Comment 4 for bug 1936776

this is probably a conflict with haproxy, which contains the following configuration:

listen neutron

  bind 192.168.24.210:13696 transparent ssl crt /etc/pki/tls/private/overcloud_endpoint.pem

  bind 192.168.24.210:9696 transparent ssl crt /etc/pki/tls/certs/haproxy/overcloud-haproxy-ctlplane.pem

  mode http

  balance leastconn

  http-request set-header X-Forwarded-Proto https if { ssl_fc }

  http-request set-header X-Forwarded-Proto http if !{ ssl_fc }

  http-request set-header X-Forwarded-Port %[dst_port]

  option httpchk GET /healthcheck

  option httplog

  redirect scheme https code 301 if { hdr(host) -i 192.168.24.210 } !{ ssl_fc }

  rsprep ^Location:\ http://(.*) Location:\ https://\1

  server standalone-0.ctlplane.ooo.test 192.168.24.1:9696 ca-file /etc/ipa/ca.crt check fall 5 inter 2000 rise 2 ssl verify required verifyhost standalone-0.ctlplane.ooo.test