Hi all,
I just configured Tomcat 6.0.18 (over CentOS 5.3 and Java 1.6.0u13) to
work with two virtual hosts over https, and wanted to check is this the
proper configuration: two https connectors (bounded to the IPs) with two
keystores, two Host elements, all inside one Service element.
Here is the server.xml excerpt:
<Service name="Catalina">
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443" />
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
address="123.123.123.111"
keystoreFile="/home/tomcat/.keystore-111" />
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
address="123.123.123.222"
keystoreFile="/home/tomcat/.keystore-222" />
<Engine name="Catalina" defaultHost="host1.company.com">
<Realm className="org.apache.catalina.realm.UserDatabaseRealm"
resourceName="UserDatabase"/>
<Host name="host1.company.com" appBase="host1apps"
unpackWARs="true" autoDeploy="true"
xmlValidation="false" xmlNamespaceAware="false">
</Host>
<Host name="host2.company.com" appBase="host2apps"
unpackWARs="true" autoDeploy="true"
xmlValidation="false" xmlNamespaceAware="false">
</Host>
</Engine>
</Service>
DNS resolves host1 to 123.123.123.111 and host2 to 123.123.123.222.
Does this look right?
Regards,
Ognjen
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
