Hello, We have a requirement for opening Kafka on WAN where external producers and consumers need to be able to talk to Kafka. I was able to get Zookeeper and Kafka working with two way SSL and SASL for authentication and ACL for authorization.
However, my concern with this approach was opening up Kafka brokers directly on WAN and also doing SSL termination. Is there a proxy solution, where proxies live in front of Kafka brokers, so Kafka brokers are still hidden and proxies take care of SSL? Has anyone in the community have similar use case with Kafka, which is deployed in production? Would love to find out your experience, feedback, or recommendation for this use case. Thanks in advance. PS: We are using AWS.
