To allow Apiary connect to external applications such as Hive, it is necessary to open one of the following ports:
5672
- for insecure connections (we do not recommend using it).
To ensure a secure connection, you can use such tools as Elastic Load Balancing (AWS) or Google Cloud Load Balancing (GCE).5671
- for secure connections.
In this case, it is necessary to configure TLS. TLS requires domain name and valid certificate instead of self-signed.
For example, you can use Let's encrypt service or any other provider that can issue you a valid certificate.For correct work of Apiary, it is necessary to open ports 80
and 443
using your network equipment or the Load Balancer of your cloud provider, f.e. Elastic Load Balancing (AWS) or Google Cloud Load Balancing (GCE).
Additionally, you may need to open all ports you use:
To change default Apiary ports:
Open the /opt/hw-fh/config/user.ini
file using the command (root privileges required):
nano /opt/hw-fh/config/user.ini
Add the following parameters to the file and specify new IP, and port, f.e.:
[main]
f.deck.ip.expose = 127.0.0.0
f.deck.port.expose = 10001
[main]
f.deck.https.ip.expose = 0.0.0.0
f.deck.https.port.expose = 443
Save the /opt/hw-fh/config/user.ini
file;
To apply changes, run the command:
/opt/hw-fh/bin/reconfig