kafka-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Akshay Das <aks...@fivetran.com.INVALID>
Subject Re: Kafka SSH Tunnel Connection without editing hostfile
Date Fri, 13 Sep 2019 05:41:17 GMT
We cannot use external endpoints because of security reasons.
Is there an option to tell zookeeper/broker not to send broker host detail
metadata to its clients?

On Thu, Sep 12, 2019 at 3:05 PM M. Manna <manmedia@gmail.com> wrote:

> Have you tried using EXTERNAL endpoints for your Kafka broker to separate
> TLS from internal traffic? Also, have you checked zk admin whether the
> broker metadata is exposing your TLS endpoints to clients ?
>
>
> On Thu, 12 Sep 2019 at 10:23, Akshay Das <akshay@fivetran.com.invalid>
> wrote:
>
> > Hi Team,
> >
> > I'm trying to consume from a kafka cluster using java client, but the
> kafka
> > server can only be accessed via jumphost/ssh tunnel. But even after
> > creating ssh tunnel we are not able to read because once conusmer fetches
> > metadata it uses original hosts to connect to broker. Is it possible to
> > stop this behaviour?
> >
> > Thanks,
> > Akshay Das
> >
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message