In setting T0 static route, a scope parameter is needed.
This patch fixes the problem with previous implementation by
adding the scope field in static route definition
Issue: #
Jira: #
Signed-off-by: Rongrong_Miao <rmiao@vmware.com>
Change-Id: I9b6e579e8e57e13cb1ba9e797c7348e23e3aaa8f
Object-level RBAC Entries Support in Policy API. This resource
controls the CRUD permissions of specified user to specified resources.
URL: /policy/api/v1/aaa/object-permissions
Change-Id: If065da6e5c91fe16a563527ec2ec36c445c9afd1
Currently in get_realizaiton_info in Tier1 API, the entity_type
is ignored. This patch fixes this issue to use entity_type to
filter for realized entity returned by this API
Also to easily get router port, an API is added for Tier1 API
to return a list of RouterPort realized associated with the tier1
Issue: #
Jira: #
Signed-off-by: Rongrong_Miao <rmiao@vmware.com>
Change-Id: Ife3f3652255db4ffc72872e4aef84418bf1a3211
Adds Tier 0 static routes API to support dev
on NCP side on multi VRF and multi T0 topology
Issue: #
Jira: #
Signed-off-by: Rongrong_Miao <rmiao@vmware.com>
Change-Id: I73756350b23dbd8f23c8e22ad84abe93b49831a4
This patch allows IP Pool to be deleted with transaction, so that the IP
pool can be removed with its child resources (i.e. pool subnets, ip
allocations) in one API call.
Change-Id: I873f7b714a313ff5b512a3898aedab9bd805163b
NSX checks revision number for PUT requests. It rejects the request
if revision number is not latest. This is helpful for preventing
clients overwriting each other's change to the same object concurrently.
Change-Id: I226782f268b129a8e086938d8ebf258c2abc017e
Although we need to skip the request to /api/session/create with JWT
based auth (original patch: https://review.opendev.org/c/x/vmware-nsxlib/+/774025/),
we should update the session headers with the JWT token.
Change-Id: I87a338f99c195e163d3618c123760c13252317ab
Provide a new parameter in cluster API initilalize func to disable
health check and endpoint accessiblitlity check.
By default the value is True, for some scenarios, when creating
a nsxlib object, users does not intend to validate the endpoint
state, for example, in ncp election process.
Change-Id: I6485a91f1d764fbb7ae3edc61541b7cd9f97682e
According to NSX Authentication team's response
in bug 2708018, we should not be using /api/session/create
with JWT based auth, which will cause
session create failed with 403 response.
Change-Id: Ic09090d633301401906815743bbdd83b55212203
We suspect session might be reused accross threads that leads to
rare SSL errors. This extra printout can help debug the issue.
Change-Id: I67e08ec48fb411d6d5a083fea6a6b68051f07617
Urllib3 Retry class's increment method has been used and we don't
understand why. Since it's impossible to add logs directly in Retry class,
this patch subclasses Retry and adds logging capabilities to log
server response and relevant cause if we hit this bug again
Signed-off-by: rmiao106 <rmiao@vmware.com>
Change-Id: I2bd13ee635879a343c7a05886b397b3ffda5006a
This patch adds an optional 'service_id' parameter to multicast
enablement / disablement methods to allow multicast to be set
also for locale-services whose id was not auto-generated by
vmware-nsxlib.
Change-Id: I68d0149179eea3177252f4986ce1b2d085b0950b
This patch allow for enabling or disabling multicast on a Tier-1 GW
router. This is simply done by setting a boolean flag in the router's
multicast configuration, which is however a sub-attribute of the
Tier-1 GW object accessed via its own API endpoint.
For the above reason, this patch introduces a definition object for
the Tier-1 Multicast settings.
Change-Id: I8308442ecd9b4d14f4ceb0ea55c4dcd4ee240e17
Add two parameters access_log_enabled and log_significant_event_only
They're supported since nsx-t 3.0.0.
1. for policy, it needs to add extra parameters.
2. for manager, ** kargs supports more parameters, nothing changed.
Change-Id: I2b313eef80def69e17d664022ae2074950812897
This change support create/update LB pool with tcp multiplexing
enabled and tcp multiplexing number.
Change-Id: I3c39bc2b4b07f138a2ac3d3efbdccd80929cc3b2
1. For MP, add logging parameter in snat rule creating api
2. For Policy, change parameter name from log to logging for tier0
and tier1 snat rule object.
Change-Id: I4f03fa6a35f138a7112782d58a1cc5a4b1648d61
In case of none default enforcement point value, the Segment
create might fail, because it is hard coded to use default ep
for querying transport zone, if specified. This change add
support for creating segment with transport zone in none default
enforcement point
Change-Id: Id122f9591c2bded5edc43fad514e6e1e9e6a9fa3
- Expose Building DHCP Config V4 and V6 in NsxPolicyTier1SegmentApi
- Update update_advertisement_rules to allow batch removal of existings
rules via prefix matching even if no new rules are to be added
Change-Id: I215630fb2af41d71431774d88129c08c4aeac904
Whenever the cluster in initialized, new loops for keepalive validation
are created.
The old loos should be stopped to not overload the nsx with keepalive checks.
Change-Id: I6ae746ba11457c141814424f42e9a0c0e2684601