Gitiles
Code Review Sign In
gerrit.opencord.org / aether-docs / db739a3dc1c40d718795ce72b4ed3dcaab743d45^! / . / edge_deployment / vpn_bootstrap.rst
commitdb739a3dc1c40d718795ce72b4ed3dcaab743d45[log] [tgz]
authorHyunsun Moon <hyunsun.moon@gmail.com>Thu Aug 12 01:59:21 2021 -0700
committerHyunsun Moon <hyunsun.moon@gmail.com>Thu Aug 12 01:59:21 2021 -0700
tree73fef9f0c79e2bab55e09012eae8f93ca9e02153
parentc67d8fc14b524e9bd9762fc3858329ef37ac02d0 [diff] [blame]
Update VPN bootstrap

Change-Id: I25ff9abd98d2b253134ee3d3b12e95a4f203de3a

diff --git a/edge_deployment/vpn_bootstrap.rst b/edge_deployment/vpn_bootstrap.rst
index 682c9f8..35af0fd 100644
--- a/edge_deployment/vpn_bootstrap.rst
+++ b/edge_deployment/vpn_bootstrap.rst

@@ -5,7 +5,8 @@
 VPN Bootstrap
 =============
 
-This section guides you through setting up a VPN connection between Aether Central in GCP and ACE.
+This section guides you through setting up a VPN connection between Aether
+Central in GCP and ACE.
 We will be using GitOps based Aether CI/CD system for this and what you need to do is
 create a patch for the new edge in **aether-pod-configs**, where all edge infrastructure
 configuration is stored.
@@ -14,8 +15,9 @@
 directly related to setting up a VPN, but are prerequisites for adding a new edge.
 
 **1. Add deployment jobs**
-Each edge has its own Jenkins jobs that build and apply infrastructure change plans.
-In this step, you'll add those jobs for the new edge.
+Each edge has its own Jenkins jobs that build and execute an infrastructure change plan
+based on the configurations specified in aether-pod-configs.
+In this step, you'll add those jobs to Aether CI/CD system for the new edge.
 
 **2. Update global resource maps**
 aether-pod-configs maintains complete list of clusters, VPN connections, and users
@@ -28,18 +30,18 @@
 and firewall on GCP.
 
 **4. Submit your changes**
-Finally, submit your change to run the deployment job added in the first step.
-
-
-.. attention::
-
-  Make sure that UDP port 500, UDP port 4500, and ESP from **gcpvpn1.infra.aetherproject.net(35.242.47.15)**
-  and **gcpvpn2.infra.aetherproject.net(34.104.68.78)** are allowed in the firewall.
+Finally, submit your aether-pod-configs changes to run the deployment job added
+in the first step.
 
 .. attention::
 
    If you are adding another ACE to an existing VPN connection, go to
-   :ref:`Add ACE to an existing VPN connection <add_ace_to_vpn>`. Verify VPN connection.
+   :ref:`Add ACE to an existing VPN connection <add_ace_to_vpn>`.
+
+.. attention::
+
+  Make sure that UDP port 500, UDP port 4500, and ESP from **gcpvpn1.infra.aetherproject.net(35.242.47.15)**
+  and **gcpvpn2.infra.aetherproject.net(34.104.68.78)** are allowed in the firewall at the edge.
 
 .. _add_deployment_jobs: