diff options
| author | Christian Breunig <christian@breunig.cc> | 2025-01-13 19:52:58 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2025-01-13 19:52:58 +0100 |
| commit | 4663c59ac956f33ecadc7f2ebf0c9c7b5de9c8a2 (patch) | |
| tree | 858c1e443aabcaef216aaecb072011199957b7ee /src/op_mode/ipsec.py | |
| parent | 8a83a976b775d4f24138ee5fff8dcb602789904d (diff) | |
| parent | 5e8307bf3a7f816193ca9da8cb290d57bbb375f2 (diff) | |
| download | vyos-1x-4663c59ac956f33ecadc7f2ebf0c9c7b5de9c8a2.tar.gz vyos-1x-4663c59ac956f33ecadc7f2ebf0c9c7b5de9c8a2.zip | |
Merge pull request #4217 from aapostoliuk/T2326-circinus
nhrp: T2326: NHRP migration to FRR
Diffstat (limited to 'src/op_mode/ipsec.py')
| -rwxr-xr-x | src/op_mode/ipsec.py | 23 |
1 files changed, 1 insertions, 22 deletions
diff --git a/src/op_mode/ipsec.py b/src/op_mode/ipsec.py index 02ba126b4..1ab50b105 100755 --- a/src/op_mode/ipsec.py +++ b/src/op_mode/ipsec.py @@ -1,6 +1,6 @@ #!/usr/bin/env python3 # -# Copyright (C) 2022-2024 VyOS maintainers and contributors +# Copyright (C) 2022-2025 VyOS maintainers and contributors # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2 or later as @@ -700,15 +700,6 @@ def reset_profile_dst(profile: str, tunnel: str, nbma_dst: str): ] ) ) - # initiate IKE SAs - for ike in sa_nbma_list: - if ike_sa_name in ike: - vyos.ipsec.vici_initiate( - ike_sa_name, - 'dmvpn', - ike[ike_sa_name]['local-host'], - ike[ike_sa_name]['remote-host'], - ) print( f'Profile {profile} tunnel {tunnel} remote-host {nbma_dst} reset result: success' ) @@ -732,18 +723,6 @@ def reset_profile_all(profile: str, tunnel: str): ) # terminate IKE SAs vyos.ipsec.terminate_vici_by_name(ike_sa_name, None) - # initiate IKE SAs - for ike in sa_list: - if ike_sa_name in ike: - vyos.ipsec.vici_initiate( - ike_sa_name, - 'dmvpn', - ike[ike_sa_name]['local-host'], - ike[ike_sa_name]['remote-host'], - ) - print( - f'Profile {profile} tunnel {tunnel} remote-host {ike[ike_sa_name]["remote-host"]} reset result: success' - ) print(f'Profile {profile} tunnel {tunnel} reset result: success') except vyos.ipsec.ViciInitiateError as err: raise vyos.opmode.UnconfiguredSubsystem(err) |