Building Our Own Security for Inter-Node Communication in ES Cluster?


(Tri Nguyen) #1

Hi,

Where and what should I look at and for if I want to build and integrate
security for inter-node communication in an ES cluster?

The security best practices and security plugins, except for Shield, seem
to address only client access to ES.

What should I do if I want to use SSL/TLS for encrypting inter-node
communication in an ES cluster?

Any pointers or guidance would be appreciated.

Regards

Tri M. Nguyen

--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/dfe9ce12-20cc-460b-afae-463602d090c3%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.


(Robert Blankenship) #2

Hey there @Tri_Nguyen , did you ever get an answer to this question?


(Tri Nguyen) #3

Hi Robert,

No, I never received an answer for this question.
I was trying to use Hendrik's Elasticsearch Security plugin.
However, that project was halted and I moved to another job, which did not allow me to further use Elastic Stack.
I am back in the Elastic user community now with yet another employer, which does allow me to spend time to investigate and show ROI on Elastic.


#4

You can check Search Guard SSL. It adds SSL support for transfer layer so nodes are communicating over SSL.


(system) #5