Hi All, If possible, I think it's better to let 443 (https) requests hitting an instance be redirected to 80 so you don't have to configure an SSL locally in the instance itself. It's very cumbersome to do it that way.
You can also use a single instance behind an AWS LB if you only have one instance to use. Just my two cents worth - Andy s. On Fri, Dec 27, 2019 at 2:08 PM James H. H. Lampert < jam...@touchtonecorp.com> wrote: > >> As it happens, one way or another (and I'm not entirely sure > >> *which* way; I'd have to look at my notes), we *do* have Tomcat > >> listening directly on 443 (but not 80; nothing there is currently > >> listening on 80) on that particular EC2 instance (and I'm pretty > >> sure we have HTTPD running on a *different* port, for the SVN and > >> Trac sharing the box). > > Hmm. It seems I was mistaken about two things: (1) that the Tomcat > server under discussion is listening *directly* on 443, and (2) that I > could find my notes on how I set the box up. > > What I can find is the server.xml file, and the active connector > definition: > > <Connector port="8443" proxyPort="443" > protocol="org.apache.coyote.http11.Http11NioProtocol" > . . . > clientAuth="false" sslProtocol="TLS" /> > > The thing that catches my eye is > port="8443" proxyPort="443" > > I hope that indicates how it is I'm getting this to look like port 443 > to the outside world, because I honestly can't remember what I did (even > though it looks like it's only been six months since I did it). > > -- > James H. H. Lampert > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > -- Andrew G. Stanton CEO/Founder/Principal Engineer, Stanton Web Applications, Inc. Founder, GetMorty.io and UniversalWallet.io email: andrewgstan...@gmail.com also: a...@stantonweb.com web: www.stantonweb.com *mobile: 415-793-4072* tel/fax: 415-738-8501 linkedin: https://www.linkedin.com/in/andrew-g-stanton/ twitter: https://twitter.com/andrewgstanton This message and any attachments are solely for the individual(s) named above and others who have been specifically authorized to receive such and may contain information which is confidential, privileged or exempt from disclosure under applicable law. If you are not the intended recipient, any disclosure, copying, use or distribution of the information included in this message and any attachments is strictly prohibited. If you have received this communication in error, please notify us by reply e-mail and immediately and permanently delete this message and any attachments. Thank you.
