[kolla][HAProxy] Insert custom vip in HAProxy
Folks, We have multi-node openstack running and recently i have deployed ceph storage which is in an internal network and i would like to access ceph dashboard on public. I was thinking if there is a way to insert custom vip configuration in the Kolla HAProxy role then I can expose the 8443 port of the ceph-dashboard to the public network. Is it possible in kolla to add custom config in haproxy for extra vip?
Hi, You can add custom haproxy backend under "/etc/kolla/config/haproxy/services.d" by default. Just add another backend for ceph-dashboard in the folder. As for keepalived, I believe you will be able to override the config and add another VIP in "/etc/kolla/config/keepalived/keepalived.conf". Hope this help! Regards, Gene Kuo ------- Original Message ------- On Monday, February 6th, 2023 at 5:08 AM, Satish Patel <satish.txt@gmail.com> wrote:
Folks,
We have multi-node openstack running and recently i have deployed ceph storage which is in an internal network and i would like to access ceph dashboard on public. I was thinking if there is a way to insert custom vip configuration in the Kolla HAProxy role then I can expose the 8443 port of the ceph-dashboard to the public network.
Is it possible in kolla to add custom config in haproxy for extra vip?
Thanks Gene, It works!! $ cat /etc/kolla/config/haproxy/services.d/ceph-dashboard.cfg frontend ceph_external_front mode http http-request del-header X-Forwarded-Proto option httplog option forwardfor http-request set-header X-Forwarded-Proto https if { ssl_fc } bind XX.XX.XX.XX:8443 ssl crt /etc/haproxy/haproxy.pem default_backend ceph_external_back backend ceph_external_back mode http balance roundrobin server ctrl1 192.168.3.21:8443 ssl verify none frontend ceph_grafana_external_front mode http http-request del-header X-Forwarded-Proto option httplog option forwardfor http-request set-header X-Forwarded-Proto https if { ssl_fc } bind XX.XX.XX.XX:3000 ssl crt /etc/haproxy/haproxy.pem default_backend ceph_grafana_external_back backend ceph_grafana_external_back mode http balance roundrobin server ctrl1 192.168.3.21:3000 ssl verify none On Mon, Feb 6, 2023 at 1:19 PM Gene Kuo <igene@igene.tw> wrote:
Hi,
You can add custom haproxy backend under "/etc/kolla/config/haproxy/services.d" by default. Just add another backend for ceph-dashboard in the folder. As for keepalived, I believe you will be able to override the config and add another VIP in "/etc/kolla/config/keepalived/keepalived.conf".
Hope this help!
Regards, Gene Kuo ------- Original Message ------- On Monday, February 6th, 2023 at 5:08 AM, Satish Patel < satish.txt@gmail.com> wrote:
Folks,
We have multi-node openstack running and recently i have deployed ceph storage which is in an internal network and i would like to access ceph dashboard on public. I was thinking if there is a way to insert custom vip configuration in the Kolla HAProxy role then I can expose the 8443 port of the ceph-dashboard to the public network.
Is it possible in kolla to add custom config in haproxy for extra vip?
participants (2)
-
Gene Kuo
-
Satish Patel