quorum icon indicating copy to clipboard operation
quorum copied to clipboard

Published 20 hours ago verified publisher icon Consensys

SSL Support for Communication Between Nodes

Open narayanprusty opened this issue 6 years ago • 4 comments

We are using Quorum in production for a multi entity use-case. The problem is all these entities quorum nodes sits behind a firewall which only allows TLS traffic.

The node that's broadcasting transactions has to use TLS otherwise the firewalls are blocking the packets. The receiving node's firewall acts as a reverse proxy therefore it doesn't need to have SSL. But how do I make Quroum's geth use TLS while broadcasting transactions.

Is there a way in ubuntu which will automatically encrypt the unencrypted connections or any sort of proxy based solution?

narayanprusty avatar Aug 31 '17 07:08 narayanprusty

+1

sivachaitanya avatar Oct 05 '17 05:10 sivachaitanya

It might be interesting to make Constellation support proxying geth traffic over TLS, but right now your best bet is probably stunnel or OpenVPN.

patrickmn avatar Nov 17 '17 06:11 patrickmn

@narayanprusty would you be able to share what the use case was ?

jpmsam avatar Apr 08 '18 03:04 jpmsam

hello, would like to know if anyone has used stunnel for this purpose of enabling 2-way SSL between nodes? Is it even possible architecturally? Regulatory requirement dictates 2-way SSL

nathanawmk avatar Aug 12 '18 14:08 nathanawmk