Using the Mosquitto_ctrl Tool

The Mosquitto_ctrl tool was introduced with mosquitto v2 and is used for dynamically making user and ACL changes on a mosquitto broker. To use it the target broker needs to have the dynamic security plugin enabled. The tool is effectively a modified mosquitto publish client and if you subscribe to the $CONTROL topic you can see the messages that it publishes (example shown below).

Continue reading

How to Install The Mosquitto MQTT Broker on Linux

In this tutorial we will look at how you install and run the mosquitto MQTT broker on a Linux server running for example Raspberry Pi or Ubuntu. Here are the steps I used on Ubuntu. sudo apt-add-repository ppa:mosquitto-dev/mosquitto-ppa sudo apt-get update sudo apt-get install mosquitto sudo apt-get install mosquitto-clients sudo apt clean For Raspberry Pi the instructions are taken from  here: wget http://repo.mosquitto.org/debian/mosquitto-repo.gpg.key sudo apt-key add mosquitto-repo.gpg.key Then make the repository available : cd /etc/apt/sources.list.d/ Then , depending on which version of debian you are using: sudo wget http://repo.mosquitto.org/debian/mosquitto-jessie.list sudo wget http://repo.mosquitto.org/debian/mosquitto-stretch.list sudo wget http://repo.mosquitto.org/debian/mosquitto-buster.list Then update apt information: sudo

Continue reading

Configure a Mosquitto Bridge With SSL Encryption

It is very likely that a bridged connection between two brokers will be encrypted. The Mosquitto broker (server) provides two methods of using SSL encryption on a bridged connection Certificate encryption PSK encryption In this tutorial we will be configuring a secure bridged connection using both methods. If you are new to certificates then you should read this tutorial on SSL encryption and certificates before continuing.

Continue reading

Mosquitto MQTT Bridge -Usage and Configuration

A MQTT bridge lets you connect two MQTT brokers together. They are generally used for sharing messages between systems. A common usage is connect edge MQTT brokers to a central or remote MQTT network. The Mosquitto broker (server) can be configured to work as an MQTT bridge.

Continue reading

Mosquitto SSL Configuration -MQTT TLS Security

In this tutorial we will configure the mosquitto MQTT broker to use TLS security. We will be using openssl to create our own Certificate authority (CA), Server keys and certificates. We will also test the broker by using the Paho Python client to connect to the broker using a SSL connection. You should have a basic understanding of PKI, certificates and keys before proceeding. See SSL and SSL Certificates Explained

Continue reading