Hello!
I am new to AWS and reading the documentation has not given me a definite answer thus I am asking here in hopes of getting a concrete answer.
Setup:
- Amazon MQ with Rabbit engine, set up with VPC + no public access.
- Multiple (Java) microservices running in ECS on the same VPC, communicating via the MQ.
Currently we use "useSslProtocol" from the RabbitMQ Java client library (com.rabbitmq.client.ConnectionFactory) but this is only meant for development as it creates a SSLContext that trusts all certificates no matter what.
As for the question, do I need to configure TLS in the microservices manually when connection to the MQ or can I leave it out?
Do we even need to bother with TLS or can we assume VPC with no public access is secure enough?
Documentation mentions that AMQ uses TLS by default but there are also hints that it should be set up. Though I lean towards having to configure it by hand but need confirmation in that regard.
Thanks in advance
AWS 官方已更新 2 年前
