Tomcat 5.5.30 - connection refused with APR
Hello, I've set up Tomcat 5.5.30 and am using the native interface but the ports don't seem be be opening. I'm using APR version 1.4.2 (built with disable ipv6) OpenSSL 0.9.7m Tomcat Native Interface 1.1.20 (supplied in tomcat 5.5.30 archive) I have two connectors defined, one on port 8080 and one on port 8443 My tomcat log contains the following output: [2010-09-28 13:00:48,512] INFO main org.apache.catalina.core.AprLifecycleListener - Loaded APR based Apache Tomcat Native library 1.1.20. [2010-09-28 13:00:48,514] INFO main org.apache.catalina.core.AprLifecycleListener - APR capabilities: IPv6 [false], sendfile [true], accept filters [false], random [true]. [2010-09-28 13:00:49,053] INFO main org.apache.coyote.http11.Http11AprProtocol - Initializing Coyote HTTP/1.1 on http-8080 [2010-09-28 13:00:49,057] INFO main org.apache.coyote.http11.Http11AprProtocol - Initializing Coyote HTTP/1.1 on http-8443 [2010-09-28 13:00:49,059] INFO main org.apache.coyote.ajp.AjpAprProtocol - Initializing Coyote AJP/1.3 on ajp-8009 [2010-09-28 13:00:49,059] INFO main org.apache.catalina.startup.Catalina - Initialization processed in 1892 ms So it looks as if APR is loaded and ports 8080/8443 are opened. When I run netstat I see tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 9668/java tcp 0 0 0.0.0.0:8443 0.0.0.0:* LISTEN 9668/java So the ports have been opened, and I've completely disabled the firewall but I still get connection refused messages. Any ideas on where to look next for the cause of the trouble? I'm running RedHat with kernel 2.4.18 Thanks, Mike
Re: Tomcat 5.5.30 - connection refused with APR
Hi André, I've tried remote browser / telnet and a local telnet session to see that the connection is being refused. As an update I've got port 8080 working (A reboot fixed that although I'm at a loss to understand why.) Connections over port 8443 are causing tomcat to crash due to an error coming out of libcrypto. I think I'll rebuild my openssl and make sure it's using the proper one. -Mike On Tue, Sep 28, 2010 at 3:07 PM, André Warnier a...@ice-sa.com wrote: Mike Gardiner wrote: Hello, I've set up Tomcat 5.5.30 and am using the native interface but the ports don't seem be be opening. I'm using APR version 1.4.2 (built with disable ipv6) OpenSSL 0.9.7m Tomcat Native Interface 1.1.20 (supplied in tomcat 5.5.30 archive) I have two connectors defined, one on port 8080 and one on port 8443 My tomcat log contains the following output: [2010-09-28 13:00:48,512] INFO main org.apache.catalina.core.AprLifecycleListener - Loaded APR based Apache Tomcat Native library 1.1.20. [2010-09-28 13:00:48,514] INFO main org.apache.catalina.core.AprLifecycleListener - APR capabilities: IPv6 [false], sendfile [true], accept filters [false], random [true]. [2010-09-28 13:00:49,053] INFO main org.apache.coyote.http11.Http11AprProtocol - Initializing Coyote HTTP/1.1 on http-8080 [2010-09-28 13:00:49,057] INFO main org.apache.coyote.http11.Http11AprProtocol - Initializing Coyote HTTP/1.1 on http-8443 [2010-09-28 13:00:49,059] INFO main org.apache.coyote.ajp.AjpAprProtocol - Initializing Coyote AJP/1.3 on ajp-8009 [2010-09-28 13:00:49,059] INFO main org.apache.catalina.startup.Catalina - Initialization processed in 1892 ms So it looks as if APR is loaded and ports 8080/8443 are opened. When I run netstat I see tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 9668/java tcp 0 0 0.0.0.0:8443 0.0.0.0:* LISTEN 9668/java So the ports have been opened, and I've completely disabled the firewall but I still get connection refused messages. Any ideas on where to look next for the cause of the trouble? I'm running RedHat with kernel 2.4.18 With what/how are you getting these connection refused messages ? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Configuring Cipher Suites with Tomcat 6
Hello, I'm sure this is detailed somewhere but I can't find it for the life of me and it's been driving me nuts all day. How can I limit the cipher suites used by Tomcat for an SSL connection? I tried setting SSLCipherSuite=SOME_CIPHER, to only allow a single cipher but when a client connects it still uses whatever is the first cipher in the client's list rather than using the cipher I specify in the server.xml file. My complete connector tag is: Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true maxThreads=150 scheme=https secure=true clientAuth=false sslProtocol=SSLv3 keystoreType=luna keyAlias=tomcat keystore=/.keystore SSLCipherSuite=SSL_RSA_WITH_3DES_EDE_CBC_SHA/ Any help would be great Mike ___ Join Excite! - http://www.excite.com The most personalized portal on the Web! - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
