httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ralf Glauberman" <rglauber...@michaeli-gymnasium.de>
Subject Re: [users@httpd] mod_jk2 https
Date Wed, 01 Dec 2004 15:40:23 GMT
so, try telnet localhost 443. and get a loalhost/server-info page (you'll 
need mod_info). what does it say?

----- Original Message ----- 
From: Andrew M
To: users@httpd.apache.org
Sent: Wednesday, December 01, 2004 1:52 PM
Subject: Re: [users@httpd] mod_jk2 https


Ralf,
when I do telnet I get the following message:

Trying ::1...
telnet: connect to address ::1: Connection refused
Trying 127.0.0.1...
Connected to localhost.

So all is fine on http://127.0.0.1. I'm still being refused on 
https://127.0.0.1

Andrew


On 1 Dec 2004, at 11:46, Ralf Glauberman wrote:


apache has nothing to do with ping!
the message in your log doesn't say anything about mod_ssl, its about 
mod_auth_ldap which can't comunicate with an ldap-server over ssl. try lynx 
http://localhost/ and lynx https://localhost/, if lynx can't connect, your 
apache isn't running. if you don't have lynx, try telnet localhost 80.
what do you get?
ralf

----- Original Message ----- From: "Andrew M" <andrew@jibeya.com>
To: <users@httpd.apache.org>
Sent: Wednesday, December 01, 2004 11:05 AM
Subject: Re: [users@httpd] mod_jk2 https



Parviz,
yes apache is up and running, you can see this if you ping 
www.beyarecords.com. You are right though, I can't see port 80 or 443 
either! HELP!!!!

Andrew
On 1 Dec 2004, at 09:45, parviz wrote:


I cant see you listening on port 80 or 443. Is your apache up?

Parviz


On Wed, 2004-12-01 at 01:28, Andrew M wrote:

Parviz,
here is part of the output generated from netstat -an:

tcp4 0 0 81.98.165.128.4444 81.98.165.128.54548
ESTABLISHED
tcp4 0 0 81.98.165.128.54548 81.98.165.128.4444
ESTABLISHED
tcp4 0 0 127.0.0.1.57474 127.0.0.1.631
CLOSE_WAIT
tcp4 0 0 127.0.0.1.57473 127.0.0.1.631
CLOSE_WAIT
tcp4 0 0 81.98.165.128.53524 207.46.107.69.1863
ESTABLISHED
tcp46 0 0 *.8009 *.*
LISTEN
tcp46 0 0 *.8093 *.*
LISTEN
tcp4 0 0 81.98.165.128.3528 81.98.165.128.64161
ESTABLISHED
tcp4 0 0 81.98.165.128.64161 81.98.165.128.3528
ESTABLISHED
tcp46 0 0 *.3528 *.*
LISTEN
tcp46 0 0 *.8080 *.*
LISTEN
tcp46 0 0 *.4445 *.*
LISTEN
tcp46 0 0 *.4444 *.*
LISTEN
tcp46 0 0 *.8083 *.*
LISTEN
tcp46 0 0 *.1099 *.*
LISTEN
tcp46 0 0 *.1098 *.*
LISTEN
tcp4 0 0 81.98.165.128.50438 205.188.8.138.5190
ESTABLISHED
tcp4 0 0 *.* *.*
CLOSED
tcp4 0 0 *.5432 *.*
LISTEN
tcp6 0 0 *.5432 *.*
LISTEN
tcp4 0 0 *.* *.*
CLOSED
tcp4 0 0 *.* *.*
CLOSED
tcp4 0 0 *.139 *.*
LISTEN
tcp4 0 0 127.0.0.1.631 *.*
LISTEN
tcp4 0 0 127.0.0.1.1033 127.0.0.1.916
ESTABLISHED
tcp4 0 0 127.0.0.1.916 127.0.0.1.1033
ESTABLISHED
tcp4 0 0 127.0.0.1.1033 *.*
LISTEN
udp4 0 0 127.0.0.1.49814 127.0.0.1.49814
udp4 0 0 81.98.165.128.49810 *.*
udp6 0 0 ::1.49242 ::1.49242
udp4 0 0 81.98.165.128.138 *.*
udp4 0 0 81.98.165.128.137 *.*
udp4 0 0 *.138 *.*
udp4 0 0 *.* *.*
udp4 0 0 *.* *.*
udp4 0 0 *.137 *.*
udp4 0 0 *.631 *.*
udp4 0 0 127.0.0.1.49159 127.0.0.1.1022
udp4 0 0 127.0.0.1.49158 127.0.0.1.1022
udp4 0 0 127.0.0.1.1022 *.*
udp4 0 0 127.0.0.1.49156 127.0.0.1.1023
udp4 0 0 127.0.0.1.1023 *.*
udp4 0 0 81.98.165.128.123 *.*
udp4 0 0 127.0.0.1.123 *.*
udp4 0 0 *.123 *.*
udp4 0 0 *.5353 *.*
udp4 0 0 *.68 *.*
udp4 0 0 127.0.0.1.1033 *.*
udp4 0 0 *.514 *.*
udp6 0 0 *.514 *.*
icm6 0 0 *.* *.*
icm6 0 0 *.* *.*

