如何禁用 RabbitMQ 默认 tcp 侦听端口 - 5672 [英] How to disable RabbitMQ default tcp listening port - 5672

问题描述

我已经用新的端口号(即 5671 和 SSL)配置了 RabbitMQ rabbitmq.config 文件.

现在我想禁用默认端口，即 5672.

配置文件如下:-

<预><代码>[{兔子， [{ssl_listeners, [5671]},{ssl_options, [{cacertfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cacert.pem"},{certfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cert.pem"},{keyfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/key.pem"},{验证，verify_peer}，{fail_if_no_peer_cert,false},{密码,[{dhe_rsa,aes_256_cbc,sha},{dhe_dss,aes_256_cbc,sha},{rsa,aes_256_cbc,sha}]}]}]}].

现在它在端口 5671 和 5672 上工作.但是我需要禁用端口 5672.提出一些意见或建议.

提前致谢.

解决方案

要禁用标准 RabbitMQ 5672 端口，请将 {tcp_listeners, []} 添加到您的 rabbitmq.conf:

<预><代码>[{兔子， [{tcp_listeners, []},{ssl_listeners, [5671]},{ssl_options, [{cacertfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cacert.pem"},{certfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cert.pem"},{keyfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/key.pem"},{验证，verify_peer}，{fail_if_no_peer_cert,false},{密码,[{dhe_rsa,aes_256_cbc,sha},{dhe_dss,aes_256_cbc,sha},{rsa,aes_256_cbc,sha}]}]}]}].

它适用于 RabbitMQ 3.1.5

I have configured the RabbitMQ rabbitmq.config file with new port number i.e. 5671 with SSL.

Now I want to disable the default port i.e. 5672.

Config file as below :-

[
  {rabbit, [
     {ssl_listeners, [5671]},
     {ssl_options, [{cacertfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cacert.pem"},
                    {certfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cert.pem"},
                    {keyfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/key.pem"},
                    {verify,verify_peer},
                    {fail_if_no_peer_cert,false},

                   {ciphers,[{dhe_rsa,aes_256_cbc,sha},
 {dhe_dss,aes_256_cbc,sha},
 {rsa,aes_256_cbc,sha}]}

                    ]

    }
   ]}
].

Now its working on both port 5671 and 5672.But I need to disable the port 5672. Give some comments or suggestion.

Thanks in advance.

解决方案

To disable standart RabbitMQ 5672 port add {tcp_listeners, []} to your rabbitmq.conf:

[
  {rabbit, [
     {tcp_listeners, []},
     {ssl_listeners, [5671]},
     {ssl_options, [{cacertfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cacert.pem"},
                    {certfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/cert.pem"},
                    {keyfile,"/ay/app/xxx/softwares/rabbitmq_server-3.1.1/etc/ssl/key.pem"},
                    {verify,verify_peer},
                    {fail_if_no_peer_cert,false},

                   {ciphers,[{dhe_rsa,aes_256_cbc,sha},
 {dhe_dss,aes_256_cbc,sha},
 {rsa,aes_256_cbc,sha}]}

                    ]

    }
   ]}
].

It works with RabbitMQ 3.1.5

这篇关于如何禁用 RabbitMQ 默认 tcp 侦听端口 - 5672的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！