I figured it out... my URL's have the port number in them, i.e.: https://myhost.com:8080/ppro_lb/online?command=iosignon_ I did not have SSL enabled in tomcat, just apache. I enabled SSL in tomcat and changed the port number used in my URL's to the SSL connector port. Now everything works.
- Sean -----Original Message----- From: Sean Neeley [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 21, 2007 9:34 AM To: Tomcat Users List Subject: RE: mod_jk load balancing with SSL? Tim, Thank you. That was very helpful. It looks like your settings are very similar to mine. The difference is that you are distributing traffic to tomcats on several different servers and I am distributing to several tomcats on a single server. I'm guessing that something needs to be changed in my server.xml file. Perhaps I need to change port 8443 in one of the tomcats? What changes did you make to your server.xml if any? Thanks again. - Sean -----Original Message----- From: Tim Lucia [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 20, 2007 6:49 PM To: 'Tomcat Users List' Subject: RE: mod_jk load balancing with SSL? I do -- here are some snippets from the configuration files: conf.d/ssl.conf: LoadModule ssl_module modules/mod_ssl.so Listen 443 <VirtualHost www.mycompanyname.com:443> ServerName www.mycompanyname.com:443 SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key DocumentRoot /usr/local/esped/www.mycompanyname.com ServerAlias www.mycompanyname.com ErrorLog logs/www.mycompanyname.com-error_log CustomLog logs/www.mycompanyname.com-access_log commonWithTime # Forward the following URI patterns to tomcat JkMount /servlet/* wlb JkMount /*.jsp wlb JkMount /jkmanager jkstatus # Default / page to index.jsp RedirectMatch ^/$ /index.jsp </VirtualHost> Workers.properties: worker.list=wlb,jkstatus worker.tc01_9009.type=ajp13 worker.tc01_9009.host=tc01 worker.tc01_9009.port=9009 worker.tc01_9009.cachesize=500 worker.tc02_9009.type=ajp13 worker.tc02_9009.host=tc02 worker.tc02_9009.port=9009 worker.tc02_9009.cachesize=500 worker.tc03_9009.type=ajp13 worker.tc03_9009.host=tc03 worker.tc03_9009.port=9009 worker.tc03_9009.cachesize=500 worker.wlb.type=lb worker.wlb.balance_workers=tc01_9009,tc02_9009,tc03_9009 worker.wlb.method=T worker.wlb.sticky_session=1 worker.wlb.sticky_session_force=0 worker.jkstatus.type=status Tim > -----Original Message----- > From: Sean Neeley [mailto:[EMAIL PROTECTED] > Sent: Tuesday, March 20, 2007 5:05 PM > To: Tomcat Users List > Subject: RE: mod_jk load balancing with SSL? > > No one has ever done this? Help?! > > -----Original Message----- > From: Sean Neeley [mailto:[EMAIL PROTECTED] > Sent: Monday, March 19, 2007 12:16 PM > To: users@tomcat.apache.org > Subject: mod_jk load balancing with SSL? > > I'm using Apache Tomcat/5.5.15 and trying to get load balancing working > with SSL. Are there any tricks to this setup? I have two tomcat > instances on one server, and I want to split sessions between them. > I've set this up before without SSL on a different machine, but on this > one particular server I cannot get it to work. When I enter the servlet > url into my web browser, the browser just hangs. I turned on mod_jk > logging and did not find anything useful in the log. Is there a HOW-TO > for setting this up? Any help would be appreciated. > > Here is what my workers.properties file looks like: > === > workers.tomcat_home=/var/tomcat5 > workers.java_home=$JAVA_HOME > ps=/ > worker.list=default,tc0,tc1,loadbalancer > worker.default.port=8009 > worker.default.host=localhost > worker.default.type=ajp13 > worker.default.lbfactor=1 > worker.tc0.port=8209 > worker.tc0.host=localhost > worker.tc0.type=ajp13 > worker.tc0.lbfactor=100 > worker.tc1.port=8210 > worker.tc1.host=localhost > worker.tc1.type=ajp13 > worker.tc1.lbfactor=1 > worker.loadbalancer.type=lb > worker.loadbalancer.balanced_workers=tc0,tc1 > > > Here is the bottom of my httpd.conf: > === > <IfModule mod_ssl.c> > Listen 443 > <VirtualHost *:443> > DocumentRoot /usr/htdocs > ErrorLog /usr/logs/error_ssl_log > CustomLog /usr/logs/access_ssl_log common > SSLEngine on > SSLCertificateFile /usr/conf/ssl.crt/server.crt > SSLCertificateKeyFile /usr/conf/ssl.key/server.key > SSLCertificateChainFile /usr/conf/ssl.crt/intermediate.crt > </VirtualHost> > </IfModule> > LoadModule jk_module /usr/libexec/mod_jk.so > JkWorkersFile /usr/conf/workers.properties > JkLogFile /usr/logs/mod_jk.log > JkMount /deploy/* default > JkMount /ppro/* loadbalancer > JkMount /dss0/* tc0 > JkMount /dss1/* tc1 > JkLogLevel debug > === > > For each tomcat server.xml, I changed the port numbers so they would not > conflict, and added the jvmRoute="tc0" and jvmRoute="tc1" to the xml. > > Thanks, > - Sean > > > > --------------------------------------------------------------------- > To start a new topic, e-mail: users@tomcat.apache.org > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > --------------------------------------------------------------------- > To start a new topic, e-mail: users@tomcat.apache.org > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
