SSL not working, Kong not verifying/ignoring certificates in docker data plane

ridwan · October 6, 2022, 7:17am

Hi all,

I tried to use below parameters in docker run for data plane but so far tls / ssl in service level not applied (does not matter what certificates, it still allow request to go through):
KONG_NGINX_HTTP_PROXY_SSL_VERIFY=on
KONG_NGINX_HTTP_PROXY_SSL_TRUSTED_CERTIFICATE=/home/admin/kong/lb_eks.crt

How to apply ssl in the docker run for data planes?

The complete docker run command is below:

sudo docker run -d --name kong_data_plane --hostname Kong-DP1
–network=kong-net
-v “/home/admin/kong_cert:/home/admin/kong”
-e “KONG_ROLE=data_plane”
-e “KONG_DATABASE=off”
-e “KONG_PROXY_LISTEN: 0.0.0.0:8000, 0.0.0.0:8443 ssl”
-e “KONG_STATUS_LISTEN: 0.0.0.0:8100”
-e “KONG_CLUSTER_CONTROL_PLANE=10.1.0.11:8005”
-e “KONG_CLUSTER_TELEMETRY_ENDPOINT=10.1.0.11:8006”
-e “KONG_CLUSTER_CERT=/home/admin/kong/cluster.crt”
-e “KONG_CLUSTER_CERT_KEY=/home/admin/kong/cluster.key”
-e “KONG_SSL=on”
-e “KONG_SSL_CERT=/home/admin/kong/kong.lan.pem”
-e “KONG_SSL_CERT_KEY=/home/admin/kong/kong.lan.key”
-e “KONG_NGINX_HTTP_PROXY_SSL_VERIFY=on”
-e “KONG_NGINX_HTTP_PROXY_SSL_TRUSTED_CERTIFICATE=/home/admin/kong/lb_eks.crt”
-e “KONG_VITALS=on”
-p 8000:8000
-p 8100:8100
-p 8443:8443
kong/kong-gateway:3.0.0.0-alpine

Topic		Replies	Views
SSL connection to Kong in Docker Installation/Setup	3	5816	March 17, 2022
Kong upstream SSL mTLS Questions	16	7986	November 13, 2019
Kong API Gateway SSL/TLS Certificates Questions	1	2430	May 4, 2022
Implement proxy_ssl_server_name/ssl_name Installation/Setup	0	753	November 30, 2022
Data Plane can not authenticate against Control Plane using client certificate Installation/Setup	2	1522	August 26, 2021

SSL not working, Kong not verifying/ignoring certificates in docker data plane

Related Topics