If Erlang/OTP is compiled from source, it is necessary to ensure that configureįinds OpenSSL and builds the above libraries. The zero dependencyĮrlang RPM for RabbitMQ includes the above modules. Ubuntu this is provided by the erlang-asn1,Įrlang-ssl packages, respectively. (applications) must be installed and functional. TLS is the most recent supported Erlang release.Įarlier versions, even if they are supported, may work for most certificates The recommended Erlang/OTP version to use with In order to support TLS connections, RabbitMQ needs TLS andĬrypto-related modules to be available in the Erlang/OTP Certain parts of this guide would still be relevant for environments This guide will focus on theįirst option. To perform TLS termination of client connections and use plain TCP connections to RabbitMQ nodes.īoth approaches are valid and have pros and cons. Use a proxy or load balancer (such as HAproxy).Configure RabbitMQ to handle TLS connections.Common Approaches to TLS for client Connections with RabbitMQįor client connections, there are two common approaches: To configure TLS on Kubernetes using the RabbitMQ Cluster Operator, see the guide for Configuring TLS.įor an overview of common TLS troubleshooting techniques, see Troubleshooting TLS-related issuesĪnd Troubleshooting Networking. HTTP API, inter-node and CLI tool traffic can be configured TLS can be enabled for all protocols supported by RabbitMQ, not just AMQP 0-9-1,
It tries to explain the basics of TLS but not, however, a primer on TLS, encryption, public Key Infrastructure and related topics, so the concepts are covered very briefly.Ī number of beginner-oriented primers are available elsewhere on the Web:
This includes client connections and popular plugins, where applicable,
0 kommentar(er)
