I have been able to configure Hyperic HQ to identify servicemix 4, however, It could only see the "ServiceMix 4.x Garbage Collector" service. I would like to be able to monitor activemq Queues, Endpoints, and Camel Applications (if possible)
Has anyone been able to do this?
I ran into the same issue at a client recently. We didn't find any support for doing this with HypericHQ, so we built our own basic web app using JSP, Ajax/jQuery and JMX to interface with AMQ/Camel. Another option is to customize the ActiveMQ and Camel web consoles...
Here are some notes on using JMX to monitor/manage both ActiveMQ and Camel...
http://benoday.blogspot.com/2010/08/managing-camel-routes-with-jmx-apis.html
http://benoday.blogspot.com/2010/08/monitoring-and-managing-activemq-with.html
Also, I know the Camel team is looking to enhance the web console in future releases (see the 3.0 roadmap)
good luck...
Related
I tried to search for security Log4J issues regarding ActiveMQ 5.16.2 but I could not find any information.
Does ActiveMQ Version 5.16.2 has the Log4J security problems?
If so what should be done to close this gap?
You might review the ActiveMQ users mailing list to stay up-to-date on the latest project activity. All official support and development activities are discussed and documented on the mailing lists. This is standard practice for all Apache projects.
There's also a "News" section of the ActiveMQ website that may have relevant information like this update regarding CVE-2021-44228.
I've been experimenting with trying to secure a Elasticsearch cluster with basic auth and TLS.
I've successfully been able to do that using Search-Guard. The problem occurs with the Couchbase XDCR to Elasticsearch.
I'm using a plugin called elasticsearch-transport-couchbase which perfectly fine without TLS and Basic Auth enabled on the Elasticsearch cluster. But when enabling that with Search-Guard I am not able to make that work.
As far as I can tell the issue lies with the elasticsearch-transport-couchbase plugin. This has also been discussed previously in some issues on their Github repo.
It is also the only plugin what I can find that can be used for XDCR from Couchbase.
I'm curious about other peoples experience with this. Is there anyone who have been in the same situation as I and been able to setup a XDCR from Couchbase to Elasticsearch with TLS?
Or perhaps there are some other more suitable tools that I can use that I have missed?
The Couchbase transport plugin doesn't support XDCR TLS yet, it's on the roadmap, but isn't going to happen soon. Search-guard adds SSL to the HTTP/REST endpoint in ES, but the plugin opens its own endpoint (on port 9091 by default) which Search-guard doesn't touch. I'll take a look at whether it's possible to extend search-guard to apply to the transport plugin - the main problem is on the Couchbase XDCR side, which doesn't expect SSL on the target endpoint.
Version 4.0 of the Couchbase Elasticsearch connector supports secure connections to Couchbase Server and/or Elasticsearch.
Reference: https://docs.couchbase.com/elasticsearch-connector/4.0/secure-connections.html
A small update. We went around the issue by setting up a stunnel with xinetd. So all communication with ELS have to go through the stunnel where the TLS will terminate.
We blocked access to port 9200, and restricted 9091 to the Couchbase-cluster host and 9300 to the other ELS nodes only.
Seems to work good.
I am new to the enterprise integration area.
We have a requirement to develop a solution where multiple OSS (operations support systems) should talk to multiple EMS (element management systems) and network devices (Different transports and protocols has to be supported), solution should be such that, that it should run in Weblogic.
Queries
Which will be the best fit for this situation ESB/Apache ServiceMix/Spring Integration?
If we use opensource ESBs ( like WSo2 and Talend ESBs) I think we need to maintain two servers ESB server and Weblogic server and ESB/Weblogic integration will be an issue?
Apache servicemix or Spring Integration be deployed/run inside Weblogic?
Whether Apache ServiceMix is supported now, as I could see most updates are happening in fuse ESB only?
You need to analyze your scenario and then decide. If you need only transformation or alongside with a simple routing you can use some frameworks like smooks, camel etc.
You need to transform and still a lot of system involved where you need those transformed messages then you could use an ESB.
Then comes selecting the ESB product is also based on you application eco system. All products are amazing and each fits the better than the other in their own application eco system.
First you need to know a few things on Camel / Fuse ESB / Service Mix
All the above revolve around the same, each of them are projects where camel integration framework is the coding De fact o
1.Camel -- Integration framework and the De fact o coding way(sophisticated in its own way and much flexible)
2.Service Mix -- Container for deploying the your integration code. (Camel integration code)
3.Fuse ESB -- Enterprise Feather on the hat of Service Mix where it provides a Studio for coding , a list of components and wrappers like clustering and other facilities around service service mix
.
I would like you to also consider Mule ESB which could also and it will be a good contender in your list.
Some answers for your questions
1.You can deploy Camel code or the spring integration code into the what so ever container (all in the hands Maven and jar management thing you need to do....)
2.Service mix is a Apache license and is complete open source and if you need some support I suggest you to choose the FUSE ESB which is not part of JBoss family and powered by RedHat
Please follow this link below for more detailed discussion from other stackoverflow.com users
use the below for your analysis
Apache Camel and other ESB products
What is an ESB and what is it good for?
Messaging, Queues and ESB's - I know where I want to be but not how to get there
JMS and ESB - how they are related?
I can not really find any conclusive documentation on the different avenues for JMX invokation on a JBoss 6.0.0.Final.
The jboss.org guide SecureTheJmxConsole only specifies how to set an authentication realm for the jmx-console.war web app and JMX-connector. I feel like there is probably other ways of accessing JMX. What about RMI, HttpInvoker?
Ideally, I would like to know the best way to limit all JMX access to localhost.
So, how to go about making sure all avenues of JMX are accessible from localhost only?
There's an official documentation repository for Red Hat products, which includes JBoss EAP (the Red Hat product based on JBoss AS). This documentation is for EAP 5.x, but should be similar to JBoss AS 6 (EAP 5.x is based on JBoss AS 5.1).
http://docs.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/5/html/Administration_Console_Quick_Start_Guide/ch04s02.html
In short, you'll have to change two files:
server/$PROFILE/conf/jboss-service.xml
server/$PROFILE/deploy/jmx-invoker-service.xml
I have to encrypt messages with WMQ Advanced Message Security. What do I need to do in my program or .bindings file to make it work?
Good news - there is nothing to do in your code or .bindings file. WMQ AMS uses interceptors to catch the API calls before they are handed to WMQ. The configuration is entirely external to your program and consists of using an environment variable to point to an ini file. The ini file in turn points to the keystore which can be a jks or IBM's kdb format (such as that used by QMgrs).
The various quick start guides outline the steps required to get AMS up and running.
Quick Start Guide for WebSphere MQ AMS on UNIX platforms
Quick Start Guide for WebSphere MQ AMS on Windows platforms
Quick Start Guide for WebSphere MQ AMS with Java clients