Hi,
we have some logs at elasticsearch which shows, some remote IP:port is connecting to our elasticsearch which is non-TLS.
We are not able to find any services on those hosts.
Is there any way I can block all non-TLS requests coming to our cluster on 3 nodes.
We dont want to see those errors anymore, till we find and stop those services.
I can see that you have raised this with support too, so in the interest of not duplicating effort, let's handle this there. If you want, you can add a summary for your resolution afterwards for other folks that might have similar questions.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.