I've thought about this too, and have heard of some people running a
lightweight http proxy upstream of Solr.
With the right network restrictions (only way for a client to reach solr
is via a proxy + the nodes can still talk to each other), you could
achieve the same thing SOLR-4470 is doing, with the drawback of
additional proxy and firewall components to maintain, plus added
overhead on HTTP calls.
A benefit though is a lightweight proxy ahead of Solr could implement
HTTP caching, taking some load off of Solr.
In a perfect world, I'd say rolling out SOLR-4470 is the best solution,
but again, it seems to be losing momentum (please Vote/support the
discussion!). While proxies can achieve this, I think enough people have
pondered about this to implement this as a feature in Solr.
Tim
On 14/04/13 12:32 AM, adfel70 wrote:
Did anyone try blocking access to the ports in the firewall level, and
allowing all the solr servers in the cluster+given control-machines?
Assuming that search request to solr run though a proxy..
--
View this message in context:
http://lucene.472066.n3.nabble.com/Basic-auth-on-SolrCloud-admin-calls-tp4052266p4055868.html
Sent from the Solr - User mailing list archive at Nabble.com.
