I’ve read through the connectivity section in the docs and all it says is that the rack controllers need to be able to communicate with the region controller(s). It doesn’t mention anything about what connectivity the region controllers need (if any) back to the racks.
Refer to diagram below.
Behind City A’s Internet Address I have an internal network segment. All outbound traffic from this segment gets NAT’d and hidden behind City A’s ‘Internet address’.
I can get out to the internet and to the region controller from here no problem.
I’ve allowed all traffic from City A to the region controller on the firewall in City B.
I’ve successfully registered and synced the rack controller using:
maas-rack register --url http://maas.some.where:5240/MAAS --secret supers3cr3tk3ylol
What I’m seeing though is when a new machine goes through enlistment, it sits in commissioning state and doesn’t transition to new on the MAAS dashboard even though it’s already turned off