regards

Andrew
On 1 Dec 2004, at 09:22, parviz wrote:

can you run "netstat -an". There are just lines that are
toolong and I
dont see the port number.

Parviz
On Wed, 2004-12-01 at 01:14, Andrew M wrote:
Parviz,
I ran netstat and got the following output:

Active Internet connections
Proto Recv-Q Send-Q Local Address Foreign
Address
(state)
tcp4 0 0 localhost.57474
localhost.ipp
CLOSE_WAIT
tcp4 0 0 localhost.57473
localhost.ipp
CLOSE_WAIT
tcp4 0 0 cpc3-nott2-5-0-c.53524
baym-cs269.msgr..msnp
ESTABLISHED
tcp4 0 0 cpc3-nott2-5-0-c.jboss
cpc3-nott2-5-0-c.64161ESTABLISHED
tcp4 0 0 cpc3-nott2-5-0-c.64161
cpc3-nott2-5-0-c.jbossESTABLISHED
tcp4 0 0 cpc3-nott2-5-0-c.50438
205.188.8.138.aol
ESTABLISHED
tcp4 0 0 localhost.netinfo-loca
localhost.916
ESTABLISHED
tcp4 0 0 localhost.916
localhost.netinfo-locaESTABLISHED
udp4 0 0 localhost.49814
localhost.49814
udp4 0 0 cpc3-nott2-5-0-c.49810
*.*
udp6 0 0 localhost.49242
localhost.49242
udp4 0 0 cpc3-nott2-5-0-c.netbi
*.*
udp4 0 0 cpc3-nott2-5-0-c.netbi
*.*
udp4 0 0 *.netbios-dgm
*.*
udp4 0 0 *.*
*.*
udp4 0 0 *.*
*.*
udp4 0 0 *.netbios-ns
*.*
udp4 0 0 *.ipp
*.*
udp4 0 0 localhost.49159
localhost.1022
udp4 0 0 localhost.49158
localhost.1022
udp4 0 0 localhost.1022
*.*
udp4 0 0 localhost.49156
localhost.1023
udp4 0 0 localhost.1023
*.*
udp4 0 0 cpc3-nott2-5-0-c.ntp
*.*
udp4 0 0 localhost.ntp
*.*
udp4 0 0 *.ntp
*.*
udp4 0 0 *.mdns
*.*
udp4 0 0 *.bootpc
*.*
udp4 0 0 localhost.netinfo-loca
*.*
udp4 0 0 *.syslog
*.*
udp6 0 0 *.514
*.*
icm6 0 0 *.*
*.*
icm6 0 0 *.*
*.*
Active LOCAL (UNIX) domain sockets
Address Type Recv-Q Send-Q Inode Conn
Refs Nextref Addr
1d9b118 stream 296 0 0 0
0 0
1d9b310 stream 0 0 0 1d9b5e8
0 0
1d9b5e8 stream 0 0 0 1d9b310
0 0
1d9b460 stream 0 0 0 1d9b5b0
0 0
1d9b5b0 stream 0 0 0 1d9b460
0 0
1d9b348 stream 0 0 0 0
0 0
1d9b070 stream 0 0 0 0
0 0
1d9b1c0 stream 0 0 2560e40 0
0
0/tmp/icssuis501
