<div dir="ltr"><div>I think we should allow more than subnet_id in one vpnservice object.</div><div>but the model below limits only one subnet_id is used.</div><div><a href="https://github.com/openstack/neutron/blob/master/neutron/extensions/vpnaas.py">https://github.com/openstack/neutron/blob/master/neutron/extensions/vpnaas.py</a><br>
</div><div>RESOURCE_ATTRIBUTE_MAP = {</div><div><br></div><div> 'vpnservices': {</div><div> 'id': {'allow_post': False, 'allow_put': False,</div><div> 'validate': {'type:uuid': None},</div>
<div> 'is_visible': True,</div><div> 'primary_key': True},</div><div> 'tenant_id': {'allow_post': True, 'allow_put': False,</div><div> 'validate': {'type:string': None},</div>
<div> 'required_by_policy': True,</div><div> 'is_visible': True},</div><div> 'name': {'allow_post': True, 'allow_put': True,</div><div>
'validate': {'type:string': None},</div><div> 'is_visible': True, 'default': ''},</div><div> 'description': {'allow_post': True, 'allow_put': True,</div>
<div> 'validate': {'type:string': None},</div><div> 'is_visible': True, 'default': ''},</div><div> 'subnet_id': {'allow_post': True, 'allow_put': False,</div>
<div> 'validate': {'type:uuid': None},</div><div> 'is_visible': True},</div><div> 'router_id': {'allow_post': True, 'allow_put': False,</div>
<div> 'validate': {'type:uuid': None},</div><div> 'is_visible': True},</div><div> 'admin_state_up': {'allow_post': True, 'allow_put': True,</div>
<div> 'default': True,</div><div> 'convert_to': attr.convert_to_boolean,</div><div> 'is_visible': True},</div><div> 'status': {'allow_post': False, 'allow_put': False,</div>
<div> 'is_visible': True}</div><div> },</div><div><br></div><div>with such limit, I don't think there is a way to allow other subnets behind the router be vpn exposed!</div><div><br></div>
<div>thoughts?</div><div><br></div><div>Thanks</div><div>Yong Sheng Gong</div></div>