As my other topic from last week I have 3 Vault servers and 3 Consul servers in AWS… in a private network only reachable through a Bastion host. (as per Vault best practice)
I am not able to configure a nginx/haproxy on the bastion host to connect to the GUI remotely
on the nginx log on the bastion host I got
2020/10/08 10:55:06 [error] 22300#0: *466 upstream sent no valid HTTP/1.0 header while reading response header from upstream, client: xxx.xxx.xxx.xxx, server: vault_server, request: “GET /ui HTTP/1.1”, upstream: “http://10.139.11.98:8200/ui”, host: “xxx.xxx.xxx.xxx”
On one of the vault server I have
Oct 8 11:57:47 ip-172-31-31-166 vault: 2020-10-08T11:57:47.195Z [INFO ] http: TLS handshake error from 10.139.1.110:42416: tls: first record does not look like a TLS handshake
Not sure if it’s possible to access the GUI or not with this conf.
could be a TLS issues or the nginx conf that is not doing its job?
Any help would be appreciated.