Side2Side VPN connection between OpenStack VPN and AVM Fritz!Box
FRITZBOX_WAN_IP=111.1.2.3 # curl ipinfo.io/ip FRITZBOX_CIDR=192.168.178.0/24 OS_USER=foo PROJECT_ID=xxxxxxxxxxxxxx PSK='PASS1234' # apg -m 32 -a1 openstack vpn ike policy create ${OS_USER}-ike-aes256-sha512 \ --encryption-algorithm aes-256 \ --auth-algorithm sha512 \ --pfs group2 openstack vpn ipsec policy create ${OS_USER}-ipsec-aes256-sha512 \ --encryption-algorithm aes-256 \ --auth-algorithm sha512 \ --pfs group2 # openstack router list # ROUTER_ID=$(openstack router list -c ID -f value) openstack vpn service create ${OS_USER}-vpn-service1 \ --router ${ROUTER_ID} \ -c external_v4_ip \ -f value # openstack subnet list # SUBNET_ID=$(openstack subnet list -c ID -f value --name ${OS_USER}-subnet) openstack vpn endpoint group create ${OS_USER}-vpn-endpoint-local \ --type subnet \ --value ${SUBNET_ID} openstack vpn endpoint group create ${OS_USER}-vpn-endpoint-peer \ --type cidr \ --value ${FRITZBOX_CIDR} openstack vpn ipsec site connection create ${OS_USER}-vpn-conn1 \ --vpnservice ${OS_USER}-vpn-service1 \ --ikepolicy ${OS_USER}-ike-aes256-sha512 \ --ipsecpolicy ${OS_USER}-ipsec-aes256-sha512 \ --peer-address ${FRITZBOX_WAN_IP} \ --peer-id ${FRITZBOX_WAN_IP} \ --psk ${PSK} \ --local-endpoint-group ${OS_USER}-vpn-endpoint-local \ --peer-endpoint-group ${OS_USER}-vpn-endpoint-peer