Book Image

Learning RabbitMQ

By : Martin Toshev
Book Image

Learning RabbitMQ

By: Martin Toshev

Overview of this book

RabbitMQ is Open Source Message Queuing software based on the Advanced Message Queue Protocol Standard written in the Erlang Language. RabbitMQ is an ideal candidate for large-scale projects ranging from e-commerce and finance to Big Data and social networking because of its ease of use and high performance. Managing RabbitMQ in such a dynamic environment can be a challenging task that requires a good understanding not only of how to work properly with the message broker but also of its best practices and pitfalls. Learning RabbitMQ starts with a concise description of messaging solutions and patterns, then moves on to concrete practical scenarios for publishing and subscribing to the broker along with basic administration. This knowledge is further expanded by exploring how to establish clustering and high availability at the level of the message broker and how to integrate RabbitMQ with a number of technologies such as Spring, and enterprise service bus solutions such as MuleESB and WSO2. We will look at advanced topics such as performance tuning, secure messaging, and the internals of RabbitMQ. Finally we will work through case-studies so that we can see RabbitMQ in action and, if something goes wrong, we'll learn to resolve it in the Troubleshooting section.
Table of Contents (18 chapters)
Learning RabbitMQ
Credits
About the Author
About the Reviewers
www.PacktPub.com
Preface
Index

Secure communication


Let's turn our attention to how the AMQP messages can be transferred securely on the wire and how to ensure secure communication between the publishers/subscribers and our message broker. Even if the message broker is not visible to the outside world, there is still the risk of an insider attack taking place. This could be either a network tap or hub that is added with malicious intent to the communication link between the message broker and publishing/subscribing applications or a form of ARP (address resolution protocol) poisoning. In both cases, traffic can be forwarded to a listening port on a machine that aims to sniff communication. The next step is to capture and analyze the incoming traffic. To simulate the capturing and analysis phase, we will use Wireshark (version.1.12.8) along with the AMQP dissector module that comes with the tool in order to listen on the network interface of a local workstation that has a RabbitMQ instance running. First, download and...