chore: do not expose 11883 by default in docker as we do not listen on it

2024-01-02 09:03:43 +01:00 · 2024-01-02 09:03:43 +01:00 · 1649f67996
parent 2b61f5290d
commit 1649f67996
6 changed files with 2 additions and 46 deletions
--- a/Dockerfile.ubuntu20.04.runner
+++ b/Dockerfile.ubuntu20.04.runner
@ -30,11 +30,10 @@ VOLUME ["/opt/emqx/log", "/opt/emqx/data"]
 # - 8083 for WebSocket/HTTP
 # - 8084 for WSS/HTTPS
 # - 8883 port for MQTT(SSL)
-# - 11883 port for internal MQTT/TCP
 # - 18083 for dashboard and API
 # - 4370 default Erlang distrbution port
 # - 5369 for backplain gen_rpc
-EXPOSE 1883 8083 8084 8883 11883 18083 4370 5369
+EXPOSE 1883 8083 8084 8883 18083 4370 5369

 ENTRYPOINT ["/usr/bin/docker-entrypoint.sh"]

--- a/deploy/charts/emqx-enterprise/templates/StatefulSet.yaml
+++ b/deploy/charts/emqx-enterprise/templates/StatefulSet.yaml
@ -111,10 +111,6 @@ spec:
            containerPort: {{ .Values.emqxConfig.EMQX_LISTENERS__WSS__DEFAULT__BIND | default 8084 }}
          - name: dashboard
            containerPort: {{ .Values.emqxConfig.EMQX_DASHBOARD__LISTENER__HTTP__BIND | default 18083 }}
-          {{- if not (empty .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND) }}
-          - name: internalmqtt
-            containerPort: {{ .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND }}
-          {{- end }}
          {{- if not (empty .Values.emqxConfig.EMQX_DASHBOARD__LISTENER__HTTPS__BIND) }}
          - name: dashboardtls
            containerPort: {{ .Values.emqxConfig.EMQX_DASHBOARD__LISTENER__HTTPS__BIND }}
--- a/deploy/charts/emqx-enterprise/templates/service.yaml
+++ b/deploy/charts/emqx-enterprise/templates/service.yaml
@ -41,17 +41,6 @@ spec:
    {{- else if eq .Values.service.type "ClusterIP" }}
    nodePort: null
    {{- end }}
-    {{- if not (empty .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND) }}
-  - name: internalmqtt
-    port: {{ .Values.service.internalmqtt | default 11883 }}
-    protocol: TCP
-    targetPort: internalmqtt
-    {{- if and (or (eq .Values.service.type "NodePort") (eq .Values.service.type "LoadBalancer")) (not (empty .Values.service.nodePorts.internalmqtt)) }}
-    nodePort: {{ .Values.service.nodePorts.internalmqtt }}
-    {{- else if eq .Values.service.type "ClusterIP" }}
-    nodePort: null
-    {{- end }}
-    {{ end }}
  - name: mqttssl
    port: {{ .Values.service.mqttssl | default 8883 }}
    protocol: TCP
@ -124,12 +113,6 @@ spec:
    port: {{ .Values.service.mqtt | default 1883 }}
    protocol: TCP
    targetPort: mqtt
-    {{- if not (empty .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND) }}
-  - name: internalmqtt
-    port: {{ .Values.service.internalmqtt | default 11883 }}
-    protocol: TCP
-    targetPort: internalmqtt
-    {{ end }}
  - name: mqttssl
    port: {{ .Values.service.mqttssl | default 8883 }}
    protocol: TCP
--- a/deploy/charts/emqx/templates/StatefulSet.yaml
+++ b/deploy/charts/emqx/templates/StatefulSet.yaml
@ -111,10 +111,6 @@ spec:
            containerPort: {{ .Values.emqxConfig.EMQX_LISTENERS__WSS__DEFAULT__BIND | default 8084 }}
          - name: dashboard
            containerPort: {{ .Values.emqxConfig.EMQX_DASHBOARD__LISTENERS__HTTP__BIND | default 18083 }}
-          {{- if not (empty .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND) }}
-          - name: internalmqtt
-            containerPort: {{ .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND }}
-          {{- end }}
          {{- if not (empty .Values.emqxConfig.EMQX_DASHBOARD__LISTENERS__HTTPS__BIND) }}
          - name: dashboardtls
            containerPort: {{ .Values.emqxConfig.EMQX_DASHBOARD__LISTENERS__HTTPS__BIND }}
--- a/deploy/charts/emqx/templates/service.yaml
+++ b/deploy/charts/emqx/templates/service.yaml
@ -41,17 +41,6 @@ spec:
    {{- else if eq .Values.service.type "ClusterIP" }}
    nodePort: null
    {{- end }}
-    {{- if not (empty .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND) }}
-  - name: internalmqtt
-    port: {{ .Values.service.internalmqtt | default 11883 }}
-    protocol: TCP
-    targetPort: internalmqtt
-    {{- if and (or (eq .Values.service.type "NodePort") (eq .Values.service.type "LoadBalancer")) (not (empty .Values.service.nodePorts.internalmqtt)) }}
-    nodePort: {{ .Values.service.nodePorts.internalmqtt }}
-    {{- else if eq .Values.service.type "ClusterIP" }}
-    nodePort: null
-    {{- end }}
-    {{ end }}
  - name: mqttssl
    port: {{ .Values.service.mqttssl | default 8883 }}
    protocol: TCP
@ -124,12 +113,6 @@ spec:
    port: {{ .Values.service.mqtt | default 1883 }}
    protocol: TCP
    targetPort: mqtt
-    {{- if not (empty .Values.emqxConfig.EMQX_LISTENERS__TCP__INTERNAL__BIND) }}
-  - name: internalmqtt
-    port: {{ .Values.service.internalmqtt | default 11883 }}
-    protocol: TCP
-    targetPort: internalmqtt
-    {{ end }}
  - name: mqttssl
    port: {{ .Values.service.mqttssl | default 8883 }}
    protocol: TCP
--- a/deploy/docker/Dockerfile
+++ b/deploy/docker/Dockerfile
@ -64,11 +64,10 @@ VOLUME ["/opt/emqx/log", "/opt/emqx/data"]
 # - 8083 for WebSocket/HTTP
 # - 8084 for WSS/HTTPS
 # - 8883 port for MQTT(SSL)
-# - 11883 port for internal MQTT/TCP
 # - 18083 for dashboard and API
 # - 4370 default Erlang distribution port
 # - 5369 for backplane gen_rpc
-EXPOSE 1883 8083 8084 8883 11883 18083 4370 5369
+EXPOSE 1883 8083 8084 8883 18083 4370 5369

 ENTRYPOINT ["/usr/bin/docker-entrypoint.sh"]