this is probably a conflict with haproxy, which contains the following configuration:
listen neutron
bind 192.168.24.210:13696 transparent ssl crt /etc/pki/tls/private/overcloud_endpoint.pem
bind 192.168.24.210:9696 transparent ssl crt /etc/pki/tls/certs/haproxy/overcloud-haproxy-ctlplane.pem
mode http
balance leastconn
http-request set-header X-Forwarded-Proto https if { ssl_fc }
http-request set-header X-Forwarded-Proto http if !{ ssl_fc }
http-request set-header X-Forwarded-Port %[dst_port]
option httpchk GET /healthcheck
option httplog
redirect scheme https code 301 if { hdr(host) -i 192.168.24.210 } !{ ssl_fc }
rsprep ^Location:\ http://(.*) Location:\ https://\1
server standalone-0.ctlplane.ooo.test 192.168.24.1:9696 ca-file /etc/ipa/ca.crt check fall 5 inter 2000 rise 2 ssl verify required verifyhost standalone-0.ctlplane.ooo.test
this is probably a conflict with haproxy, which contains the following configuration:
listen neutron
bind 192.168. 24.210: 13696 transparent ssl crt /etc/pki/ tls/private/ overcloud_ endpoint. pem
bind 192.168.24.210:9696 transparent ssl crt /etc/pki/ tls/certs/ haproxy/ overcloud- haproxy- ctlplane. pem
mode http
balance leastconn
http-request set-header X-Forwarded-Proto https if { ssl_fc }
http-request set-header X-Forwarded-Proto http if !{ ssl_fc }
http-request set-header X-Forwarded-Port %[dst_port]
option httpchk GET /healthcheck
option httplog
redirect scheme https code 301 if { hdr(host) -i 192.168.24.210 } !{ ssl_fc }
rsprep ^Location:\ http:// (.*) Location:\ https://\1
server standalone- 0.ctlplane. ooo.test 192.168.24.1:9696 ca-file /etc/ipa/ca.crt check fall 5 inter 2000 rise 2 ssl verify required verifyhost standalone- 0.ctlplane. ooo.test