From 3289b0d281859e807e3b5b59f6d09309041d99cf Mon Sep 17 00:00:00 2001 From: Jack Pearkes Date: Mon, 25 Jun 2018 10:55:47 -0700 Subject: [PATCH] website: add an example of TLS encryption --- website/source/segmentation.html.erb | 26 ++++++++++++++++++++++++-- 1 file changed, 24 insertions(+), 2 deletions(-) diff --git a/website/source/segmentation.html.erb b/website/source/segmentation.html.erb index da7c28bba3..1b54c2af2e 100644 --- a/website/source/segmentation.html.erb +++ b/website/source/segmentation.html.erb @@ -140,8 +140,30 @@ description: |-
-
- TODO +
$ consul connect proxy -service web \ + -service-addr 127.0.0.1:8000 + -listen 10.0.1.109:7200 +==> Consul Connect proxy starting... + Configuration mode: Flags + Service: web + Public listener: 10.0.1.109:7200 => 127.0.0.1:8000 +... +$ tshark -V \ + -Y "ssl.handshake.certificate" \ + -O "ssl" \ + -f "dst port 7200" +Frame 39: 899 bytes on wire (7192 bits), 899 bytes captured (7192 bits) on interface 0 +Internet Protocol Version 4, Src: 10.0.1.110, Dst: 10.0.1.109 +Transmission Control Protocol, Src Port: 61918, Dst Port: 7200, Seq: 136, Ack: 916, Len: 843 +Secure Sockets Layer + TLSv1.2 Record Layer: Handshake Protocol: Certificate + Version: TLS 1.2 (0x0303) + Handshake Protocol: Certificate + RDNSequence item: 1 item (id-at-commonName=Consul CA 7) + RelativeDistinguishedName item (id-at-commonName=Consul CA 7) + Id: 2.5.4.3 (id-at-commonName) + DirectoryString: printableString (1) + printableString: Consul CA 7