I’m trying to enable internode encryption but am not finding success. I’m running ES 6.8.4 and ROR 1.18.8.
In my elasticsearch.yml file I’ve tried both of the following configurations, however neither work:
If I remove the internode configuration from the elasticsearch.yml file, ES starts up.
ssl:
# put the keystore in the same dir with elasticsearch.yml
keystore_file: "/etc/elasticsearch/keystore.jks"
keystore_pass: password123
key_pass: password123
ssl_internode:
keystore_file: "/etc/elasticsearch/keystore.jks"
keystore_pass: password123
key_pass: password123
SettingsException[Failed to load settings from [elasticsearch.yml]]; nested: JsonParseException[Duplicate field ‘http.type’
at [Source: sun.nio.ch.ChannelInputStream@1d8bd0de; line: 99, column: 10]];
at org.elasticsearch.common.settings.Settings$Builder.loadFromStream(Settings.java:1139)
at org.elasticsearch.common.settings.Settings$Builder.loadFromPath(Settings.java:1112)
at org.elasticsearch.node.InternalSettingsPreparer.prepareEnvironment(InternalSettingsPreparer.java:100)
at org.elasticsearch.cli.EnvironmentAwareCommand.createEnv(EnvironmentAwareCommand.java:95)
at org.elasticsearch.cli.EnvironmentAwareCommand.execute(EnvironmentAwareCommand.java:86)
at org.elasticsearch.cli.Command.mainWithoutErrorHandling(Command.java:124)
at org.elasticsearch.cli.Command.main(Command.java:90)
at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:116)
at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:93)
Caused by: com.fasterxml.jackson.core.JsonParseException: Duplicate field ‘http.type’
at [Source: sun.nio.ch.ChannelInputStream@1d8bd0de; line: 99, column: 10]
at com.fasterxml.jackson.core.json.JsonReadContext._checkDup(JsonReadContext.java:204)
at com.fasterxml.jackson.core.json.JsonReadContext.setCurrentName(JsonReadContext.java:198)
at com.fasterxml.jackson.dataformat.yaml.YAMLParser.nextToken(YAMLParser.java:372)
at org.elasticsearch.common.xcontent.json.JsonXContentParser.nextToken(JsonXContentParser.java:52)
at org.elasticsearch.common.settings.Settings.fromXContent(Settings.java:675)
at org.elasticsearch.common.settings.Settings.fromXContent(Settings.java:650)
at org.elasticsearch.common.settings.Settings.access$500(Settings.java:82)
at org.elasticsearch.common.settings.Settings$Builder.loadFromStream(Settings.java:1135)
… 8 more
Hi @sanderson, could you try with this configuration: http.type: ssl_netty4 transport.type: ror_ssl_internode
? So instead of http for internode use transport.