Skip to content

PuppetDB + NginX proxy with SSL + auth

On PuppetDB server:

server {
        server_name puppetdb.example.com;
        listen 8082;
        ssl on;
        ssl_certificate      /etc/puppetdb/ssl/public.pem;
        ssl_certificate_key  /etc/puppetdb/ssl/private.pem;
        ssl_client_certificate /etc/puppetdb/ssl/ca.pem;
        ssl_verify_client on;
        ssl_ciphers SSLv2:-LOW:-EXPORT:RC4+RSA;
        ssl_session_timeout 5m;
        location / {
                proxy_pass        http://localhost:8080;
                proxy_set_header Host      $host;
                proxy_set_header  X-Real-IP  $remote_addr;
        }
}

On Puppet server:

[main]
server = puppetdb.example.com
port = 8082

 

Leave a Reply

Your email address will not be published. Required fields are marked *

π