I am running a jboss eap 4.3.0 cluster with 3 nodes.
The communication between 3 nodes is based on JGroups protocol by using UDP/IP Multicast.
I am curious security mechanism about the Multicast address,e.g. by default in cluster-service.xml udpGroup:228.1.2.3:45567
It seems that anyone could use this address and try to join the Multicast Group. Can some "bad guy" in the network easily write a program or directly run another jboss server to listen on this Multicast address/port and fetch the packet(information)??? If yes, how to secure it?
Thank you.
You could use AUTH to prevent un-authorized nodes to join the cluster and/or ENCRYPT to encrypt the traffic between cluster nodes.