Ask Your Question
1

Load Balance Puppet Masters

asked 2014-12-21 19:15:02 -0500

GeneBean gravatar image

I want to setup Puppet using two masters plus an external CA that also happens to be a Foreman server. I have found loads of docs on how to do this if I terminate SSL at the load balancers but none if I want SSL all the way through. I want to do this using F5 load balancers in my production environment and something like haproxy in my test environments that are built via Vagrant. Can anyone help me with this?

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2014-12-22 06:59:02 -0500

Have you read the puppetlabs multi master documentation? They also describe the proxy pass directive to be set to forward requests from any of the catalog/file serving masters to the ca. No need to do this on the Loadbalancer. https://docs.puppetlabs.com/guides/sc...multiplemasters.html#option-2-proxy-certificate-traffic

edit flag offensive delete link more

Comments

I have. I deal with certs via the ca_server setting in puppet.conf It doesn't go into any of the info needed for setting up the balancer... it just says you can do it. I have already set my master to have dns_alt_names too

GeneBean gravatar imageGeneBean ( 2014-12-24 21:40:35 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2014-12-21 19:15:02 -0500

Seen: 421 times

Last updated: Dec 22 '14