Ask Your Question
0

bind puppet agent to specific address

asked 2017-03-06 09:14:57 -0500

Hi,

i have a firewall with some ipsec openswan tunnels. the puppet master is on a tunneled network. it is reachable over a specific interface, which isn't the default one. when i use fping with source ip i can contact the puppet master.

so is there a a way to the the puppet agent should use a specific interface of like 192.168.0.2 to reach the puppet master? bindaddress does not work. or how is this supposed to work? the agent is not listening on any port, or is he?

in ipsec there is no device for the tunnel, so i can't do a route or so.

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2017-03-08 07:10:06 -0500

natemccurdy gravatar image

The Puppet Agent does not listen on any particular interface. In fact it doesn't listen at all. The agent initiates the connection to the Puppet master, so it'll use whatever route your OS provides to the Master's IP address.

This is an OS level network route, not anything in Puppet that you can change.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

Stats

Asked: 2017-03-06 09:14:57 -0500

Seen: 37 times

Last updated: Mar 08