hi all, I have set the qpid ssl link successfully by refer to qpid-0.16/cpp/src/tests/sasl_fex_ex, the process is as following, TEST 1: /root/Downloads/qpid-0.16/cpp/src/.libs/lt-qpidd --port=5801 --ssl-port 6667 --ssl-sasl-no-dict --sasl-config=/root/Downloads/qpid-0.16/cpp/src/tests/sasl_config --ssl-require-client-authentication --auth yes --ssl-cert-db /root/Downloads/qpid-0.16/cpp/src/tests/test_cert_db --ssl-cert-password-file /root/Downloads/qpid-0.16/cpp/src/tests/cert.password --ssl-cert-name 127.0.0.1 --no-data-dir --no-module-dir --load-module /root/Downloads/qpid-0.16/cpp/src/.libs/ssl.so --mgmt-enable=yes --log-enable info+ --log-source yes --daemon --log-to-file /root/Downloads/qpid-0.16/cpp/src/tests/sasl_fed_ex_temp/qpidd_src.log /root/Downloads/qpid-0.16/cpp/src/.libs/lt-qpidd --port=5807 --ssl-port 6666 --ssl-sasl-no-dict --sasl-config=/root/Downloads/qpid-0.16/cpp/src/tests/sasl_config --ssl-require-client-authentication --auth yes --ssl-cert-db /root/Downloads/qpid-0.16/cpp/src/tests/test_cert_db --ssl-cert-password-file /root/Downloads/qpid-0.16/cpp/src/tests/cert.password --ssl-cert-name 127.0.0.1 --no-data-dir --no-module-dir --load-module /root/Downloads/qpid-0.16/cpp/src/.libs/ssl.so --mgmt-enable=yes --log-enable info+ --log-source yes --daemon --log-to-file /root/Downloads/qpid-0.16/cpp/src/tests/sasl_fed_ex_temp/qpidd_dst.log
qpid-config -b localhost:5801 add exchange direct sasl_fedex qpid-config -b localhost:5807 add exchange direct sasl_fedex qpid-config -b localhost:5801 add queue sasl_fed_queue qpid-config -b localhost:5807 add queue sasl_fed_queue qpid-config -b localhost:5801 bind sasl_fedex sasl_fed_queue sasl_fed_queue qpid-config -b localhost:5807 bind sasl_fedex sasl_fed_queue sasl_fed_queue # as said in sasl_fex_ex # NOTE: The SRC broker *must* be referred to as $TEST_HOSTNAME, and not as "localhost". # It must be referred to by the exact string given as the Common Name (CN) in the cert, # which was created in the function create_certs, my is 127.0.0.1 qpid-route -t ssl queue add localhost:5807 127.0.0.1:6667 sasl_fedex sasl_fed_queue later we can get message by drain which is send by spout ./drain -f -b localhost:5807 sasl_fed_queue ./spout -b localhost:5801 sasl_fed_queue aadgag but all this is referring to ####################################### # Understanding this Plumbing ####################################### # 1. when you establish the route with qpid-route, # here is the best termiology to use: # # qpid-route route add DST SRC # # 2. DST will connect to SRC through the ssl port of SRC. # # 3. sender client connects to the tcp port of SRC. # # 4. sender specifies mechanism ANONYMOUS. # # 5. DST pulls messages off the temp queue on SRC to itself. # but, if i using sals PLAIN mechanism with SSL link as following TEST 2: /root/Downloads/qpid-0.16/cpp/src/.libs/lt-qpidd --port=5801 --realm devbox --ssl-port 6667 --ssl-sasl-no-dict --ssl-require-client-authentication --auth yes --ssl-cert-db /root/Downloads/qpid-0.16/cpp/src/tests/test_cert_db --ssl-cert-password-file /root/Downloads/qpid-0.16/cpp/src/tests/cert.password --ssl-cert-name 127.0.0.1 --no-data-dir --no-module-dir --load-module /root/Downloads/qpid-0.16/cpp/src/.libs/ssl.so --mgmt-enable=yes --log-enable info+ --log-source yes --daemon --log-to-file /root/Downloads/qpid-0.16/cpp/src/tests/sasl_fed_ex_temp/qpidd_src.log /root/Downloads/qpid-0.16/cpp/src/.libs/lt-qpidd --port=5807 --realm devbox --ssl-port 6666 --ssl-sasl-no-dict --ssl-require-client-authentication --auth yes --ssl-cert-db /root/Downloads/qpid-0.16/cpp/src/tests/test_cert_db --ssl-cert-password-file /root/Downloads/qpid-0.16/cpp/src/tests/cert.password --ssl-cert-name 127.0.0.1 --no-data-dir --no-module-dir --load-module /root/Downloads/qpid-0.16/cpp/src/.libs/ssl.so --mgmt-enable=yes --log-enable info+ --log-source yes --daemon --log-to-file /root/Downloads/qpid-0.16/cpp/src/tests/sasl_fed_ex_temp/qpidd_dst.log qpid-config --sasl-mechanism=PLAIN -b qpidd/qpidd@localhost:5801 add exchange direct sasl_fedex qpid-config --sasl-mechanism=PLAIN -b qpidd/qpidd@localhost:5807 add exchange direct sasl_fedex qpid-config --sasl-mechanism=PLAIN -b qpidd/qpidd@localhost:5801 add queue sasl_fed_queue qpid-config --sasl-mechanism=PLAIN -b qpidd/qpidd@localhost:5807 add queue sasl_fed_queue qpid-config --sasl-mechanism=PLAIN -b qpidd/qpidd@localhost:5801 bind sasl_fedex sasl_fed_queue sasl_fed_queue qpid-config --sasl-mechanism=PLAIN -b qpidd/qpidd@localhost:5807 bind sasl_fedex sasl_fed_queue sasl_fed_queue qpid-route --client-sasl-mechanism=PLAIN -t ssl queue del qpidd/qpidd@localhost:5807 127.0.0.1:6667 sasl_fedex sasl_fed_queue EXTERNAL this qpid-route command same not executed successfully, i using following command check it qpid-route --client-sasl-mechanism=PLAIN link list qpidd/qpidd@localhost:5807 Can someone give me some clues aboute how to use qpid-route queue add command [mechanism] option. how can i get through of this setting? thanks -- View this message in context: http://qpid.2158936.n2.nabble.com/c-broker-federation-over-ssl-tp7201044p7579732.html Sent from the Apache Qpid users mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
