Folks, could you please tell me how to setup a puppetmaster which is behind the NAT?
I have the following setup: * puppetmaster is running in a private network * router of this private network is visible from the WAN(via FQDN) and it port-forwards 8140 to the machine running puppetmaster * puppetmaster should manage both hosts in the private network and ones in the WAN * maching running puppetmaster has a DNS name in the private network(something like puppetmaster.local) which is not FQDN of the router I managed to setup private network hosts to be managed by the puppetmaster and I even managed to sign the WAN hosts. But I can't make WAN hosts retrieve the puppetmaster catalog due to certificates issues. I have the following error: Jun 30 16:20:02 puppetd[22640]: Could not retrieve catalog: Certificates were not trusted: hostname was not match with the server certificate I guess it happens because puppetd clients are expecting the puppetmaster to have FQDN name of the router which is not the case... Is there a workaround for this? Thanks in advance. -- Best regards, Pavel --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
