Re: SSL/HTTPS forwarding under Apache + mod_jk + tomcat
Very userful information. Wondering if someone can help me out with similar query: My current set up: I got 1 apache and 2 tomcat servers (all on different machines). I already got SSL set up on individual Tomcat machines to work on port 8443. There is no SSL installed on Apache. I got mod_jk installed on apache to forward "all" HTTP requests to tomcat servers for load balancing. It works fine. I like to also forward all HTTPS requests to tomcat servers. Question: Do I must install certificate (SSL) on apache server? and remove from tomcat servers??? If possible: I prefer to leave SSL on tomcat servers, and just tell apache to forward all HTTPS to tomcats just like HTTP. My tomcat servers will handle the workload fine with https. Can it be done? and how? Thanks heaps, Tezza -- View this message in context: http://www.nabble.com/SSL-HTTPS-forwarding-under-Apache-%2B-mod_jk-%2B-tomcat-tp17817647p25866870.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: SSL/HTTPS forwarding under Apache + mod_jk + tomcat
Peter thank you; this part is clear to me now. Few more clarification: > and remove [certs] from tomcat servers??? No need - they're not doing any harm, they just won't be used in your environment. So in server.xml, I can leave the ??? Also, my current AJP connection is like this: Do I need another connector in server.xml for mod_jk worker to forward HTTPS traffic??? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- View this message in context: http://www.nabble.com/SSL-HTTPS-forwarding-under-Apache-%2B-mod_jk-%2B-tomcat-tp17817647p25868827.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: SSL/HTTPS forwarding under Apache + mod_jk + tomcat
Thanks heaps. I will attempt it and report back in a couple of days. I had a hard time, for over a week now, trying to get these answers from our open source support ppl. -- View this message in context: http://www.nabble.com/SSL-HTTPS-forwarding-under-Apache-%2B-mod_jk-%2B-tomcat-tp17817647p25870792.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: SSL/HTTPS forwarding under Apache + mod_jk + tomcat
Hi, I installed SSL on Apache and now HTTPS works fine over mod_jk. But now I got SSL installed on all servers, apache and each Tomcat (JBoss) as well, see excerpt from my server.xml files from Tomcat. If I remove reference to SSL certificate from server.xml, HTTPS via apache (mod_jk) doesn't. My apache and Tomcats are all on seperate machines. Is this correct, what I have? that SSL need to be on Apache AND each Tomcat??? I am concerned with this set up, thinking it may be doing SSL twice for each request. Tomcat's server.xml --- Apache Configs --- httpd-ssl.conf - ServerAdmin onlinead...@tisc.edu.au DocumentRoot "/docs/admin.tisc.edu.au" ServerName admin.tisc.edu.au ServerAlias admin.tisc.edu.au JkMountFile conf/uriworkermap.properties SSLEngine on SSLCertificateFile "C:/apache/key/star_cert.crt" SSLCertificateKeyFile "C:/apache/key/cert_key.key" SSLCertificateChainFile "C:/apache/key/chain_cert.crt" -- View this message in context: http://www.nabble.com/SSL-HTTPS-forwarding-under-Apache-%2B-mod_jk-%2B-tomcat-tp17817647p25961156.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
