charms.openstack

Bug #1745389
Comment #5

Comment 5 for bug 1745389

Revision history for this message

Tytus Kurek (tkurek) wrote on 2018-01-25: Re: haproxy context doesn't consider bindings when using clustered designate application from the "master" branch

Output from designate unit in the second environment:

# cat /etc/apache2/sites-enabled/openstack_https_frontend.conf
Listen 8991
<VirtualHost 100.107.2.78:8991>
    ServerName 100.86.0.11
    SSLEngine on
    SSLProtocol +TLSv1 +TLSv1.1 +TLSv1.2
    SSLCipherSuite HIGH:!RC4:!MD5:!aNULL:!eNULL:!EXP:!LOW:!MEDIUM
    SSLCertificateFile /etc/apache2/ssl/designate/cert_100.86.0.11
    SSLCertificateKeyFile /etc/apache2/ssl/designate/key_100.86.0.11
    ProxyPass / http://localhost:8981/
    ProxyPassReverse / http://localhost:8981/
    ProxyPreserveHost on
    RequestHeader set X-Forwarded-Proto "https"
</VirtualHost>
<VirtualHost 100.86.0.205:8991>
    ServerName 100.86.0.11
    SSLEngine on
    SSLProtocol +TLSv1 +TLSv1.1 +TLSv1.2
    SSLCipherSuite HIGH:!RC4:!MD5:!aNULL:!eNULL:!EXP:!LOW:!MEDIUM
    SSLCertificateFile /etc/apache2/ssl/designate/cert_100.86.0.11
    SSLCertificateKeyFile /etc/apache2/ssl/designate/key_100.86.0.11
    ProxyPass / http://localhost:8981/
    ProxyPassReverse / http://localhost:8981/
    ProxyPreserveHost on
    RequestHeader set X-Forwarded-Proto "https"
</VirtualHost>
<Proxy *>
    Order deny,allow
    Allow from all
</Proxy>
<Location />
    Order allow,deny
    Allow from all
</Location>