22.8. Disabling Network Encryption


Follow this section to disable network encryption on clients and servers.

Procedure 22.13. Disabling I/O encryption

  1. Unmount volumes from all clients

    Run the following command on each client for any volume that should have encryption disabled.
    # umount /mountpoint
  2. Stop encrypted volumes

    Run the following command on any server to stop volumes that should have encryption disabled.
    # gluster volume stop volname
  3. Disable server and client SSL usage

    Run the following commands for each volume that should have encryption disabled.
    # gluster volume set volname server.ssl off
    # gluster volume set volname client.ssl off
  4. Start volumes

    # gluster volume start volname
  5. Mount volumes on clients

    The process for mounting a volume depends on the protocol your client is using. The following command mounts a volume using the native FUSE protocol.
    # mount -t glusterfs server1:/testvolume /mnt/glusterfs

Procedure 22.14. Disabling management encryption

  1. Unmount volumes from all clients

    Run the following command on each client for any volume that should have encryption disabled.
    # umount /mountpoint
  2. Stop glusterd on all nodes

    For Red Hat Enterprise Linux 7 based installations:
    # systemctl stop glusterd
    For Red Hat Enterprise Linux 6 based installations:
    # service glusterd stop

    Important

    Bug 1635071 may cause glusterd to crash during shutdown, but there is no functionality impact to this crash. See Resolving glusterd crash for details.
  3. Remove the secure-access file

    Run the following command on all servers and clients to remove the secure-access file. You can just rename the file if you are only disabling encryption temporarily.
    # rm -f /var/lib/glusterd/secure-access
  4. Start glusterd on all nodes

    For Red Hat Enterprise Linux 7 based installations:
    # systemctl start glusterd
    For Red Hat Enterprise Linux 6 based installations:
    # service glusterd start
  5. Mount volumes on clients

    The process for mounting a volume depends on the protocol your client is using. The following command mounts a volume using the native FUSE protocol.
    # mount -t glusterfs server1:/testvolume /mnt/glusterfs

Important

If you are permanently disabling network encryption, you can now delete the SSL certificate files. Do not delete these files if you are only disabling encryption temporarily.
Red Hat logoGithubRedditYoutubeTwitter

Learn

Try, buy, & sell

Communities

About Red Hat Documentation

We help Red Hat users innovate and achieve their goals with our products and services with content they can trust.

Making open source more inclusive

Red Hat is committed to replacing problematic language in our code, documentation, and web properties. For more details, see the Red Hat Blog.

About Red Hat

We deliver hardened solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge.

© 2024 Red Hat, Inc.