Open ayanevbg opened 8 months ago
I was able to have it working with a similar setup to yours. Except I never had those client--ssl.properties on the client because that is the job of the proxy, from my understanding.
If I were you, I would first test to see if an instance running a simple kafkacat can reach your MSK cluster through the proxy.
Hello @ayanevbg Were you able to fix this issue ?
Regards
Hello @ayanevbg Were you able to fix this issue ?
Regards
No, I managed to expose the Serverless MSK dns through an Inbound Resolver and with custom core dns config the dns was resolvable in clusters in other VPCs.
So, the proxy was no longer needed for our use case.
Will we be able to attach it to any NLB when you have inbound resolvers ? Reason I ask: how can we expose it if its through endpoint. Curious to know what was the endpoint type and protocol if you used any.
Hi,
I have an issue trying to communicate from a client to a MSK Serverless cluster though the kafka-proxy.
The proxy is running as a pod inside a cluster. The nodes are in the same VPC as the MSK cluster. The IAM permissions are set correctly I am able to produce on a cluster without the proxy.
Proxy version - 0.3.6
I am running this command from another pod to test the connection
The client--ssl.properties
I am gettig the following error in the proxy:
On the client side I get this warning:
WARN [AdminClient clientId=adminclient-1] Connection to node -1 (kafka-serverless-proxy/:9098) terminated during authentication. This may happen due to any of the following reasons: (1) Authentication failed due to invalid credentials with brokers older than 1.0.0, (2) Firewall blocking Kafka TLS traffic (eg it may only allow HTTPS traffic), (3) Transient network issue. (org.apache.kafka.clients.NetworkClient)
I am not sure is this is some misconfiguration or its an issue with the serverless MSK working with the proxy. Please advice ?
Thank you!