1d9b1f8 stream 0 0 0 1d9b2a0
0 0
1d9b2a0 stream 0 0 0 1d9b1f8
0 0
1d9b268 stream 0 0 0 1d9b2d8
0 0
1d9b2d8 stream 0 0 0 1d9b268
0 0
1d9b738 stream 0 0 0 1d9b700
0 0
1d9b700 stream 0 0 0 1d9b738
0 0
1d9b7a8 stream 0 0 2597b58 0
0
0/tmp/.s.PGSQL.5432
1d9b818 stream 0 0 0 1d9ba10
0 0
1d9ba10 stream 0 0 0 1d9b818
0 0
1d9b9a0 stream 0 0 0 1d9b7e0
0 0
1d9b7e0 stream 0 0 0 1d9b9a0
0 0
1d9b968 stream 0 0 0 1d9ba80
0 0
1d9ba80 stream 0 0 0 1d9b968
0 0
1d9baf0 stream 0 0 0 1d9ba48
0 0
1d9ba48 stream 0 0 0 1d9baf0
0 0
1d9b850 stream 0 0 0 1d9b888
0 0
1d9b888 stream 0 0 0 1d9b850
0 0
1d9b8c0 stream 0 0 0 1d9bb98
0 0
1d9bb98 stream 0 0 0 1d9b8c0
0 0
1d9bee0 stream 0 0 1fa27b8 0
0
0/var/run/mDNSResponder
1d9bf18 stream 0 0 1f4a428 0
0
0/var/run/pppconfd
1d9bc08 dgram 0 0 0 1d9bfc0
0 1d9bbd0
1d9b188 dgram 0 0 0 1d9b658
1d9b658 0
1d9b658 dgram 0 0 0 1d9b188
1d9b188 0
1d9b3b8 dgram 0 0 0 1d9b230
1d9b230 0
1d9b230 dgram 0 0 0 1d9b3b8
1d9b3b8 0
1d9b540 dgram 0 0 0 1d9b498
1d9b498 0
1d9b498 dgram 0 0 0 1d9b540
1d9b540 0
1d9b578 dgram 0 0 0 1d9b4d0
1d9b4d0 0
1d9b4d0 dgram 0 0 0 1d9b578
1d9b578 0
1d9bbd0 dgram 0 0 0 1d9bfc0
0 1d9bab8
1d9bab8 dgram 0 0 0 1d9bfc0
0 1d9b930
1d9b930 dgram 0 0 0 1d9bfc0
0 1d9b9d8
1d9b9d8 dgram 0 0 0 1d9bfc0
0 1d9bd90
1d9bd90 dgram 0 0 0 1d9bfc0
0 1d9bb28
1d9bb28 dgram 0 0 0 1d9bfc0
0 1d9bb60
1d9bb60 dgram 0 0 0 1d9bfc0
0 1d9bcb0
1d9bcb0 dgram 0 0 0 1d9bfc0
0 1d9bd20
1d9bd20 dgram 0 0 0 1d9bfc0
0 1d9bce8
1d9bce8 dgram 0 0 0 1d9bfc0
0 1d9bea8
1d9bd58 dgram 0 0 0 1d9bc40
1d9bc40 0
1d9bc40 dgram 0 0 0 1d9bd58
1d9bd58 0
1d9bea8 dgram 0 0 0 1d9bfc0
0 1d9bc78
1d9bc78 dgram 0 0 0 1d9bfc0
0 1d9bf88
1d9bf88 dgram 0 0 0 1d9bfc0
0 1d9be38
1d9bdc8 dgram 0 0 0 1d9be00
1d9be00 0
1d9be00 dgram 0 0 0 1d9bdc8
1d9bdc8 0
1d9be38 dgram 0 0 0 1d9bfc0
0 1d9be70
1d9be70 dgram 0 0 0 1d9bfc0
0 1d9bf50
1d9bf50 dgram 0 0 0 1d9bfc0
0 0
1d9bfc0 dgram 0 0 1dd5610 0
1d9bc08
0/var/run/syslog

Andrew
On 1 Dec 2004, at 08:53, parviz wrote:

I didnt look at your config in detail. But
that error
messagealone
makes me think that either your tomcat(port
8080) or port 443
is not
listening on the right socket. for example
tomcat is listening
on
127.0.0.1:8080 but your trying to go
www.mysite.com:8080 (
which
resolves to some pulicIp:8080). Or something
similar. Lets run
netstat
and make sure port 443 and 8080 is listening
where they
should.

Parviz

On Tue, 2004-11-30 at 16:30, Andrew M wrote:
Ralph,
I am using Apache 2.0.52 and have made
the following
amendments:

1. create a certificate file :
/library/Apache2/conf/mysiteNew.crt
2. create a key file:

/library/Apache2/conf/www.mysite.com.key
3. Amend the ssl.conf file:

<IfDefine SSL>
<VirtualHost 127.0.0.1:443>
......
SSLCertificateFile
/Library/Apache2/conf/mysiteNew.crt
SSLCertificateKeyFile

/Library/Apache2/conf/www.mysite.com.key

****** Start Note ***
RewriteEngine on

RewriteRule "^/WEB-INF/?(.*)" "$0"
[L,F,NC]
RewriteRule "^/(.*)\.gif$" "$0" [L]
RewriteRule "^/(.*)\.jpg$" "$0" [L]
RewriteRule "^/(.*)\.swf$" "$0" [L]
RewriteRule "^/(.*)\.php$" "$0" [L]
RewriteRule "^/(.*)\.m3u$" "$0" [L]
RewriteRule "^/(.*)\.mp3$" "$0" [L]
RewriteRule "^/(.*)\.html$" "$0" [L]
RewriteRule

(.*)\.(js|css|xml|xsl|kont|jx|xsp|svg)$https://localhost:8080/mysite/ 
$1.$2[P,L]
RewriteRule "^/(.*)"
"https://localhost:8080/$1" [P]
ProxyPassReverse /
https://localhost:8080/
***End Note ***
</virtualHost>
</IfDefine>

Note: Not sure about the rewrite code
in the virtual
host. Thethinking
behind this is to be able to do
https://www.mysite.com
in theurl and
be directed to port 8080!!!
http://www.mysite.com
works fine.

Suffice to say, when I enter
https://www.mysite.com
into the url I
get'the connection was refused when
attempting to
contactwww.mysite.com'. What am I
doing wrong???

many thanks

Andrew

p.s. I have enabled port 443 in the
firewall as well.


On 30 Nov 2004, at 22:10, Ralf
Glauberman wrote:

plain text please!

did you have a look at the
general https
documentation. i
think youwill have to set up
ssl as described
there. try it,
if you are havingproblems, ask
again.

----- Original Message -----
From: Andrew M
To: users@httpd.apache.org
Sent: Tuesday, November 30,
2004 7:56 PM
Subject: [users@httpd] mod_jk2
https


Hi,
I currently have apache
sitting at the front
end passing
requests tojboss on port 8080
like so in my
http.conf:

# mod_jk2 configuration
LoadModule jk2_module
modules/mod_jk2.so

# for jboss
RewriteEngine on

RewriteRule "^/WEB-INF/?(.*)"
"$0" [L,F,NC]
RewriteRule "^/(.*)\.gif$"
"$0" [L]
RewriteRule "^/(.*)\.jpg$"
"$0" [L]
RewriteRule "^/(.*)\.swf$"
"$0" [L]
RewriteRule "^/(.*)\.php$"
"$0" [L]
RewriteRule "^/(.*)\.m3u$"
"$0" [L]
RewriteRule "^/(.*)\.mp3$"
"$0" [L]
RewriteRule "^/(.*)\.html$"
"$0" [L]
RewriteRule


(.*)\.(js|css|xml|xsl|kont|jx|xsp|svg)$http://localhost:8080/mysite/ 
$1.$2[P,L]
RewriteRule "^/(.*)"
"http://localhost:8080/$1" [P]
ProxyPassReverse /
http://localhost:8080/

How would I, in this instance,
setup https?
Bare with me if
this seemsfairly obvious as I
have never
worked with https
before.

many thanks

p.s. How do I then go about
creating/obtaining
a certificate
to sit inapache to make the
whole ssl thing
work?
Andrew



---------------------------------------------------------------------
The official User-To-User
support forum of the
Apache HTTP
ServerProject.
See

<URL:http://httpd.apache.org/userslist.html> for more
info.
To unsubscribe, e-mail:
users-unsubscribe@httpd.apache.org
" from the digest:

users-digest-unsubscribe@httpd.apache.org
For additional commands,
e-mail:
users-help@httpd.apache.org





______________________________________________________________________

+Thehome of urban music
+ http://www.beyarecords.com




______________________________________________________________________

---------------------------------------------------------------------
The official User-To-User support
forum of the Apache
HTTP ServerProject.
See
<URL:http://httpd.apache.org/userslist.html> for
more info.
To unsubscribe, e-mail:
users-unsubscribe@httpd.apache.org
" from the digest:

users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail:
users-help@httpd.apache.org



______________________________________________________________________

+Thehome of urban music
+ http://www.beyarecords.com



______________________________________________________________________
---------------------------------------------------------------------
The official User-To-User support forum of the Apache
HTTP ServerProject.
See <URL:http://httpd.apache.org/userslist.html> for
more info.
To unsubscribe, e-mail:
users-unsubscribe@httpd.apache.org
" from the digest:
users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail:
users-help@httpd.apache.org



______________________________________________________________________

+Thehome of urban music
+ http://www.beyarecords.com



______________________________________________________________________
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org











 +The home of urban music
+ http://www.beyarecords.com





---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org 


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message