sandersms
commented
4 months ago We may want to expand this for VPNs in general or create an API that addresses VPNs to cover alternatives such as wireguard, OpenVPN, and others that are alternatives to IPSec and IKEv2.
The current IPSec protobuf API follows a service model of specific rpc commands instead of a CRUD model. The API needs to be refactored to the Create, Update, List, Delete, Get structure of commands. This will allow for various offloads of IPSec to be supported.
The current support is focused toward strongswan and other options for IPSec support need to be accommodated. Other options for IPSec could be openswan, racoon, etc.