Hi I am trying to use puppet client/master to set up my servers. I have everything working perfectly on local VM's and now I'm trying to set up my first external server. However I can't get the client on the external server to connect to the master; probably because the master is behind a firewall with only port 22 open. I started looking into SSH tunnels but I can't seem to get it working. Does anyone have any experience with this?
Ssh – Puppet over ssh tunnel
puppetsshssh-tunnel
Related Topic
- Ssh – Many concurrent Cassandra database connections thru SSH tunnel
- SSH Tunnel – Setting Up SSH Tunnel for Remote Desktop via Intermediary Server
- SSH – How to Send Port Number to Server via Reverse SSH Tunnel
- Hiera + Puppet classes
- SSH tunnel to allow ssh traffic: connection always refused
- Ssh – Jmeter distributed testing over ssh tunnel
Best Answer
Your best bet is to file a ticket requesting the following firewall rule be enabled:
The Client<->Master communication is already encrypted over an SSL tunnel. In order to have it go over ssh will require some configuration hackery on both clients and server that will only serve to confuse and confound anyone else that works on your environment. You're better off having off opening the firewall.