Hello everybody,
I’d like to allow access to the web ui / API only to a specific IP.
My foreman-installation is based on Debian 10.
If I do this:
iptables -N https
iptables -A https --src 1.2.3.4 -j ACCEPT
iptables -A https -j DROP
iptables -I INPUT -m tcp -p tcp --dport 443 -j https
The web ui is blocked as expected, but although puppet agent --test
works on the remote hosts, all hosts are showing “out of sync” after 1 hour.