Or set syndic with another master, that is listening on external ip only?
On 04/13/2012 05:16 PM, Thomas S Hatch wrote: > Lemme look into this, there should be a way to do this cleanly. But for now > I would just bind it to the default, 0.0.0.0 - or all interfaces > > On Fri, Apr 13, 2012 at 6:18 AM, Jeff Schroeder > <jeffsc...@computer.org>wrote: > >> On Fri, Apr 13, 2012 at 12:13 AM, Zheng Liu <huo...@gmail.com> wrote: >>> I have a salt master with 30+ minions set up in one local network. The >>> master is bound to the local ip. Now I need to setup a few additional >>> servers in a separate LAN. I would like to share the master. However, I >>> can't use wild card '*' in the master config, for the interface binding. >> I >>> have to change the binding to external ip, restart the master to server >> the >>> external minion. Is there way that I can have both local and external >>> minions co-exist? Like allowing the master to listen on multiple >> interfaces? >> >> Why don't you let it listen on 0.0.0.0 (the default) and block access >> from source networks you don't want using iptables? Salt isn't >> currently capable of listening on multiple interfaces unless you use >> 0.0.0.0. >> >> -- >> Jeff Schroeder >> >> Don't drink and derive, alcohol and analysis don't mix. >> http://www.digitalprognosis.com >> >