[Openstack-operators] Keystone Configuration in HA: bind_host

Daneyon Hansen (danehans) danehans at cisco.com
Thu Mar 6 16:11:45 UTC 2014

It's more a question of security rather than HA.  I prefer to specify an IP address so the service is not listening on all IP addresses (

Daneyon Hansen
Software Engineer
Email: danehans at cisco.com
Phone: 303-718-0400

From: Alvise Dorigo <alvise.dorigo at pd.infn.it<mailto:alvise.dorigo at pd.infn.it>>
Date: Thursday, March 6, 2014 1:16 AM
To: "openstack-operators at lists.openstack.org<mailto:openstack-operators at lists.openstack.org>" <openstack-operators at lists.openstack.org<mailto:openstack-operators at lists.openstack.org>>
Subject: [Openstack-operators] Keystone Configuration in HA: bind_host

I've seen around people configuring, for an HA OpenStack installation, for Keystone (and for Glance too) the bind_host variable to local management IP address (which is NOT the Virtual IP of the HA cluster), and other people configuring to

Which is actually correct (and why?)



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-operators/attachments/20140306/777e0fd9/attachment.html>

More information about the OpenStack-operators mailing list