Gitiles
Code Review Sign In
gerrit.opencord.org / voltha / 87b2329e3725a684d7a5f69934467ebf98b73a24^! / . / consul_config / ssl.json
commit87b2329e3725a684d7a5f69934467ebf98b73a24[log] [tgz]
authorschowdhury <sisir.chowdhury@radisys.com>Thu Jun 01 07:14:11 2017 -0700
committerSergio Slobodrian <sslobodr@ciena.com>Tue Jun 06 15:40:18 2017 -0700
treea6d0d6d54ff2353deff6a24827f2709daaccda68
parent1b285e892f0c3e36bffd5547f7597e8e9c212bed [diff] [blame]
Preliminary Commit to secure communication between Registrator and Consul

 -- This is just a prep work for :
        https://jira.opencord.org/browse/VOL-155,
      & https://jira.opencord.org/browse/VOL-154.
    Consul & Registrator - We just have to package the PKI files and Enable TLS.

 -- Consul Start-Up Logs
 ======================
ssl.josn
=============
{
  "ca_file": "/consul/config/voltha-CA-template.pem",
  "cert_file": "/consul/config/voltha-cert-template.crt",
  "key_file": "/consul/config/voltha-pvt-template.key",
  "verify_incoming": true,
  "verify_outgoing": true
}
Consul Start-up logs..
==========================

==> Starting Consul agent...
==> Consul agent running!
           Version: 'v0.8.3'
           Node ID: 'fc5cb7d0-106a-fa68-441f-251c5952d16c'
         Node name: 'ca6ebcd10ce5'
        Datacenter: 'dc1'
            Server: true (bootstrap: true)
       Client Addr: 0.0.0.0 (HTTP: 8501, HTTPS: 8500, DNS: 8600)
      Cluster Addr: 172.18.0.4 (LAN: 8301, WAN: 8302)
    Gossip encrypt: true, RPC-TLS: true, TLS-Incoming: true
             Atlas: <disabled>

==> Log data will now stream in as it occurs:
======================

ssl.josn
=============
{
  "ca_file": "/consul/config/voltha-CA-template.pem",
  "cert_file": "/consul/config/voltha-cert-template.crt",
  "key_file": "/consul/config/voltha-pvt-template.key",
  "verify_incoming": false,
  "verify_outgoing": false
}
Consul Start-up logs..
==========================

==> WARNING: LAN keyring exists but -encrypt given, using keyring
==> WARNING: WAN keyring exists but -encrypt given, using keyring
==> WARNING: Bootstrap mode enabled! Do not enable unless necessary
==> Starting Consul agent...
==> Consul agent running!
           Version: 'v0.8.3'
           Node ID: 'fc5cb7d0-106a-fa68-441f-251c5952d16c'
         Node name: 'ca6ebcd10ce5'
        Datacenter: 'dc1'
            Server: true (bootstrap: true)
       Client Addr: 0.0.0.0 (HTTP: 8501, HTTPS: 8500, DNS: 8600)
      Cluster Addr: 172.18.0.6 (LAN: 8301, WAN: 8302)
    Gossip encrypt: true, RPC-TLS: false, TLS-Incoming: false
             Atlas: <disabled>

Change-Id: I8acc9b680019076843f8b9b331c72d7a9b973bb1

diff --git a/consul_config/ssl.json b/consul_config/ssl.json
new file mode 100755
index 0000000..f37128e
--- /dev/null
+++ b/consul_config/ssl.json

@@ -0,0 +1,7 @@
+{
+  "ca_file": "/consul/config/voltha-CA-template.pem",
+  "cert_file": "/consul/config/voltha-cert-template.crt",
+  "key_file": "/consul/config/voltha-pvt-template.key",
+  "verify_incoming": true,
+  "verify_outgoing": true
+}