No description, website, or topics provided.
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore
Makefile
README.md
alien.yaml
docker-compose.yml
elasticsearch-1.yml
elasticsearch-2.yml
elasticsearch-3.yml
instances.yaml

README.md

This is a companion repo for the Encrypt the traffic between nodes in your elasticsearch cluster blogpost. Please check the post first.

If you want to follow along with the post, make sure that you have installed docker-compose or docker for mac and GNU Make and unzip tools.

The internal tls playbook

# Generate the certificates
$ make certs-generate

# Run the first node
docker-compose up elasticsearch-1

# Check the cluster configuration
watch -n 1 "curl -s --cacert certificates/ca/ca.crt -u 'elastic:changeme' https://localhost:9200/_cat/nodes"

# Run the second node
docker-compose up elasticsearch-2 

# Notice how it joins the cluster

# Run the third node
docker-compose up elasticsearch-3

# Notice how it is rejected due to its alien certificate