Project

General

Profile

Actions
Copy link

Bug #19329

closed

Capsule server have lot issues after upgrade

Added by Mario Gamboa over 7 years ago. Updated about 6 years ago.

Status:
Resolved
Priority:
High
Assignee:
-
Category:
Installer
Target version:
Katello Recycle Bin
Difficulty:
medium
Triaged:
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

After upgrade one of my capsules i found some issues

To upgrade my capsule server i use the following command
foreman-installer --scenario foreman-proxy-content --upgrade --foreman-proxy-content-certs-tar "/root/katelloproxy00.tar" --certs-update-all --foreman-proxy-content-pulp-oauth-secret
"KPS4SwkDqbPNKPRqyCSrnr3bHGcDuCK1" --foreman-proxy-register-in-foreman "false" --certs-regenerate "true" --certs-deploy "true" -v

Because if i use without foreman proxy register parameter fail

This proxy have all this services Templates, Pulp Node, TFTP, DHCP, Puppet, Puppet CA, Logs, Dynflow, and SSH

after upgrade proxy need the following

need to verify

/etc/puppet/foreman.yaml
:url: "https://katellomain.example.com"
in this case the url was pointing to the proxy itself for this reason all the puppet agent fail also the puppet agent in the proxy fail after put the correct server works fine

after that try to provisioning a new machine and katello complains about can't get any ip available and give me 404 error

Checking

/etc/foreman-proxy/settings.yml
:trusted_hosts:
- proxy00.example.com

Found the only trusted server was currently the proxy and is not included the katellomain server in this case just add the katellomain server in trusted hosts

Next in
  1. Endpoint for reverse communication
    :foreman_url: https://proxy00.example.com

Also found the configuration change and was point to the proxy itself again solution replace for the good server

Checking also the dhcp configuration

/etc/foreman-proxy/settings.d/dhcp.yml

  1. Enable DHCP management
  2. Can be true, false, or http/https to enable just one of the protocols
    :enabled: false

the configuration was disable just enabled to working back

and finally all looks is working until the machine is try to register it is fail the issue was on the katello reverse proxy configuration

/etc/httpd/conf.d/28-katello-reverse-proxy.conf
  1. Proxy rules
    ProxyRequests Off
    ProxyPreserveHost Off
    ProxyPass / https://proxy00.example.com/
    ProxyPassReverse / /
    ProxyPassReverse / https://proxy00.example.com/

Also the configuration was change with the update put the proxy instead of the main katello server

after all this i make a restart of all the services

katello-service restart

Now all is ok apparently the upgrade process doesn't respect the configuration and make change to put the proxy itself in all the configurations

Actions
Copy link

Also available in: Atom PDF