Firewalld blocking: Error enabling audit device Put "" EOF

dj-wasabi1 · March 7, 2023, 10:03am

Hi,

I have a Docker image running version 1.13.0 (also happened with 1.12.2) and use the ‘host’ network_mode, this is to make use of the AWS Instance profile without any problems. initialisation goes fine, but when i want to enable audit I get an error.

Audit enable command (that fails):

vault audit enable file file_path=/vault/logs/audit.log mode="0640"

But I get an error:

"Error enabling audit device: Put "https://FQDN:8200/v1/sys/audit/file": EOF"

When I disable FirewallD on the node, it goes fine. I have executed:

firewall-cmd --zone=public --permanent --add-port=8200/tcp
firewall-cmd --zone=public --permanent --add-port=8201/tcp

But that isn’t helping me. Any idea what I am missing that i need to do in firewalld?

dj-wasabi1 · March 7, 2023, 11:50am

Sorry, bad knowledge about firewalld. I needed to execute:

firewall-cmd --reload

afterwards. Now it properly works fine.

Topic		Replies	Views
Vault Audit Log doesn't attempt to use the VAULT_ADDRESS varible Vault	3	829	December 4, 2020
How to enable audit logs in vault cloud? Vault	3	398	September 30, 2021
Permission denied when i try to vault audit enable file Vault	21	11805	May 17, 2022
Can you enable audit through config file? Vault	1	634	April 3, 2023
Cannot disable audit logging after adding a socket device without a port number Vault	0	320	December 19, 2020

Firewalld blocking: Error enabling audit device Put "" EOF

Related topics