tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hansel, Jason T CTR SPAWARSYSCEN-ATLANTIC, 55E00" <>
Subject RE: Tomcat 6.0.18/ IIS 6.0 /SSL
Date Thu, 05 Aug 2010 19:23:19 GMT
I created a folder within the Tomcat 6.0 directory called 'connector'. That
is where all of my redirect files are locared.

Here is my server.xml 
<Service name="Catalina">
    <!--The connectors can use a shared executor, you can define one or more
named thread pools-->
    <Executor name="tomcatThreadPool" namePrefix="catalina-exec-" 
        maxThreads="150" minSpareThreads="4"/>
    <!-- A "Connector" represents an endpoint by which requests are received
         and responses are returned. Documentation at :
         Java HTTP Connector: /docs/config/http.html (blocking &
         Java AJP  Connector: /docs/config/ajp.html
         APR (HTTP/AJP) Connector: /docs/apr.html
         Define a non-SSL HTTP/1.1 Connector on port 8080

    <Connector port="8080" protocol="Java HTTP" 
               redirectPort="80" />

    <!-- A "Connector" using the shared thread pool-->
    <!-- <Connector executor="tomcatThreadPool"
               port="8443" protocol="HTTP/1.1" 
               redirectPort="443" /> -->
    <!-- Define a SSL HTTP/1.1 Connector on port 8443
         This connector uses the JSSE configuration, when using APR, the 
         connector should be using the OpenSSL style configuration
         described in the APR documentation -->
    <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLSv1"

    <!-- Define an AJP 1.3 Connector on port 8009 -->

    <Connector port="8009" protocol="AJP/1.3" redirectPort="443" />

    <!-- An Engine represents the entry point (within Catalina) that
         every request.  The Engine implementation for Tomcat stand alone
         analyzes the HTTP headers included with the request, and passes
         on to the appropriate Host (virtual host).
         Documentation at /docs/config/engine.html -->

    <!-- You should set jvmRoute to support load-balancing via AJP ie :
    <Engine name="Standalone" defaultHost="localhost" jvmRoute="jvm1">

    <Engine name="Catalina" defaultHost="localhost">

-----Original Message-----
From: André Warnier [] 
Sent: Thursday, August 05, 2010 11:44 AM
To: Tomcat Users List
Subject: Re: Tomcat 6.0.18/ IIS 6.0 /SSL

Hansel, Jason T CTR SPAWARSYSCEN-ATLANTIC, 55E00 wrote:
> Tomcat is not listening on Port 8009 using the AJP/1.3 protocol. 
> I can change this line of code (just did it as a test) to reference 
> port
> 8009 and I can see it's listening, however this Is not the protocol I 
> am wanting.
>   <Connector port="8009" protocol="HTTP/1.1" 
>                connectionTimeout="20000" 
>                redirectPort="443" />

No, you don't want to do that. Leave that one to the port 8080 or so like it
was before (or totally delete/comment it if you do not want Tomcat to offer
a HTTP interface.

> I have the isapi_redirect.dll deployed under 'Default' Websites in IIS 
> with a Green Arrow. I used the 32-bit because we are running 32-bit as
> Seems that this connector is not even being read:
> <!-- Define an AJP 1.3 Connector on port 8009 -->
>     <Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />

Verify :
1) that this Connector tag is not somehow being commented-out.
2) that in server.xml, it is located between the <Service name="Catalina">
tag, and the 
tag     <Engine name="Catalina" defaultHost="localhost">
(If it is in the wrong section, it will be ignored).

Then restart Tomcat and try the netstat command again.
If it now shows Tomcat listebing on port 8009, then try to access it again
through IIS.

I also suggest that when you start Tomcat, you have a look at its logfiles,
to see if any bad-looking message shows up.

It may be easier to stop Tomcat, delete all the logfiles in
(tomcat_dir)/logs, then start Tomcat again.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message