[rabbitmq-discuss] TCP vs. SSL configuration

• Previous message: [rabbitmq-discuss] TCP vs. SSL configuration
• Next message: [rabbitmq-discuss] TCP vs. SSL configuration
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

So if TCP is disabled via the section you referenced in rabbitmq.config,
then what goes in the environment variable RABBITMQ_NODE_PORT?  Is that
value simply ignored if TCP is disabled (so you can set the environment
variable to anything, or just leave it unset)?  Do you set it to the SSL
port?  Something else?

And if you have a set of N nodes in a cluster on a single machine, do you
still need to have a different value of RABBITMQ_NODE_PORT for each
instance?  (Do you just make it match the SSL port each node is using?)

Thanks,
Tim


On Thu, Jun 27, 2013 at 5:31 AM, Simon MacMullen <simon at rabbitmq.com> wrote:

> You can't disable the TCP listener via environment variables and hence
> rabbitmq-env.conf. But you can via the main configuration file - see
> tcp_listeners under http://www.rabbitmq.com/**configure.html#config-items<http://www.rabbitmq.com/configure.html#config-items>- just set it to [].
>
> Cheers, Simon
>
> On 26/06/13 17:50, tbain98 at gmail.com wrote:
>
>> I'm new to RabbitMQ, and am a bit confused by some of the documentation
>> surrounding TCP vs. SSL configuration.
>>
>> I'm trying to set up a broker for which only authenticated SSL-based
>> connections will be allowed, so I do not want the TCP listener running.
>> That seems easy to do for rabbitmq-env.conf, but the documentation
>> <http://www.rabbitmq.com/**configure.html<http://www.rabbitmq.com/configure.html>>
>> seems to indicate that
>> RABBITMQ_NODE_PORT is a required property (or at least, it seems to be
>> required if you're setting up clustering on a single machine
>> <http://www.rabbitmq.com/**clustering.html#single-machine<http://www.rabbitmq.com/clustering.html#single-machine>
>> **>, which I'm not
>> doing yet but want the option to do in the future) and that if it's not
>> provided, a default will be used.
>>
>> Is it possible to configure an SSL-only broker (just one node on a
>> single machine), and if so, what if anything do you set
>> RABBITMQ_NODE_PORT to?  (Just "RABBITMQ_NODE_PORT=" ?)  And (separate
>> question) is it possible to configure a single-machine cluster with
>> multiple nodes, where each node is SSL-only, and again, what do you set
>> RABBITMQ_NODE_PORT to for each node?
>>
>> Thanks for the help...
>> Tim
>>
>>
>> ______________________________**_________________
>> rabbitmq-discuss mailing list
>> rabbitmq-discuss at lists.**rabbitmq.com<rabbitmq-discuss at lists.rabbitmq.com>
>> https://lists.rabbitmq.com/**cgi-bin/mailman/listinfo/**rabbitmq-discuss<https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss>
>>
>>
>
> --
> Simon MacMullen
> RabbitMQ, Pivotal
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20130627/59bb7a03/attachment.htm>

• Previous message: [rabbitmq-discuss] TCP vs. SSL configuration
• Next message: [rabbitmq-discuss] TCP vs. SSL configuration
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]