nginx permission denied for upstream unix socket

Tim tim at
Mon Aug 25 13:21:44 UTC 2014


I'm running nginx under CentOS 7 as a local proxy for a puppetmaster. I 
get the following error for every agent trying to connect to the master:

"[crit] 8543#0: *13 connect() to 
unix:/var/run/puppet/puppetmaster_puma.sock failed (13: Permission 
denied) while connecting to upstream, client:, server: , 
request: "PUT /production/report/master.puppet.local HTTP/1.1", 
host: "master.puppet.local:8140""

srwxrwxrwx. 1 puppet puppet 0 25. Aug 10:35 

The socket seems to be read/write able for everyone on the system? Why 
throws nginx a "permission denied" massage?

And here is my nginx config:

# define our puma backend
upstream puppetmaster_puma {
         server unix:/var/run/puppet/puppetmaster_puma.sock;

# define our proxy for breaking up SSL
server {
         ssl on;
         ssl_verify_client optional;
         ssl_client_certificate /var/lib/puppet/ssl/ca/ca_crt.pem;
         listen ssl;
         root /var/empty;
         location / {
                 proxy_pass http://puppetmaster_puma;

nginx is running in version 1.6.1,

More information about the nginx mailing list