Configure HTTPS without xpack and nginx or any other external modules


(Mohan Kumar U) #1

I am trying to configure https for elasticsearch without any third party modules or reverse proxies.
Any idea how to approach it.


(Christian Dahlqvist) #3

I do not think that is possible.


(Mohan Kumar U) #4

Can you justify why it is not possible.
There has to be some way


(Christian Dahlqvist) #5

Open source Elasticsearch does not support this, which is why plugins have been developed to add this functionality.


(Mohan Kumar U) #6

is it possible to write a custom plugin for providing https .


(Christian Dahlqvist) #7

Yes. That has been done. Why would you choose to create and maintain your own rather than using something that already exists though?


(David Pilato) #9

Good luck.

Note that you will need to maintain it anytime you will have to update elastic stack.
Elasticsearch 6.6 contains that feature out of the box. You can just activate the trial period for 30 days to test it.


(Mohan Kumar U) #12

https://qbox.io/blog/elasticsearch-netty-secure-ssl-tls-implementation
I went through above blog to connfigure ssl,but most of netty functions used here are not supported now.
Can somebody provide the updated steps of that blog.


(Mohan Kumar U) #13

Hi @Christian_Dahlqvist,
I configured ssl for elasticsearch without any plugins by modifying netty4servertransport module.


(Christian Dahlqvist) #14

Did you create this as a plugin or are you now running a custom build?


(Mohan Kumar U) #15

No i did not create any plugins,i just modified initchannel of httpchannelhandler.


(system) closed #16

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.