-
Notifications
You must be signed in to change notification settings - Fork 286
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
"failed to verify flags" Error occurs with --listen-peer-urls
option
#747
Comments
@UedaTakeyuki Can you write a simple golang program to parse |
Hi ahrtr, thank you for your feedback. I've tried as follow:
The result is as follow:
|
References:
|
Thank you ahrtr! I've changed
But, it seems that there are no blocking process of
Is there still something wrong with my step? Thank you for your pointing. |
Please ensure,
|
The global IP address is correct.
Port isn't used by other process.
|
Can you write a simple program to listen on |
Hi, I've written as follows:
The Listen seems working as follows:
|
Hi, good news! Finally, after trial and error, I've succeeded in running well with the following settings:
A reference script is as follow:
|
I asked you to try
Yes, it works. But it may not the best practice. You will expose your service on all interface, we should try to minimize the attack surface. Of course, it's fine if you are sure it's safe & expected. Usually it's recommended to use addresses something like |
Thank you for your kind response. With
It returns same error as:
Also thanks for teaching me about best practices. I noticed that using INADDR_ANY for client listing is so dangerous. --listen-client-urls should be local loopback (127.0.0.1:2379). |
Not really. Minimizing the attack surface should be a generic rule, no matter it's for client or peer communication. |
Hey @ahrtr - I note we state:
In https://etcd.io/docs/v3.5/op-guide/clustering/#bootstrap-the-etcd-cluster-using-dns. So it looks like this is actually covered by the documentation. Can we close this issue? |
Yes, closing... |
Hello,
I'm trying to make a etcd cluster with this tutorial with following script:
When I run this on the server parsifal, error occurs as follows:
But, when I comment out
--listen-peer-urls
option, it work wellHow should I fix my script. All suggestions are welcome! Thank you!
The text was updated successfully, but these errors were encountered: