Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org Received: (qmail 98741 invoked from network); 13 Nov 2003 15:22:06 -0000 Received: from daedalus.apache.org (HELO mail.apache.org) (208.185.179.12) by minotaur-2.apache.org with SMTP; 13 Nov 2003 15:22:06 -0000 Received: (qmail 5900 invoked by uid 500); 13 Nov 2003 15:21:16 -0000 Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org Received: (qmail 5868 invoked by uid 500); 13 Nov 2003 15:21:15 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 5841 invoked from network); 13 Nov 2003 15:21:15 -0000 Received: from unknown (HELO sid.armstrong.com) (204.74.20.252) by daedalus.apache.org with SMTP; 13 Nov 2003 15:21:15 -0000 Received: from joedog.org (fnord.armstrong.com [204.74.20.14]) by sid.armstrong.com (8.12.8p1/8.12.8) with ESMTP id hADFAdC0003357 for ; Thu, 13 Nov 2003 10:10:39 -0500 Message-ID: <3FB3A168.5050501@joedog.org> Date: Thu, 13 Nov 2003 10:21:12 -0500 From: Tim Funk Organization: Human being User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4) Gecko/20030624 X-Accept-Language: en-us, en, es-mx, de, sv MIME-Version: 1.0 To: Tomcat Users List Subject: Re: JDBCRealm through a firewall References: <200311131118.46534.hdw@lkv-sh.de> In-Reply-To: <200311131118.46534.hdw@lkv-sh.de> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N I think 4.1.29's JDBCRealm tried to reconnect on failure. -Tim Holger de Wall wrote: > BITTE DURCHSEHEN > > our firewall (Cisco PIX 506) seems to be the reason for a 'java.sql.Exception' > given by the JDBCRealm: > --------------------------------------------------------------------------------------------------- > 2003-11-13 09:46:28 JDBCRealm[]: Exception performing > authentication > java.sql.SQLException: System or internal error > ... > --------------------------------------------------------------------------------------------------- > The Tomcat 4.1.24 with our webapplication stays on the DMZ outside the > firewall. The Database (the server for our JDBCRealm) stays behind the > firewall, which let pass the TCP-Requests through the Port 'myport', we set in > the > 'connectionURL'. > debug="99" driverName="com.informix.jdbc.IfxDriver" > connectionURL="jdbc:informix-sqli://:/upload:informixserver=" > connectionName="tomcat" > connectionPassword="tomcat" > userTable="users" > userNameCol="user_name" > userCredCol="user_pass" > userRoleTable="user_roles" > roleNameCol="role_name" /> > > If the Servlet-Engine on the DMZ don't get any authentication-requests for > about one hour, the Cisco Pix doesn't detect any traffic on this established > connection. Therefore (security reasons) the Pix kills the Realm-Connection > from the DMZ to the Database, what is the only reason for a broken and > unusable JDBCRealm. > > How can we force the Servlet-Engine to establish a new Realm-Connection to > the Database without a restarting the complete Tomcat-Server ? > > > Holger de Wall > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org > For additional commands, e-mail: tomcat-user-help@jakarta.apache.org > > > --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org