Making Cassandra nodetool accessible remotely
To run one of the commands of the Standalone Cassandra Backup Tool against a Cassandra cluster or a remote single-node Cassandra database, the Cassandra nodetool has to be accessible remotely.
The procedures below specify how you can make the Cassandra nodetool accessible remotely on a Windows server and on a Linux server.
Windows
Open Regedit and go to the following key:
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Apache Software Foundation\Procrun 2.0\cassandra\Parameters\JavaOpen the options key and add the following options:
-Dcassandra.jmx.remote.port=7199 -Dcom.sun.management.jmxremote.rmi.port=7199 -Djava.rmi.server.hostname=10.11.1.44 (a publicly accessibly IP address to which the rmi server will listen)On the host, add an inbound firewall rule to expose port 7199.
Restart Cassandra.
Linux
In
/etc/Cassandra/cassandra-env.sh, comment out the following lines by placing # in front of each line:#if [ "x$LOCAL_JMX" = "x" ]; then # LOCAL_JMX=yes #fiIn the same file, add the following lines:
JVM_OPTS="$JVM_OPTS -Dcassandra.jmx.remote.port=7199" JVM_OPTS="$JVM_OPTS -Dcom.sun.management.jmxremote.rmi.port=7199" JVM_OPTS="$JVM_OPTS -Djava.rmi.server.hostname=10.11.1.44" (a publicly accessibly IP address to which the rmi server will listen)On the host, add an inbound firewall rule to expose port 7199.
Restart Cassandra using systemctl (not service).
sudo systemctl stop cassandra sudo systemctl start cassandra
Note
When nodetool is made accessible remotely, JMX authentication needs to be factored in. Additional options can be set in the cassandra-env.sh file to either enable or disable this.
JVM_OPTS="$JVM_OPTS -Dcom.sun.management.jmxremote.authenticate=false" <Disables authentication, which is enabled by default>