Project

General

Profile

Actions
Copy link

Feature #7745

closed

Client systems should be able to route all RHSM traffic through a Capsule.

Added by dustin tsang about 10 years ago. Updated over 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
dustin tsang
Category:
Foreman Proxy Content
Target version:
Katello 2.2
Difficulty:
Triaged:
Yes
Bugzilla link:
Pull request:
https://github.com/Katello/katello/pull/4949
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Related issues 1 (1 open0 closed)

Blocks Katello - Tracker #8172: Isolate Client Communication through a CapsuleNew

Actions
Actions
Copy link
 #1

Updated by Eric Helms about 10 years ago

  • Tracker changed from Bug to Feature
  • Subject changed from Access rhsm through a ReverseProxy on Capsules to Client systems should be able to route all RHSM traffic through a Capsule.
  • Translation missing: en.field_release set to 14
  • Triaged changed from No to Yes
Actions
Copy link
 #2

Updated by Eric Helms about 10 years ago

  • Blocks Tracker #8172: Isolate Client Communication through a Capsule added
Actions
Copy link
 #3

Updated by dustin tsang about 10 years ago

https://github.com/Katello/puppet-capsule/pull/22 -- install reverse proxy on capsule
https://github.com/Katello/puppet-katello/pull/38 -- allow cert header pass through katello apache

Actions
Copy link
 #4

Updated by dustin tsang about 10 years ago

test scenario

1) install katello like normal
2) generate certs for capsule and copy to capsule like normal
3) using the capsule installer,
bin/capsule-installer --parent-fqdn "kdev.usersys.redhat.com"\
--register-in-foreman "true"\
--foreman-oauth-key "xxxx"\
--foreman-oauth-secret "xxx"\
--pulp-oauth-secret "xx"\
--certs-tar "~/mycerts.tar"\
--puppet "true"\
--puppetca "true"\
—pulp "true" --parent-reverse-proxy "true" --parent-reverse-proxy-port 8443

4) on a new host, rpm -Uvh http://katello/pub/katello-ca-consumer-latest.noarch.rpm

5) update your /etc/rhsm/rhsm.conf

on a separate host with subscription-manager,
[server]
hostname = capsule-hostname
prefix = /rhsm
port = 8443

6) subscription-manager register --organization Default_Organization

Actions
Copy link
 #5

Updated by Eric Helms almost 10 years ago

  • Translation missing: en.field_release changed from 14 to 23
Actions
Copy link
 #6

Updated by The Foreman Bot almost 10 years ago

  • Status changed from New to Ready For Testing
  • Target version set to 63
  • Pull request https://github.com/Katello/katello/pull/4949 added
  • Pull request deleted ()
Actions
Copy link
 #7

Updated by Eric Helms almost 10 years ago

  • Target version changed from 63 to 66
Actions
Copy link
 #8

Updated by Anonymous almost 10 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions
Copy link

Also available in: Atom PDF