a year ago
Hello, It looks like the Postgres HA with Repmgr template does not offer SSL by default and somehow it's still on Postgres 16. It there anyway this template could be updated to provide SSL and or be upgraded to Postgres 17? This Postgres template does come with SSL, but it does not come with HA 😦
13 Replies
a year ago
we are likely going to be keeping that template on 16 for the time being, as for SSL, it is not needed as long as you connect over the private network
hmm, I think TLS termination should happen at least at pgpool wether or not connection is done via the private or public network.
a year ago
there is no benefit to that since the private network is an encrypted wireguard tunnel
a year ago
what's the usecase for connecting publicly?
a year ago
hmmm not sure how that answers my question
One use case for connecting publicly is that I have batch jobs that run outside of railway.
a year ago
why can't those be ran within railway?
The jobs will need to move off Google Dataflow first before they can be run within railway.
Is there any specific reason why a self signed certificate is not generated for PGPool?
a year ago
because pgpool does not generate a certificate