I’d like to allow access to the web ui / API only to a specific IP.
My foreman-installation is based on Debian 10.
If I do this:
iptables -N https iptables -A https --src 188.8.131.52 -j ACCEPT iptables -A https -j DROP iptables -I INPUT -m tcp -p tcp --dport 443 -j https
The web ui is blocked as expected, but although
puppet agent --test works on the remote hosts, all hosts are showing “out of sync” after 1 hour.