Re: tomcat iptables problem - problem kinda solved

2007-10-05 Thread Dieter Schicker
Hi, just in case someone has the same problem. It's obviously a problem with the fwbuilder software. I know used firehol to build the rules and everything works fine. What about doing /etc/init.d/iptables stop when the firewall is running. Does Tomcat then start and stop more quickly?

Re: tomcat iptables problem

2007-10-03 Thread Dieter Schicker
Thanks a lot for all your valuable answers! Unfortunately none of them helped me. Let me give you an example of this strange behavior (tomcat starting very slowly [3min.]). iptables Ruleset: - Chain INPUT (policy DROP) target prot opt

Re: tomcat iptables problem

2007-10-03 Thread Dieter Schicker
Sorry, of course the accept bla bla goes into a separate line! Dieter Schicker wrote: Thanks a lot for all your valuable answers! Unfortunately none of them helped me. Let me give you an example of this strange behavior (tomcat starting very slowly [3min.]). iptables Ruleset:

Re: tomcat iptables problem

2007-10-03 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dieter, Dieter Schicker wrote: [all chains set to drop unless otherwise configured] = Tomcat starts slowly. :( Then I do the following: [all chains set to accept, all chains empty] = Tomcat still (!!!) starts slowly! (Why???) :( Only

tomcat iptables problem

2007-10-02 Thread Dieter Schicker
Hi, this is my first mail to this list so please forgive me if it's the wrong list. Here's my problem: I'm running tomcat 5.5.23 on Debian Etch (4.0) with Linux kernel 2.6.18-4-xen-amd6. Now I set up an iptables firewall (with fwbuilder) with the following open ports: 8080 (http), 8005

Re: tomcat iptables problem

2007-10-02 Thread albrecht andrzejewski
Quoting Dieter Schicker [EMAIL PROTECTED]: With this configuration I have the following behavior: Tomcat needs 3 minutes to shut down and another 3 minutes to start up again. If it runs it runs perfectly ... Any ideas? It can occurs if you are working with a localhost url... If you do,

Re: tomcat iptables problem

2007-10-02 Thread Pid
Dieter Schicker wrote: Hi, this is my first mail to this list so please forgive me if it's the wrong list. Here's my problem: I'm running tomcat 5.5.23 on Debian Etch (4.0) with Linux kernel 2.6.18-4-xen-amd6. Now I set up an iptables firewall (with fwbuilder) with the following open

Re: tomcat iptables problem

2007-10-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dieter, Dieter Schicker wrote: Now I set up an iptables firewall (with fwbuilder) with the following open ports: 8080 (http), 8005 (shutdown?), 8009 (ajp connector) and all lo traffic is allowed. What about outgoing allowed ports? With this