-
Language:
English
-
Language:
English
Red Hat Training
A Red Hat training course is available for Red Hat Gluster Storage
22.8. Disabling Network Encryption
Follow this section to disable network encryption on clients and servers.
Procedure 22.13. Disabling I/O encryption
Unmount volumes from all clients
Run the following command on each client for any volume that should have encryption disabled.# umount /mountpoint
Stop encrypted volumes
Run the following command on any server to stop volumes that should have encryption disabled.# gluster volume stop volname
Disable server and client SSL usage
Run the following commands for each volume that should have encryption disabled.# gluster volume set volname server.ssl off # gluster volume set volname client.ssl off
Start volumes
# gluster volume start volname
Mount volumes on clients
The process for mounting a volume depends on the protocol your client is using. The following command mounts a volume using the native FUSE protocol.# mount -t glusterfs server1:/testvolume /mnt/glusterfs
Procedure 22.14. Disabling management encryption
Unmount volumes from all clients
Run the following command on each client for any volume that should have encryption disabled.# umount /mountpoint
Stop glusterd on all nodes
For Red Hat Enterprise Linux 7 based installations:# systemctl stop glusterd
For Red Hat Enterprise Linux 6 based installations:# service glusterd stop
Important
Bug 1635071 may cause glusterd to crash during shutdown, but there is no functionality impact to this crash. See Resolving glusterd crash for details.Remove the secure-access file
Run the following command on all servers and clients to remove the secure-access file. You can just rename the file if you are only disabling encryption temporarily.# rm -f /var/lib/glusterd/secure-access
Start glusterd on all nodes
For Red Hat Enterprise Linux 7 based installations:# systemctl start glusterd
For Red Hat Enterprise Linux 6 based installations:# service glusterd start
Mount volumes on clients
The process for mounting a volume depends on the protocol your client is using. The following command mounts a volume using the native FUSE protocol.# mount -t glusterfs server1:/testvolume /mnt/glusterfs
Important
If you are permanently disabling network encryption, you can now delete the SSL certificate files. Do not delete these files if you are only disabling encryption temporarily.
