We enabled security on our cluster and are able to connect to elastic and to kibana from the nodes inside the cluster, but when we attempt to connect from an 'outside' system the connection is reset by the server after being presented the TLS client hello. Have confirmed that all network connectivity in the middle is fine, ufw is not running on the hosts, and running tcpdump on the node shows the connection being received and then reset. Is there some additional xpack or kibana configuration we're missing? Everything seems to be running smoothly and error free inside the cluster, we just can't connect from outside. Not even getting to the point where it says the connection is unauthorized, it just flat resets it once it receives the client hello.
Try curl -k -u "userid" -XGET "https://your.host:9200"
If that works, security -k nullifies is the problem.
Using -k doesn't make a difference. The connection is reset by the server after the client hello, so the client doesn't even have a chance to reject the connection based on whether it trusts the certificate or not.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.