クラスタピアのクラスタ間通信を暗号化するための推奨設定
環境
回答
- ソースとデスティネーションのいずれかが「クラスタピアの作成」の場合は、「クラスタ間通信の暗号化に推奨される設定」オプションが出力されます。
::*> cluster peer show -instance
Peer Cluster Name: node1
Cluster UUID: ce7e7173-afe2-11ec-8ba3-000c2948bef2
Remote Intercluster Addresses: 10.128.231.178
Availability of the Remote Cluster: Unavailable
Remote Cluster Name: node1
Active IP Addresses: 10.128.231.178
Cluster Serial Number: -
Remote Cluster Nodes: -
Remote Cluster Health: -
Unreachable Local Nodes: -
Operation Timeout (seconds): 60
Address Family of Relationship: ipv4
Authentication Status Administrative: use-authentication
Authentication Status Operational: pending
Timeout for RPC Connect: 10
Timeout for Update Pings: 5
Last Update Time: -
IPspace for the Relationship: Default
Proposed Setting for Encryption of Inter-Cluster Communication: tls-psk
Encryption Protocol For Inter-Cluster Communication: -
Algorithm By Which the PSK Was Derived: -
- 両側が「クラスタピアを作成」の場合、このオプションはになります。
- [Inter-cluster communication encryption protocol]オプションが表示されます。
::*> cluster peer show -instance
Peer Cluster Name: node1
Cluster UUID: ce7e7173-afe2-11ec-8ba3-000c2948bef2
Remote Intercluster Addresses: 10.128.231.178
Availability of the Remote Cluster: Unavailable
Remote Cluster Name: node1
Active IP Addresses: 10.128.231.178
Cluster Serial Number: -
Remote Cluster Nodes: -
Remote Cluster Health: -
Unreachable Local Nodes: -
Operation Timeout (seconds): 60
Address Family of Relationship: ipv4
Authentication Status Administrative: use-authentication
Authentication Status Operational: pending
Timeout for RPC Connect: 10
Timeout for Update Pings: 5
Last Update Time: -
IPspace for the Relationship: Default
Proposed Setting for Encryption of Inter-Cluster Communication: -
Encryption Protocol For Inter-Cluster Communication: tls-psk
Algorithm By Which the PSK Was Derived: -