Unable to "knife ssl check" to my chef server

rhugga · May 13, 2016, 10:36pm

I have two centos 7.2’s VM’s running under virtual box. Both VM’s can ping/ssh/rsync/scp to each other w/o issues. I have the NIC’s configured as promiscuous.

I can’t connect to the chef server via web browser using port 80 or 443, however, I have verified nginx is running on those ports. I can load the chef console using localhost from the chef server itself, which is how I generated my client VM’s knife.rb and user.pem files.
knife “ssl check” fails with the following:
$ knife ssl check
Connecting to host canthus:443
ERROR: Errno::EHOSTUNREACH: No route to host - connect(2) for “canthus” port 443

I can ping canthus using both hostname and ip address. I can ssh/rsync as well.

Anyone have any ideas?

rhugga · May 13, 2016, 10:55pm

Nevermind, found my issue. Firewalld was running. First I thought it was a firewall issue but checked for iptables not firewalld. (been in solaris land for several years so not current on latest major red hat releases)

Topic		Replies	Views
Knife ssl check error? Chef Infra (archive)	1	1198	December 31, 2016
Kitchen CI noob question Chef Infra (archive)	14	1516	January 5, 2017
Knife cookbook upload internal server error Chef Infra (archive)	3	904	October 17, 2019
Knife list client: SSL Validation failure connecting to host Chef Infra (archive)	7	9681	April 19, 2016
SSL Validation failure connecting to host while boostrapping Chef Infra (archive)	10	13853	June 25, 2019

Unable to "knife ssl check" to my chef server

Related Topics