-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
More tunnel options #16180
Comments
Thank you for your interest in improving NetBox. OpenVPN and WireGuard are indisputably popular tunnel technologies, and NetBox would better reflect reality if it included support for them. Before we could proceed, though, we would need more detail than you've provided here. Please explore the ways that the requested technologies differ from IPSEC, and call out any resulting challenges that a developer implementing this feature would need to take into account. It doesn't need to be a code-level analysis; we just want to encourage you to think through the implications of what you're requesting. The maintainer team is currently quite small and so we generally must prioritize FRs that offer the biggest impact for the smallest development effort. Please revise your issue body accordingly, and we will give it due consideration. |
Current Netbox seems to be modeled pretty much around IPsec ideology but OpenVPN and Wireguard semantics don't match well with that. Wireguard,
OpenVPN Static key mode is simple,
OpenVPN TLS mode is complicated,
In all cases single device can have multiple Wireguard and OpenVPN servers in different ports with different keys and different set of connected endpoints. Netbox needs bunch of changes:
|
This is a reminder that additional information is needed in order to further triage this issue. If the requested details are not provided, the issue will soon be closed automatically. |
@jeffgdotorg Can you check the above comment? |
@TeroPihlaja thanks for the update and apologies for the silence. I've added this issue to the agenda for a team standup this week. |
links to this #14683 |
NetBox version
v4.0.2
Feature type
Data model extension
Proposed functionality
Add support for the following VPN tunnel types:
Implications analysis (lifted up from comment below)
Wireguard
OpenVPN
OpenVPN Static key mode is simple:
OpenVPN TLS mode is complicated,
In all cases single device can have multiple Wireguard and OpenVPN servers in different ports with different keys and different set of connected endpoints.
Use case
Currently only IPsec tunnels are supported by Netbox.
We have also OpenVPN and WireGuard tunnels in use.
Database changes
NetBox needs a bunch of changes:
External dependencies
No response
The text was updated successfully, but these errors were encountered: