免费网站转app,asp+sql server典型网站建设案例 光盘,软件工程开发流程,漯河做网站公司这套配置适用于TCP代理和公网访问
分几种场景#xff0c;正常来说我们直接使用kafka IP地址访问就行#xff0c;考虑到网络架构和环境安全#xff0c;需要使用公网或代理访问kafka时就需要对kafka进行一些额外配置
EXTERNAL这个地址需要监听本地地址#xff0c;之后kafka…这套配置适用于TCP代理和公网访问
分几种场景正常来说我们直接使用kafka IP地址访问就行考虑到网络架构和环境安全需要使用公网或代理访问kafka时就需要对kafka进行一些额外配置
EXTERNAL这个地址需要监听本地地址之后kafka会监听这个端口此端口不能和INTERNAL端口一致必须是不同的 advertised.listeners已经测试了NLB的连接这里需要获取到NLB IPDNS我没有测试DNS域名太长 EXTERNAL可以配置多个但一般很少这么用的 如果只是调试暴露一个节点就行如果需要暴露整个集群那就在其他节点上也进行一样的配置
broker.id15
delete.topic.enabletrue
#inter.broker.listener.nameSASL_PLAINTEXT
#listenersSASL_PLAINTEXT://10.198.170.15:9092
# 监听器和安全配置
listenersINTERNAL://0.0.0.0:9092,EXTERNAL://0.0.0.0:9093
advertised.listenersINTERNAL://10.198.170.15:9092,EXTERNAL://公网或者NLB地址:9093
listener.security.protocol.mapINTERNAL:SASL_PLAINTEXT,EXTERNAL:SASL_PLAINTEXT
inter.broker.listener.nameINTERNAL# 认证相关配置
security.protocolSASL_PLAINTEXT
sasl.mechanism.inter.broker.protocolSCRAM-SHA-256
sasl.enabled.mechanismsSCRAM-SHA-256,PLAIN
allow.everyone.if.no.acl.foundtrue
super.usersUser:admin
authorizer.class.namekafka.security.auth.SimpleAclAuthorizer如果只配置一个节点其他节点也需要按照如下进行配置
1、监听器名称需要统一
SASL_PLAINTEXT 需要是INTERNAL
inter.broker.listener.name 也要对应修改
2、需要添加的配置
listener.security.protocol.map
advertised.listeners
3、格式统一
listeners 使用 0.0.0.0 而不是具体 IP
advertised.listeners 使用具体 IP不需要外部访问以后注释四行配置启用那两行就行 其他节点配置参考
broker.id16
delete.topic.enabletrue
#inter.broker.listener.nameSASL_PLAINTEXT
#listenersSASL_PLAINTEXT://10.198.170.16:9092
# 监听器配置
listenersINTERNAL://0.0.0.0:9092
advertised.listenersINTERNAL://10.198.170.16:9092
listener.security.protocol.mapINTERNAL:SASL_PLAINTEXT
inter.broker.listener.nameINTERNAL# 认证配置
sasl.mechanism.inter.broker.protocolSCRAM-SHA-256
sasl.enabled.mechanismsSCRAM-SHA-256,PLAIN
allow.everyone.if.no.acl.foundtrue
super.usersUser:admin
authorizer.class.namekafka.security.auth.SimpleAclAuthorizer完整配置
broker.id15
delete.topic.enabletrue
#inter.broker.listener.nameSASL_PLAINTEXT
#listenersSASL_PLAINTEXT://10.198.170.15:9092
# 监听器和安全配置
listenersINTERNAL://0.0.0.0:9092,EXTERNAL://0.0.0.0:9093
advertised.listenersINTERNAL://10.198.170.15:9092,EXTERNAL://NLBIP或者公网IP:9093
listener.security.protocol.mapINTERNAL:SASL_PLAINTEXT,EXTERNAL:SASL_PLAINTEXT
inter.broker.listener.nameINTERNAL# 认证相关配置
security.protocolSASL_PLAINTEXT
sasl.mechanism.inter.broker.protocolSCRAM-SHA-256
sasl.enabled.mechanismsSCRAM-SHA-256,PLAIN
allow.everyone.if.no.acl.foundtrue
super.usersUser:admin
authorizer.class.namekafka.security.auth.SimpleAclAuthorizer# Kafka Basic Settings
num.network.threads5
num.io.threads8
socket.send.buffer.bytes10240000
socket.receive.buffer.bytes10240000
socket.request.max.bytes1048576000
log.dirs/data/kafka/data
num.partitions1
default.replication.factor3
num.recovery.threads.per.data.dir1
offsets.topic.replication.factor3
transaction.state.log.replication.factor3
transaction.state.log.min.isr2
log.retention.hours168
log.segment.bytes1073741824
log.retention.check.interval.ms300000
zookeeper.connect10.198.170.16:2181,10.198.170.17:2181,10.198.170.15:2181
zookeeper.connection.timeout.ms12000
zookeeper.session.timeout.ms12000
group.initial.rebalance.delay.ms500
log.flush.interval.messages10000
log.flush.interval.ms1000
num.replica.fetchers3
replica.fetch.min.bytes1
replica.fetch.max.bytes104857600
unclean.leader.election.enablefalse
auto.create.topics.enabletrue
min.isync.replicas2
replica.socket.receive.buffer.bytes65536
replica.socket.timeout.ms30000
replica.lag.time.max.ms5000
replica.fetch.wait.max.ms1000
log.message.timestam..typeLogAppendTime
log.cleanup.policyo.elete
log.roll.hours168
broker.rackkafka-rac15
message.max.bytes10000000
request.timeout.ms30000
