Skip to content

Commit eccae36

Browse files
add mtls note 4.8 (#9397)
* adding mtls note * Update jekyll/_cci2/server/latest/installation/hardening-your-cluster.adoc Co-authored-by: Rosie Yohannan <rosie@circleci.com> --------- Co-authored-by: Rosie Yohannan <rosie@circleci.com>
1 parent d1f8fd4 commit eccae36

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

jekyll/_cci2/server/latest/installation/hardening-your-cluster.adoc

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -26,6 +26,8 @@ NOTE: An nginx reverse proxy is placed in front of link:https://github.com/Kong/
2626

2727
CAUTION: When using Amazon Certificate Manager (ACM), the name of the nginx service will be `circleci-proxy-acm` instead of `circleci-proxy`. If you have switched from some other method of handling your TLS certificates to using ACM, this change will recreate the load balancer and you will have to reroute your associated DNS records for your `<domain>` and `app.<domain>`.
2828

29+
CAUTION: When using Nomad, clients and servers should be configured to use MTLS for secure communication.
30+
2931
[#network-traffic]
3032
== Network traffic
3133
This section explains the minimum requirements for a server installation to work. Depending on your workloads, you might need to add additional rules to egress for Nomad clients and VMs. As nomenclature between cloud providers differs, you will probably need to implement these rules using firewall rules and/or security groups.

0 commit comments

Comments
 (0)