Local machine cannot access to aws MSK

Question

I followed "[public access](https://docs.aws.amazon.com/msk/latest/developerguide/public-access.html)"  to set up the configuration.
I have two goals, Firstly, I want to create topic from local terminal by using this command line "[/bin/kafka-topics.sh --create --zookeeper ZookeeperConnectString --replication-factor 3 --partitions 1 --topic ExampleTopicName](https://docs.aws.amazon.com/msk/latest/developerguide/msk-password.html)", but it always return "the broker is not available".
Secondly, I want to connect MKS from local .Net Application. However, it seams cannot connect to the MKS successfully.

This is my some configuration that attach on my MKS
1. Create public subnet 172.31.0.0/20 and 172.31.16.0/20 and attach an Internet Gateway
2. Close unauthenticated access control off and turn on SASL/SCRAM access-control methods. Besides, I attached an secret for this authentication and add allow.everyone.if.no.acl.found to false to cluster's configuration.
3. Turn on public access
4. Cluster configuration
![Enter image description here](https://repost.aws/media/postImages/original/IMX2hb9kVOTKCw6YpPo7iSgw)
5. Producer Configuration![Enter image description here](https://repost.aws/media/postImages/original/IMWbR6PHJSR3uas_k2uk_MYg)
6. Security Group![Enter image description here](https://repost.aws/media/postImages/original/IM6aghhnWwQ8-5pQzyzLfo8g)

Does anyone can give me some advice or hints? I do some research that not sure I have to add listeners in my cluster configuration?
Thanks for your time and consideration.

Answer

Hi , 
This seems to be a connection issue to your broker. Can you check the following:
1. Your inbound security group should allow traffic (on port 9196) from the public ipv4 address of your local machine. 
2. Your client secret is associated with the cluster
3. Your client has the necessary kafka-acl permissions to perform create topic operation

Hope this helps.

Local machine cannot access to aws MSK

相關內容