Error in taking raft storage snapshots

Hi,

I have my Vault cluster setup using the internal raft storage backend.

At the moment, I also set tls_disable = true and let Nginx handle TLS offloading for the service. So the inbound traffic looks like this:

client --> https://vault.example.com  (Nginx) --> http://vault-node1.example.com:8200 (leader)
                                                  http://vault-node2.example.com:8200 (follower)
                                                  http://vault-node3.example.com:8200 (follower)

This has been working fine except I’m hitting the following error if the raft snapshot save command goes to one of the follower nodes:

❯ vault operator raft snapshot save vault-test.snapshot
Error taking the snapshot: redirect would cause protocol downgrade

I’ve enabled debug logging, but I don’t see any additional logs about this error. Any ideas what may be causing this?

Thanks,
Ming

1 Like