Preliminary Commit to secure communication between Registrator and Consul
-- This is just a prep work for :
https://jira.opencord.org/browse/VOL-155,
& https://jira.opencord.org/browse/VOL-154.
Consul & Registrator - We just have to package the PKI files and Enable TLS.
-- Consul Start-Up Logs
======================
ssl.josn
=============
{
"ca_file": "/consul/config/voltha-CA-template.pem",
"cert_file": "/consul/config/voltha-cert-template.crt",
"key_file": "/consul/config/voltha-pvt-template.key",
"verify_incoming": true,
"verify_outgoing": true
}
Consul Start-up logs..
==========================
==> Starting Consul agent...
==> Consul agent running!
Version: 'v0.8.3'
Node ID: 'fc5cb7d0-106a-fa68-441f-251c5952d16c'
Node name: 'ca6ebcd10ce5'
Datacenter: 'dc1'
Server: true (bootstrap: true)
Client Addr: 0.0.0.0 (HTTP: 8501, HTTPS: 8500, DNS: 8600)
Cluster Addr: 172.18.0.4 (LAN: 8301, WAN: 8302)
Gossip encrypt: true, RPC-TLS: true, TLS-Incoming: true
Atlas: <disabled>
==> Log data will now stream in as it occurs:
======================
ssl.josn
=============
{
"ca_file": "/consul/config/voltha-CA-template.pem",
"cert_file": "/consul/config/voltha-cert-template.crt",
"key_file": "/consul/config/voltha-pvt-template.key",
"verify_incoming": false,
"verify_outgoing": false
}
Consul Start-up logs..
==========================
==> WARNING: LAN keyring exists but -encrypt given, using keyring
==> WARNING: WAN keyring exists but -encrypt given, using keyring
==> WARNING: Bootstrap mode enabled! Do not enable unless necessary
==> Starting Consul agent...
==> Consul agent running!
Version: 'v0.8.3'
Node ID: 'fc5cb7d0-106a-fa68-441f-251c5952d16c'
Node name: 'ca6ebcd10ce5'
Datacenter: 'dc1'
Server: true (bootstrap: true)
Client Addr: 0.0.0.0 (HTTP: 8501, HTTPS: 8500, DNS: 8600)
Cluster Addr: 172.18.0.6 (LAN: 8301, WAN: 8302)
Gossip encrypt: true, RPC-TLS: false, TLS-Incoming: false
Atlas: <disabled>
Change-Id: I8acc9b680019076843f8b9b331c72d7a9b973bb1
diff --git a/consul_config/voltha-cert-template.crt b/consul_config/voltha-cert-template.crt
new file mode 100755
index 0000000..587c562
--- /dev/null
+++ b/consul_config/voltha-cert-template.crt
@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----