配置DNAT
代码语言:javascript复制[root@net-border ~]# iptables -L -nv -t nat | grep 1443
[root@net-border ~]# vim /etc/sysconfig/iptables
[root@net-border ~]# grep 1443 /etc/sysconfig/iptables
-A PREROUTING -p tcp -m tcp --dport 21443 -j DNAT --to-destination 192.168.66.111:1443
[root@net-border ~]# /etc/init.d/iptables reload
iptables: Trying to reload firewall rules: [ OK ]
[root@net-border ~]# iptables -L -nv -t nat | grep 1443
0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21443 to:192.168.66.111:1443
[root@net-border ~]#访问控制
管理插件在已有的RabbitMQ权限模型上进行了扩展,通过分配标签来为用户赋权
目前有以下几种标签和角色:
Tag | Capabilities |
|---|---|
(None) | No access to the management plugin |
management | Anything the user could do via AMQP plus:List virtual hosts to which they can log in via AMQPView all queues, exchanges and bindings in "their" virtual hostsView and close their own channels and connectionsView "global" statistics covering all their virtual hosts, including activity by other users within them |
policymaker | Everything "management" can plus:View, create and delete policies and parameters for virtual hosts to which they can log in via AMQP |
monitoring | Everything "management" can plus:List all virtual hosts, including ones they could not log in to via AMQPView other users's connections and channelsView node-level data such as memory use and clusteringView truly global statistics for all virtual hosts |
administrator | Everything "policymaker" and "monitoring" can plus:Create and delete virtual hostsView, create and delete usersView, create and delete permissionsClose other users's connections |
- List virtual hosts to which they can log in via AMQP
- View all queues, exchanges and bindings in "their" virtual hosts
- View and close their own channels and connections
- View "global" statistics covering all their virtual hosts, including activity by other users within them
policymakerEverything "management" can plus:
- View, create and delete policies and parameters for virtual hosts to which they can log in via AMQP
monitoringEverything "management" can plus:
- List all virtual hosts, including ones they could not log in to via AMQP
- View other users's connections and channels
- View node-level data such as memory use and clustering
- View truly global statistics for all virtual hosts
administratorEverything "policymaker" and "monitoring" can plus:
- Create and delete virtual hosts
- View, create and delete users
- View, create and delete permissions
- Close other users's connections
