Difficulty: Beginner
Estimated Time: 15 minutes

Nomad server uses a UDP-based gossip protocol to communicate membership and liveness information. Its traffic can be encrypted with symmetric keys. Enabling gossip encryption requires you to set an encryption key when starting the Nomad server. The key can be set via the encrypt parameter or with the -encrypt command line option. The key must be a base64-encoded string of sixteen random bytes. The same encryption key should be used on every server in a region.

Note: To secure RPC and HTTP communication, you will need to configure TLS. You can learn how in the "Enable TLS Encryption for Nomad" hands-on lab.

Now that you have configured gossip encryption, continue securing the traffic in your Nomad cluster by enabling mTLS to secure your RPC and API traffic.

If you would like to learn more technical information about Nomad's gossip protocol, consult the Serf library documentation. Of specific interest given the topic is the Security Model page

Enable Gossip Encryption for Nomad

Step 1 of 6

Provisioning Extra Course Components

There are a few components that need to be added to the environment. We are adding them now. Please wait for the complete message and then move to the next step.

Example Output

- Fixing Journal
- Installing OS dependencies

and concluding with

- Complete! Move on to the next step.

Once you see this message, you are ready to continue.

This tab will not be visible to users and provides only information to help authors when creating content.

Creating Katacoda Scenarios

Thanks for creating Katacoda scenarios. This tab is designed to help you as an author have quick access the information you need when creating scenarios.

Here are some useful links to get you started.

Running Katacoda Workshops

If you are planning to use Katacoda for workshops, please contact [email protected] to arrange capacity.

Debugging Scenarios

Below is the response from any background scripts run or files uploaded. This stream can aid debugging scenarios.

If you still need assistance, please contact [email protected]