Creation of Tunnel between two(2) RabbitMQ systems
73 views
Skip to first unread message
Naseer Pasha R
Jun 26, 2023, 4:41:02 AM6/26/23
to rabbitmq-users
Dear RabbitMQ Team,
Operation System : Windows
We use WINDOWS with RabbitMQ service.
Please let me know that :
Is possible to create tunnel between two RabbitMQ systems so that all the Shovel Connections between these two systems occurs/connects via tunnel only.
Operation System : Windows
We use WINDOWS with RabbitMQ service.
Please let me know that :
Is possible to create tunnel between two RabbitMQ systems so that all the Shovel Connections between these two systems occurs/connects via tunnel only.
Thanking You,
Naseer Pasha R
Naseer Pasha R
Naseer Pasha R
Jul 18, 2023, 1:51:07 AM7/18/23
to rabbitmq-users
Dear Team and Luke,
Sorry to reply.
Please let us know the above related query or any Ideas on this. We are waiting for your response.
Sorry to reply.
Please let us know the above related query or any Ideas on this. We are waiting for your response.
Michal Kuratczyk
Jul 18, 2023, 2:06:58 AM7/18/23
to rabbitm...@googlegroups.com
This is a networking question, not a RabbitMQ question.
RabbitMQ is oblivious to how the underlying network is configured - it just uses an address and port and tries to establish a TCP connection.
So yes, it's possible.
--
You received this message because you are subscribed to the Google Groups "rabbitmq-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to rabbitmq-user...@googlegroups.com.
To view this discussion on the web, visit https://groups.google.com/d/msgid/rabbitmq-users/fd2fe41d-7a61-47e2-9689-1746089fd4fbn%40googlegroups.com.
Michał
RabbitMQ teamNaseer Pasha R
Jul 19, 2023, 1:02:02 AM7/19/23
to rabbitmq-users
Dear Michal,
Thanks for the information. But We have detailed the query as below :
We have shovel connections between 2 systems A and B. We observe that the destination ports of these shovels are 5671 which is fixed TLS port. But the source ports of these shovel connections are random ports. As part of security, we want to restrict only a certain range of ports for shovels. Also this is needed at customer end to open the firewall for those specific port range.
Hence Please let us know that :
Is there way to configure these Shovel connection source ports to specific range. i.e. example We configure the port range as 55000 - 57000 only. I have attached image for your reference.
If Yes and We are able to configure then Please provide the steps to configure.
Thanks for the information. But We have detailed the query as below :
We have shovel connections between 2 systems A and B. We observe that the destination ports of these shovels are 5671 which is fixed TLS port. But the source ports of these shovel connections are random ports. As part of security, we want to restrict only a certain range of ports for shovels. Also this is needed at customer end to open the firewall for those specific port range.
Hence Please let us know that :
Is there way to configure these Shovel connection source ports to specific range. i.e. example We configure the port range as 55000 - 57000 only. I have attached image for your reference.
If Yes and We are able to configure then Please provide the steps to configure.
Michal Kuratczyk
Jul 19, 2023, 2:49:50 AM7/19/23
to rabbitm...@googlegroups.com
I don't see how restricting the source port range could improve security in any way
(and I'm not alone: https://www.reddit.com/r/paloaltonetworks/comments/y811f6/blocking_traffic_by_source_port/).
(on Linux, the range of ports from which one is assigned is defined by net.ipv4.ip_local_port_range). The application can't pick the
port as far as I know (perhaps some tricks exist, but would almost certainly require root permissions).
Best,
Best,
To view this discussion on the web, visit https://groups.google.com/d/msgid/rabbitmq-users/38b9c3a1-cb3e-472c-80b9-b1fce4693fc3n%40googlegroups.com.
Michał
RabbitMQ teamReply all
Reply to author
Forward
0 new messages