forked from Deuxfleurs/nixcfg
Fix access to consul for non-server nodes
This commit is contained in:
parent
fe1f261738
commit
a0c8280c02
2 changed files with 2 additions and 2 deletions
2
gen_pki
2
gen_pki
|
@ -59,7 +59,7 @@ subjectAltName = @alt_names
|
||||||
[alt_names]
|
[alt_names]
|
||||||
DNS.1 = server.$CLUSTER.$APP
|
DNS.1 = server.$CLUSTER.$APP
|
||||||
DNS.2 = client.$CLUSTER.$APP
|
DNS.2 = client.$CLUSTER.$APP
|
||||||
DNS.3 = $APP.service.$CLUSTER.$APP
|
DNS.3 = $APP.service.$CLUSTER.consul
|
||||||
DNS.4 = localhost
|
DNS.4 = localhost
|
||||||
DNS.5 = 127.0.0.1
|
DNS.5 = 127.0.0.1
|
||||||
EOF
|
EOF
|
||||||
|
|
|
@ -251,7 +251,7 @@ in
|
||||||
serf = "${cfg.cluster_ip}";
|
serf = "${cfg.cluster_ip}";
|
||||||
};
|
};
|
||||||
consul = {
|
consul = {
|
||||||
address = "localhost:8501";
|
address = "consul.service.prod.consul:8501";
|
||||||
ca_file = "/var/lib/nomad/pki/consul2022.crt";
|
ca_file = "/var/lib/nomad/pki/consul2022.crt";
|
||||||
cert_file = "/var/lib/nomad/pki/consul2022-client.crt";
|
cert_file = "/var/lib/nomad/pki/consul2022-client.crt";
|
||||||
key_file = "/var/lib/nomad/pki/consul2022-client.key";
|
key_file = "/var/lib/nomad/pki/consul2022-client.key";
|
||||||
|
|
Loading…
Reference in a new issue