Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

etcdv2 migration http -> https #8353

Closed
gambol99 opened this issue Aug 2, 2017 · 1 comment
Closed

etcdv2 migration http -> https #8353

gambol99 opened this issue Aug 2, 2017 · 1 comment

Comments

@gambol99
Copy link

gambol99 commented Aug 2, 2017

Hiya

Version: v2.2.1 (I know!) found here
Image: gcr.io/google_containers/etcd

This is less of a bug and more reaching out for advice. I recently raised a PR on kops to provide a long required feature of TLS on the etcd cluster #PR3114. While whipping up a new cluster isn't an issue I would need to provide a migration path of those already using http peers. I attempted to update a previous cluster and while the advertised client urls are updated to https, the peer url remain on http. I was able to migrate manually via doing a 'member update' and changing the peer url, but obviously I like this to be seamless. Any advice?
@gyuho
Copy link
Contributor

gyuho commented Aug 2, 2017

We have https migration doc here https://coreos.com/etcd/docs/latest/etcd-live-http-to-https-migration.html.

But strongly recommend to upgrade to v3 first, since we have fixed a lot of TLS issues, and v2 TLS still has some edge cases we haven't figured out. v2 will be deprecated soon.

@gyuho gyuho closed this as completed Aug 3, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@gambol99 @gyuho