Re: Kafka 0.8/VIP/SSL

2014-06-25 Thread Neha Narkhede
One possible issue: the brokers need to talk directly to each other, broker-to-broker, right? And they will try to talk to each other via the VIP endpoints (vip1a, vip2a)? The brokers communicate with each other and they use the advertised.host.name for the same. So you will need to ensure that is

Kafka 0.8/VIP/SSL

2014-06-24 Thread Reiner Stach
I'm looking for advice on running Kafka 0.8 behind VIPs. The goal is to support SSL traffic, with encryption and decryption being performed by back-to-back VIPs at the client and in front of the broker. That is: Kafka client --> vip1a.myco.com:8080 (SSL encrypt) --- WAN ---> VIP 1b (SSL decryp