def update(self, context, old_vip, vip):
with a10.A10WriteStatusContext(self, context, vip) as c:
status = c.client.slb.UP
if not vip['admin_state_up']:
status = c.client.slb.DOWN
pool_name = self._pool_name(context, vip['pool_id'])
p = PersistHandler(c, context, vip, self._meta_name(vip))
p.create()
templates = self.meta(vip, "template", {})
if 'client_ssl' in templates:
args = {'client_ssl_template': templates['client_ssl']}
c.client.slb.template.client_ssl.update(
'', '', '',
axapi_args=args)
if 'server_ssl' in templates:
args = {'server_ssl_template': templates['server_ssl']}
c.client.slb.template.server_ssl.update(
'', '', '',
axapi_args=args)
vport_meta = self.vport_meta(vip)
vport_args = a10_common._vport(vport_meta, c.device_cfg)
c.client.slb.virtual_server.vport.update(
self._meta_name(vip),
self._meta_name(vip) + '_VPORT',
protocol=a10_os.vip_protocols(c, vip['protocol']),
port=vip['protocol_port'],
service_group_name=pool_name,
s_pers_name=p.s_persistence(),
c_pers_name=p.c_persistence(),
status=status,
axapi_args=vport_args)
self.hooks.after_vip_update(c, context, vip)
def create(self, context, vip):
with a10.A10WriteStatusContext(self, context, vip) as c:
status = c.client.slb.UP
if not vip['admin_state_up']:
status = c.client.slb.DOWN
pool_name = self._pool_name(context, vip['pool_id'])
p = PersistHandler(c, context, vip, self._meta_name(vip))
p.create()
templates = self.meta(vip, "template", {})
if 'client_ssl' in templates:
args = {'client_ssl_template': templates['client_ssl']}
try:
c.client.slb.template.client_ssl.create(
'', '', '',
axapi_args=args)
except acos_errors.Exists:
pass
if 'server_ssl' in templates:
args = {'server_ssl_template': templates['server_ssl']}
try:
c.client.slb.template.server_ssl.create(
'', '', '',
axapi_args=args)
except acos_errors.Exists:
pass
vport_list = None
try:
vip_meta = self.meta(vip, 'virtual_server', {})
vport_list = vip_meta.pop('vport_list', None)
vip_args = a10_common._virtual_server(vip_meta, c.device_cfg)
c.client.slb.virtual_server.create(
self._meta_name(vip),
vip['address'],
status,
axapi_args=vip_args)
except acos_errors.Exists:
pass
LOG.debug("VPORT_LIST = %s", vport_list)
if vport_list is None:
vport_list = [self.vport_meta(vip)]
for vport, i in zip(vport_list, range(len(vport_list))):
try:
vport_name = str(i) if i else ''
vport_args = a10_common._vport(vport, c.device_cfg)
c.client.slb.virtual_server.vport.create(
self._meta_name(vip),
self._meta_name(vip) + '_VPORT' + vport_name,
protocol=a10_os.vip_protocols(c, vip['protocol']),
port=vip['protocol_port'],
service_group_name=pool_name,
s_pers_name=p.s_persistence(),
c_pers_name=p.c_persistence(),
status=status,
axapi_args=vport_args)
except acos_errors.Exists:
pass
slb = models.default(
models.A10SLBV1,
vip_id=vip['id'],
a10_appliance=c.appliance)
c.db_operations.add(slb)
self.hooks.after_vip_create(c, context, vip)
def _set(self, set_method, c, context, listener):
if self.barbican_client is None:
self.barbican_client = certwrapper.CertManagerWrapper()
status = c.client.slb.UP
if not listener.admin_state_up:
status = c.client.slb.DOWN
templates = self.meta(listener, "template", {})
server_args = {}
cert_data = dict()
if listener.protocol and listener.protocol == lb_const.PROTOCOL_TERMINATED_HTTPS:
if self._set_terminated_https_values(listener, c, cert_data):
templates["client_ssl"] = {}
template_name = str(cert_data.get('template_name', ''))
key_passphrase = str(cert_data.get('cert_pass', ''))
cert_filename = str(cert_data.get('cert_filename', ''))
key_filename = str(cert_data.get('key_filename', ''))
else:
LOG.error("Could not created terminated HTTPS endpoint.")
if 'client_ssl' in templates:
try:
c.client.slb.template.client_ssl.create(
template_name,
cert=cert_filename,
key=key_filename)
except acos_errors.Exists:
c.client.slb.template.client_ssl.update(template_name, cert=cert_filename,
key=key_filename, passphrase=key_passphrase)
if 'server_ssl' in templates:
server_args = {'server_ssl_template': templates['server_ssl']}
try:
c.client.slb.template.server_ssl.create(
template_name,
cert_filename,
key_filename,
axapi_args=server_args)
except acos_errors.Exists:
c.client.slb.template.server_ssl.update(template_name,
cert_filename,
key_filename,
axapi_args=server_args)
try:
pool_name = self._pool_name(context, pool_id=listener.default_pool_id)
except Exception:
pool_name = None
persistence = handler_persist.PersistHandler(
c, context, listener.default_pool)
vport_meta = self.meta(listener.loadbalancer, 'vip_port', {})
vport_args = a10_common._vport(vport_meta, c.device_cfg)
try:
set_method(
self.a10_driver.loadbalancer._name(listener.loadbalancer),
self._meta_name(listener),
protocol=a10_osmap.vip_protocols(c, listener.protocol),
port=listener.protocol_port,
service_group_name=pool_name,
s_pers_name=persistence.s_persistence(),
c_pers_name=persistence.c_persistence(),
status=status,
axapi_args=vport_args)
except acos_errors.Exists:
pass