I am using elasticsearch version 7.1.0 and trying to connect three nodes with security function, but I receive the following error.
It works well locally, but it's a problem at kubernetes.
io.netty.handler.codec.DecoderException: io.netty.handler.ssl.NotSslRecordException: not an SSL/TLS record
elasticsearch is running, but after login is successful in kibana, it goes back to login screen.
My security settings are the same with the homepage of elasticsearch.
In kubernetes, the following error occurs.
exception caught on transport layer [Netty4TcpChannel{localAddress=0.0.0.0/0.0.0.0:9300, remoteAddress.......
NotSslRecordException: not an SSL/TLS..............
I tried both of the following settings but it does not work.
What is this remote Address? Is it part of your k8s cluster?
From the 9300 port, it looks like it is another Elasticsearch node trying to connect to this cluster.
Do you perhaps have another ES cluster in your k8s cluster without TLS?
org.elasticsearch.common.netty.handler.ssl.NotSslRecordException: not an SSL/TLS record:
Indicates that there was incoming plaintext traffic on an SSL connection. This typically occurs when a node is not configured to use encrypted communication and tries to connect to nodes that are using encrypted communication. Please verify that all nodes are using the same setting for `xpack.security.transport.ssl.enabled` .
As @TimV said, make sure this remote address is the node in your current cluster.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.