To make port 80 use APR and port 443 NOT use APR, I have tried it
several times, without any luck. After tomcat starts, port 80 is fine,
but connections to port 443 are always timeout. It looks from the log
the Http11BaseProtocol was not used on port 443. The log looks like:
===============================================
Jun 22, 2006 1:33:14 PM org.apache.coyote.http11.Http11AprProtocol init
INFO: Initializing Coyote HTTP/1.1 on http-80
Jun 22, 2006 1:33:14 PM org.apache.coyote.http11.Http11AprProtocol init
INFO: Initializing Coyote HTTP/1.1 on http-443
Jun 22, 2006 1:33:14 PM org.apache.coyote.ajp.AjpAprProtocol init
INFO: Initializing Coyote AJP/1.3 on ajp-8009
Jun 22, 2006 1:33:14 PM org.apache.catalina.startup.Catalina load
INFO: Initialization processed in 1554 ms
Jun 22, 2006 1:33:14 PM org.apache.catalina.core.StandardService start
INFO: Starting service Catalina
Jun 22, 2006 1:33:14 PM org.apache.catalina.core.StandardEngine start
INFO: Starting Servlet Engine: Apache Tomcat/5.5.17
Jun 22, 2006 1:33:14 PM org.apache.catalina.core.StandardHost start
INFO: XML validation disabled
Jun 22, 2006 1:33:15 PM org.apache.catalina.core.ApplicationContext log
INFO: ContextListener: contextInitialized()
Jun 22, 2006 1:33:15 PM org.apache.catalina.core.ApplicationContext log
INFO: SessionListener: contextInitialized()
Jun 22, 2006 1:33:15 PM org.apache.catalina.core.ApplicationContext log
INFO: org.apache.webapp.balancer.BalancerFilter: init(): ruleChain:
[org.apache.
webapp.balancer.RuleChain:
[org.apache.webapp.balancer.rules.URLStringMatchRule:
Target string: News / Redirect URL:
http://www.cnn.com], [org.apache.webapp.bal
ancer.rules.RequestParameterRule: Target param name:
paramName / Target param va
lue: paramValue / Redirect URL: http://www.yahoo.com],
[org.apache.webapp.balanc
er.rules.AcceptEverythingRule: Redirect URL: http://jakarta.apache.org]]
Jun 22, 2006 1:33:15 PM org.apache.catalina.core.ApplicationContext log
INFO: ContextListener: contextInitialized()
Jun 22, 2006 1:33:15 PM org.apache.catalina.core.ApplicationContext log
INFO: SessionListener: contextInitialized()
Jun 22, 2006 1:33:16 PM org.apache.coyote.http11.Http11AprProtocol start
INFO: Starting Coyote HTTP/1.1 on http-80
Jun 22, 2006 1:33:16 PM org.apache.coyote.http11.Http11AprProtocol start
INFO: Starting Coyote HTTP/1.1 on http-443
Jun 22, 2006 1:33:16 PM org.apache.coyote.ajp.AjpAprProtocol start
INFO: Starting Coyote AJP/1.3 on ajp-8009
Jun 22, 2006 1:33:16 PM org.apache.catalina.storeconfig.StoreLoader load
INFO: Find registry server-registry.xml at classpath resource
Jun 22, 2006 1:33:16 PM org.apache.catalina.startup.Catalina start
INFO: Server startup in 2840 ms
=============================================
I built the jni connectors without ssl:
./buildconf --with-apr=/usr/local/apr --without-ssl
./configure --with-apr=/usr/local/apr --without-ssl
make
make install
My connectors figuration:
<Connector port="80" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" redirectPort="443" acceptCount="100"
connectionTimeout="20000" debug="0"
disableUploadTimeout="true" />
<Connector class="org.apache.coyote.http11.Http11BaseProtocol"
port="443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
debug="0" scheme="https"
secure="true" acceptCount="100" clientAuth="false"
keystoreType="PKCS12"
keystoreFile="/data/CA/mycert.p12" keystorePass="mypass" />
Please correct me if anything wrong.
From my point of view, APR optimization on port 80 is very important
for static content, but not important as on port 443. Since I could not
wait Http11AprProtocol initialization on port 443 for 2+ hours on my
FC5-amd_64, I would be very happy to see if Http11AprProtocol works on
port 80 and Http11BaseProtocol works on port 443 with PKCS12 certificate.
Regards,
Jeff
Markus Schönhaber wrote:
Mladen Turk wrote:
Markus Schönhaber wrote:
Maybe someone of the devs chimes in and proves me right or wrong.
Use class="org.apache.coyote.http11.Http11BaseProtocol" inside
<Connector ...
Thanks for proving me wrong ;-)
Regards
mks
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
