Node-to-node encryption
Node-to-node (internode) encryption protects data transferred between nodes in a cluster, including gossip communications, using SSL (Secure Sockets Layer).
Node-to-node encryption protects data transferred between nodes in a cluster, including gossip communications, using SSL (Secure Sockets Layer).
Prerequisites
To enable node-to-node SSL, you must set the server_encryption_options in the cassandra.yaml file.
The location of the cassandra.yaml file depends on the type of installation:
DataStax Enterprise 5.0 Installer-Services and package installations | /etc/dse/cassandra/cassandra.yaml |
DataStax Enterprise 5.0 Installer-No Services and tarball installations | install_location/resources/cassandra/conf/cassandra.yaml |
Cassandra package installations | /etc/cassandra/cassandra.yaml |
Cassandra tarball installations | install_location/resources/cassandra/conf/cassandra.yaml |
Procedure
Enable server_encryption_options
on each
node
Restart cassandra