Open jacekjaros opened 4 years ago
Hi,
Good news - i was able to find root cause of my issue. Cassandra is passing to client (Vault) list of servers which contain private ip addresses which are not accessable form Vault cluster.
I'm aware that this is Cassandra miss configuration however Vault don't allow me to use use walk around provided by gocql
driver which is set DisableInitialHostLookup
option to true
.
Is there option to implement this parameter in Vault configuration?
Best regards, Jacek
Hi,
Looks like this option is very helpful on a lot Vault + Cassandra deployments (especially in AWS). Created PR for that https://github.com/hashicorp/vault/pull/9733
-- kilocaleb
Describe the bug Vault in random moments loose connection to Cassandra which is used as a secrets storage. When this are happen Vault is unable to recover.
To Reproduce Steps to reproduce the behavior:
Expected behavior Vault should recover (reconnect to Cassandra?)
Environment:
vault status
):Version 1.4.2
vault version
):Version 1.4.2
Ubuntu 18.04.4 LTS / x86_64
Vault server configuration file(s):
Additional context Cluster was build on top of 6 nodes. For now we have only one test vault agent which pull single secret so traffic is very low.