc.xml
@@ -33,11 +33,7 @@
     </listitem>
     <listitem>
       <para>Click the Configure button of the VPC to which you want to deploy the VMs.</para>
-      <para>The VPC page is displayed where all the tiers you created are listed in a
-        diagram.</para>
-    </listitem>
-    <listitem>
-      <para>Click the Settings icon.</para>
+      <para>The VPC page is displayed where all the tiers you created are listed in a diagram. </para>
       <para>For each tier, the following options are displayed:</para>
       <itemizedlist>
         <listitem>

http://git-wip-us.apache.org/repos/asf/cloudstack-docs/blob/25dfc1c8/en-US/site-to-site-vpn.xml
----------------------------------------------------------------------
diff --git a/en-US/site-to-site-vpn.xml b/en-US/site-to-site-vpn.xml
index a26ac6c..dda96df 100644
--- a/en-US/site-to-site-vpn.xml
+++ b/en-US/site-to-site-vpn.xml
@@ -26,8 +26,9 @@
   <para>A Site-to-Site VPN connection helps you establish a secure connection from an enterprise
     datacenter to the cloud infrastructure. This allows users to access the guest VMs by
     establishing a VPN connection to the virtual router of the account from a device in the
-    datacenter of the enterprise. Having this facility eliminates the need to establish VPN
-    connections to individual VMs.</para>
+    datacenter of the enterprise. You can also establish a secure connection between two VPC setups
+    or high availability zones in your environment. Having this facility eliminates the need to
+    establish VPN connections to individual VMs. </para>
   <para>The difference from Remote VPN is that Site-to-site VPNs connects entire networks to each
     other, for example, connecting a branch office network to a company headquarters network. In a
     site-to-site VPN, hosts do not have VPN client software; they send and receive normal TCP/IP
@@ -40,13 +41,16 @@
     <listitem>
       <para>Juniper J-Series routers with JunOS 9.5 or later</para>
     </listitem>
+    <listitem>
+      <para>&PRODUCT; virtual routers</para>
+    </listitem>
   </itemizedlist>
   <note>
     <para>In addition to the specific Cisco and Juniper devices listed above, the expectation is
       that any Cisco or Juniper device running on the supported operating systems are able to
       establish VPN connections.</para>
   </note>
-  <para></para>
+  <para/>
   <para>To set up a Site-to-Site VPN connection, perform the following:</para>
   <orderedlist>
     <listitem>
@@ -66,5 +70,6 @@
   <xi:include href="create-vpn-customer-gateway.xml" xmlns:xi="http://www.w3.org/2001/XInclude"/>
   <xi:include href="create-vpn-gateway-for-vpc.xml" xmlns:xi="http://www.w3.org/2001/XInclude"/>
   <xi:include href="create-vpn-connection-vpc.xml" xmlns:xi="http://www.w3.org/2001/XInclude"/>
+  <xi:include href="create-passive-vpn-vpc.xml" xmlns:xi="http://www.w3.org/2001/XInclude"/>
   <xi:include href="delete-reset-vpn.xml" xmlns:xi="http://www.w3.org/2001/XInclude"/>
 </section>