MQTT without SSL/TLS in AmazonMQ

Question

Hello, from what I understand there is no option to have MQTT insecure protocol (without SSL) using Amazon MQ. Is that correct?

I have some microcontroller with limited capabilities (but sporadically sending 1 msg every second), written in C, that do not allow for SSL connection (at least that's what the engineer has told me, I'm pushing to change that but it's not a short term solution)
We have been using nodejs and other custom made brokers to connect these devices with a central server. In the near future we need to produce thousands of these microcontrollers, so my hope was to use Amazon MQ as the broker and delegate the issue of load balancing and so on...

Is there a way to open another endpoint in Amazon MQ or is there another service I could use to have a broker without SSL, apart from creating and managing my own on a EC2 instance?

Thanks

Answer

A possible solution is to use a [MQTT bridge](http://www.steves-internet-guide.com/mosquitto-bridge-configuration/) With it you could have a local MQTT broker talking to the sensors in the local network, using a non-TLS connection, and have the local MQTT broker forward the messages to AWS using a TLS connection.

An insecure, not recommended option would be: you can also configure [NGINX as a TCP proxy](https://docs.nginx.com/nginx/admin-guide/load-balancer/tcp-udp-load-balancer/), have them installed on ECS/EC2 instances and have them responsible for the encryption.

Both options required extra infrastructure, but those are the ones I am aware. Let see if the community comes with some other options, eager to learn as well!

MQTT without SSL/TLS in AmazonMQ

관련 콘텐츠