I have a 3 node cluster with
a) XXX.XXX.X.59 as master
b) XXX.XXX.X.60 and XXX.XXX.X.61 as data nodes.
I have installed searchguard plugin on all these nodes and generated TLS certificates by running install_demo_configuration.sh script.
now I want to restrict the communication of this cluster to other external IPs say: XXX.XXX.X.70, XXX.XXX.X.62 those were not in cluster i.e., I shouldn’t be able to query or connect to ES cluster other than these IPs.
Do I need to generate certificates for above IPs also?
How can I do this. What changes do I need to make for elasticsearch.yml file
Please provide me assistance.