Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-69899

VPN connections do not support ipv4.routing-rules settings

XMLWordPrintable

    • No
    • Moderate
    • ZStream
    • rhel-sst-network-management
    • ssg_networking
    • 3
    • False
    • Hide

      None

      Show
      None
    • Yes
    • None
    • Approved Blocker
    • Hide

      Given a system administrator configures a VPN connection in NetworkManager and specifies routing rules using `ipv4.routing-rules`,

      When the VPN connection is established,

      Then, NetworkManager should correctly apply the specified routing rules to the VPN connection so thatt the rules are reflected in the system's routing table

      Definition of Done:

      • The implementation meets the acceptance criteria
      • Integration tests are written and pass 
      • The code is part of a downstream build attached to an errata
      Show
      Given a system administrator configures a VPN connection in NetworkManager and specifies routing rules using `ipv4.routing-rules`, When the VPN connection is established, Then, NetworkManager should correctly apply the specified routing rules to the VPN connection so thatt the rules are reflected in the system's routing table Definition of Done: The implementation meets the acceptance criteria Integration tests are written and pass  The code is part of a downstream build attached to an errata
    • Requested
    • None
    • None

      What were you trying to do that didn't work?

      Configure routing rule for a VPN

      What is the impact of this issue to you?

      it blocks the TunnelVision mitigation.

      How reproducible is this bug?:

      always

      Steps to reproduce

      1. nmcli con modify vpn ipv4.routing-rules  "priority 16383 from all table 127"
      1.  
      2.  

      Expected results

      VPN profile is updated to use routing rule

      Actual results

      misleaing error message:

       

      Error: invalid property 'routing-rules ': 'routing-rules ' not among [method, dns, dns-search, dns-options, dns-priority, addresses, gateway, routes, route-metric, route-table, routing-rules, replace-local-rule, dhcp-send-release, routed-dns, ignore-auto-routes, ignore-auto-dns, dhcp-client-id, dhcp-iaid, dhcp-dscp, dhcp-timeout, dhcp-send-hostname-deprecated, dhcp-send-hostname, dhcp-hostname, dhcp-fqdn, dhcp-hostname-flags, never-default, may-fail, required-timeout, dad-timeout, dhcp-vendor-class-identifier, dhcp-ipv6-only-preferred, link-local, dhcp-reject-servers, auto-route-ext-gw].

              rh-ee-sfaye Stanislas Faye
              timaas@redhat.com Till Maas
              Network Management Team Network Management Team
              Vladimir Benes Vladimir Benes
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated: