-
-
Save anonymous/76182b847e1942046c84 to your computer and use it in GitHub Desktop.
Puppetmaster and Puppet dashboard virtual hosts configuration
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
LoadModule passenger_module /usr/lib/ruby/gems/1.8/gems/passenger-4.0.55/buildout/apache2/mod_passenger.so | |
PassengerRoot /usr/lib/ruby/gems/1.8/gems/passenger-4.0.55 | |
PassengerDefaultRuby /usr/bin/ruby | |
# you may want to tune these settings | |
PassengerHighPerformance on | |
PassengerMaxPoolSize 12 | |
PassengerPoolIdleTime 1500 | |
# PassengerMaxRequests 1000 | |
PassengerStatThrottleRate 120 | |
#PassengerAppRoot /usr/share/puppet-dashboard | |
Listen 80 | |
<VirtualHost *:80> | |
ServerName puppet01.domain.com | |
RackBaseURI / | |
DocumentRoot /usr/share/puppet-dashboard/public/ | |
<Directory /usr/share/puppet-dashboard/public/> | |
Options None | |
AllowOverride All | |
Order allow,deny | |
allow from all | |
</Directory> | |
ErrorLog /var/log/httpd/puppet01.domain.com_error.log | |
LogLevel warn | |
CustomLog /var/log/httpd/puppet01.domain.com_access.log combined | |
ServerSignature On | |
</VirtualHost> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
LoadModule passenger_module /usr/lib/ruby/gems/1.8/gems/passenger-4.0.55/buildout/apache2/mod_passenger.so | |
PassengerRoot /usr/lib/ruby/gems/1.8/gems/passenger-4.0.55 | |
PassengerDefaultRuby /usr/bin/ruby | |
PassengerHighPerformance on | |
PassengerMaxPoolSize 12 | |
PassengerPoolIdleTime 1500 | |
PassengerMaxRequests 1000 | |
PassengerStatThrottleRate 120 | |
PassengerAppRoot /usr/share/puppet/rack/puppetmasterd | |
Listen 8140 | |
<VirtualHost *:8140> | |
SSLEngine on | |
SSLProtocol ALL -SSLv2 -SSLv3 | |
SSLCipherSuite EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA | |
SSLHonorCipherOrder on | |
SSLCertificateFile /var/lib/puppet/ssl/certs/puppet01.domain.com.pem | |
SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/puppet01.domain.com.pem | |
SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem | |
SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem | |
SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem | |
SSLVerifyClient optional | |
SSLVerifyDepth 1 | |
SSLOptions +StdEnvVars +ExportCertData | |
RequestHeader unset X-Forwarded-For | |
RequestHeader set X-SSL-Subject %{SSL_CLIENT_S_DN}e | |
RequestHeader set X-Client-DN %{SSL_CLIENT_S_DN}e | |
RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e | |
DocumentRoot /usr/share/puppet/rack/puppetmasterd/public/ | |
RackBaseURI / | |
<Directory /usr/share/puppet/rack/puppetmasterd/> | |
Options None | |
AllowOverride None | |
Order allow,deny | |
allow from all | |
</Directory> | |
</VirtualHost> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment