diff options
author | Alex Auvolat <alex@adnab.me> | 2024-01-22 23:21:12 +0100 |
---|---|---|
committer | Alex Auvolat <alex@adnab.me> | 2024-01-22 23:21:12 +0100 |
commit | e89d1c82bb6830c1f80155b609187587b1b45325 (patch) | |
tree | c4eecaa3df65ed8821ddd6738b7fb146e85a9241 | |
parent | 27242fbf70758c9e10cc83e723dfaf9832404674 (diff) | |
download | nixcfg-e89d1c82bb6830c1f80155b609187587b1b45325.tar.gz nixcfg-e89d1c82bb6830c1f80155b609187587b1b45325.zip |
tlsproxy: bind on 127.0.0.1 explicitly to avoid ipv6 issues
-rwxr-xr-x | tlsproxy | 4 |
1 files changed, 2 insertions, 2 deletions
@@ -38,10 +38,10 @@ pass $PREFIX/consul$YEAR.crt > $CERTDIR/consul.crt pass $PREFIX/consul$YEAR-client.crt > $CERTDIR/consul-client.crt pass $PREFIX/consul$YEAR-client.key > $CERTDIR/consul-client.key -socat -dd tcp-listen:4646,reuseaddr,fork,bind=localhost openssl:localhost:14646,cert=$CERTDIR/nomad-client.crt,key=$CERTDIR/nomad-client.key,cafile=$CERTDIR/nomad.crt,verify=0 & +socat -dd tcp-listen:4646,reuseaddr,fork,bind=127.0.0.1 openssl:localhost:14646,cert=$CERTDIR/nomad-client.crt,key=$CERTDIR/nomad-client.key,cafile=$CERTDIR/nomad.crt,verify=0 & child1=$! -socat -dd tcp-listen:8500,reuseaddr,fork,bind=localhost openssl:localhost:8501,cert=$CERTDIR/consul-client.crt,key=$CERTDIR/consul-client.key,cafile=$CERTDIR/consul.crt,verify=0 & +socat -dd tcp-listen:8500,reuseaddr,fork,bind=127.0.0.1 openssl:localhost:8501,cert=$CERTDIR/consul-client.crt,key=$CERTDIR/consul-client.key,cafile=$CERTDIR/consul.crt,verify=0 & child2=$! wait "$child1" |