RabbitMQ 监控3

2022-02-09 19:48:42 浏览数 (2)

配置DNAT

代码语言:javascript复制
[root@net-border ~]#  iptables -L -nv  -t nat | grep 1443
[root@net-border ~]# vim /etc/sysconfig/iptables
[root@net-border ~]# grep 1443 /etc/sysconfig/iptables
-A PREROUTING -p tcp -m tcp --dport 21443 -j DNAT --to-destination 192.168.66.111:1443
[root@net-border ~]# /etc/init.d/iptables reload 
iptables: Trying to reload firewall rules:                 [  OK  ]
[root@net-border ~]#  iptables -L -nv  -t nat | grep 1443
    0     0 DNAT       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:21443 to:192.168.66.111:1443 
[root@net-border ~]#

访问控制

管理插件在已有的RabbitMQ权限模型上进行了扩展,通过分配标签来为用户赋权

目前有以下几种标签和角色:

Tag

Capabilities

(None)

No access to the management plugin

management

Anything the user could do via AMQP plus:List virtual hosts to which they can log in via AMQPView all queues, exchanges and bindings in "their" virtual hostsView and close their own channels and connectionsView "global" statistics covering all their virtual hosts, including activity by other users within them

policymaker

Everything "management" can plus:View, create and delete policies and parameters for virtual hosts to which they can log in via AMQP

monitoring

Everything "management" can plus:List all virtual hosts, including ones they could not log in to via AMQPView other users's connections and channelsView node-level data such as memory use and clusteringView truly global statistics for all virtual hosts

administrator

Everything "policymaker" and "monitoring" can plus:Create and delete virtual hostsView, create and delete usersView, create and delete permissionsClose other users's connections

  • List virtual hosts to which they can log in via AMQP
  • View all queues, exchanges and bindings in "their" virtual hosts
  • View and close their own channels and connections
  • View "global" statistics covering all their virtual hosts, including activity by other users within them

policymakerEverything "management" can plus:

  • View, create and delete policies and parameters for virtual hosts to which they can log in via AMQP

monitoringEverything "management" can plus:

  • List all virtual hosts, including ones they could not log in to via AMQP
  • View other users's connections and channels
  • View node-level data such as memory use and clustering
  • View truly global statistics for all virtual hosts

administratorEverything "policymaker" and "monitoring" can plus:

  • Create and delete virtual hosts
  • View, create and delete users
  • View, create and delete permissions
  • Close other users's connections

0 人点赞