Hi community,
I tried to monitor a 3 nodes Cassandra cluster with the "Apache Cassandra Cluster Monitor" driver version 1.0.2.2
The System Checks table shows two warnings for all three nodes:
1. Repair Needed, Warning, "The tables 'partition_denylist', 'view_build_status' were not repaired within the tombstone removal period. Please increase the gc_grace_seconds or the frequency of the repairs. Repair checks for specific tables can be disabled in the Tables table."
Cassandra-Reaper is running and blacklistTwcsTables is set to true. So everythings is running in auto mode. What should I do, simply disable the check for this 2 tables?
2. Server Encryption, Warning, When your nodes communicate over a zero trust network, it is best to enable inter-node encryption (server_encryption_options_enabled, server_encryption_options_internode_encryption, server_encryption_options_endpoint_verification). For more information on how to enable it go to below link.
I think inter-node encryption is running fine. What is expected in the config file?
My settings:
server_encryption_options:
internode_encryption: all
optional: false
legacy_ssl_storage_port_enabled: false
keystore: ...
keystore_password: ...
require_client_auth: false
truststore: ...
truststore_password: ...
require_endpoint_verification: false
Regarding the 2nd question:
It looks like Dataminer expects require_endpoint_verification = true.
If I set it to true I can only reach each cassandra node locally and got cassandra errors like ” No subject alternative names matching IP address 192.168.2.162 found”. But they are specified in the cert (each keystore contains all 3 nodes with SAN and the rootCA).
How to debug?
Additional question:
Dataminer shows me that one not is not available “Cassandra cluster health is yellow. DataMiner is still fully functional. 1 out of 3 Cassandra nodes are unavailable: ………..:9042.”
But the Cluster monitor driver works fine with this node and I can connect with DevCenter too. What could be wrong?