1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
|
"""List IPSEC VPN Tunnel Context Details."""
# :license: MIT, see LICENSE for more details.
import click
import SoftLayer
from SoftLayer.CLI import environment
from SoftLayer.CLI import formatting
@click.command(cls=SoftLayer.CLI.command.SLCommand, )
@click.argument('context_id', type=int)
@click.option('-i',
'--include',
default=[],
multiple=True,
type=click.Choice(['at', 'is', 'rs', 'sr', 'ss']),
help='Include additional resources')
@environment.pass_env
def cli(env, context_id, include):
"""List IPSEC VPN tunnel context details.
Additional resources can be joined using multiple instances of the
include option, for which the following choices are available.
\b
at: address translations
is: internal subnets
rs: remote subnets
sr: statically routed subnets
ss: service subnets
"""
mask = _get_tunnel_context_mask(('at' in include),
('is' in include),
('rs' in include),
('sr' in include),
('ss' in include))
manager = SoftLayer.IPSECManager(env.client)
context = manager.get_tunnel_context(context_id, mask=mask)
env.fout(_get_context_table(context))
for relation in include:
if relation == 'at':
env.fout(_get_address_translations_table(context.get('addressTranslations', [])))
elif relation == 'is':
env.fout(_get_subnets_table(context.get('internalSubnets', []), title="Internal Subnets"))
elif relation == 'rs':
env.fout(_get_subnets_table(context.get('customerSubnets', []), title="Remote Subnets"))
elif relation == 'sr':
env.fout(_get_subnets_table(context.get('staticRouteSubnets', []), title="Static Subnets"))
elif relation == 'ss':
env.fout(_get_subnets_table(context.get('serviceSubnets', []), title="Service Subnets"))
def _get_address_translations_table(address_translations):
"""Yields a formatted table to print address translations.
:param List[dict] address_translations: List of address translations.
:return Table: Formatted for address translation output.
"""
table = formatting.Table(['id',
'static IP address',
'static IP address id',
'remote IP address',
'remote IP address id',
'note'], title="Address Translations")
for address_translation in address_translations:
table.add_row([address_translation.get('id', ''),
address_translation.get('internalIpAddressRecord', {}).get('ipAddress', ''),
address_translation.get('internalIpAddressId', ''),
address_translation.get('customerIpAddressRecord', {}).get('ipAddress', ''),
address_translation.get('customerIpAddressId', ''),
address_translation.get('notes', '')])
return table
def _get_subnets_table(subnets, title):
"""Yields a formatted table to print subnet details.
:param List[dict] subnets: List of subnets.
:return Table: Formatted for subnet output.
"""
table = formatting.Table(['id', 'network identifier', 'cidr', 'note'], title=title)
for subnet in subnets:
table.add_row([subnet.get('id', ''),
subnet.get('networkIdentifier', ''),
subnet.get('cidr', ''),
subnet.get('note', '')])
return table
def _get_tunnel_context_mask(address_translations=False,
internal_subnets=False,
remote_subnets=False,
static_subnets=False,
service_subnets=False):
"""Yields a mask object for a tunnel context.
All exposed properties on the tunnel context service are included in
the constructed mask. Additional joins may be requested.
:param bool address_translations: Whether to join the context's address
translation entries.
:param bool internal_subnets: Whether to join the context's internal
subnet associations.
:param bool remote_subnets: Whether to join the context's remote subnet
associations.
:param bool static_subnets: Whether to join the context's statically
routed subnet associations.
:param bool service_subnets: Whether to join the SoftLayer service
network subnets.
:return string: Encoding for the requested mask object.
"""
entries = ['id',
'accountId',
'advancedConfigurationFlag',
'createDate',
'customerPeerIpAddress',
'modifyDate',
'name',
'friendlyName',
'internalPeerIpAddress',
'phaseOneAuthentication',
'phaseOneDiffieHellmanGroup',
'phaseOneEncryption',
'phaseOneKeylife',
'phaseTwoAuthentication',
'phaseTwoDiffieHellmanGroup',
'phaseTwoEncryption',
'phaseTwoKeylife',
'phaseTwoPerfectForwardSecrecy',
'presharedKey']
if address_translations:
entries.append('addressTranslations[internalIpAddressRecord[ipAddress],'
'customerIpAddressRecord[ipAddress]]')
if internal_subnets:
entries.append('internalSubnets')
if remote_subnets:
entries.append('customerSubnets')
if static_subnets:
entries.append('staticRouteSubnets')
if service_subnets:
entries.append('serviceSubnets')
return '[mask[{}]]'.format(','.join(entries))
def _get_context_table(context):
"""Yields a formatted table to print context details.
:param dict context: The tunnel context
:return Table: Formatted for tunnel context output
"""
table = formatting.KeyValueTable(['name', 'value'], title='Context Details')
table.align['name'] = 'r'
table.align['value'] = 'l'
table.add_row(['id', context.get('id', '')])
table.add_row(['name', context.get('name', '')])
table.add_row(['friendly name', context.get('friendlyName', '')])
table.add_row(['internal peer IP address', context.get('internalPeerIpAddress', '')])
table.add_row(['remote peer IP address', context.get('customerPeerIpAddress', '')])
table.add_row(['advanced configuration flag', context.get('advancedConfigurationFlag', '')])
table.add_row(['preshared key', context.get('presharedKey', '')])
table.add_row(['phase 1 authentication', context.get('phaseOneAuthentication', '')])
table.add_row(['phase 1 diffie hellman group', context.get('phaseOneDiffieHellmanGroup', '')])
table.add_row(['phase 1 encryption', context.get('phaseOneEncryption', '')])
table.add_row(['phase 1 key life', context.get('phaseOneKeylife', '')])
table.add_row(['phase 2 authentication', context.get('phaseTwoAuthentication', '')])
table.add_row(['phase 2 diffie hellman group', context.get('phaseTwoDiffieHellmanGroup', '')])
table.add_row(['phase 2 encryption', context.get('phaseTwoEncryption', '')])
table.add_row(['phase 2 key life', context.get('phaseTwoKeylife', '')])
table.add_row(['phase 2 perfect forward secrecy', context.get('phaseTwoPerfectForwardSecrecy', '')])
table.add_row(['created', context.get('createDate')])
table.add_row(['modified', context.get('modifyDate')])
return table
|
