tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: Secure AJP load balancing problem
Date Fri, 04 Jan 2013 21:35:27 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Arun,

On 1/3/13 10:24 AM, Arunkumar Janarthanan wrote:
> *Apache conf:*
> 
> ProxyPassMatch ^/(.*\.jsp|.*\.do)(;jsessionid=.*)?$ 
> balancer://lb1/$1

Why are you intentionally removing the jsessionid from being forwarded
to the worker? I think you want "balancer://lb1/$1$2 when
";jsessionid" is present. You will probably need to re-think the whole
regular expression, because I think what you have is insufficient.

> *Balancer Conf:*
> 
> <Proxy balancer://lb1> BalancerMember
> https://tomcat02.us.rdigest.com:8443 BalancerMember
> https://tomcat02.us.rdigest.com:8543 ProxySet
> stickysession=JSESSIONID ProxySet nofailover=Off </Proxy>

You are missing jvm_route attributes on your BalancerMember
directives. Without that attribtue, mod_proxy_ajp has no idea where to
send your requests that should have sticky sessions.

Do you have correct jvmRoute attributes in your <Engine> configuration
in Tomcat?

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEAREIAAYFAlDnSx4ACgkQ9CaO5/Lv0PBehgCeNXKvmWC70DsMK9oVoDpp6OgM
QM4An1VEQY7r9zj7+1myNXuYiyc2m87i
=H4HU
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message