You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by "James H. H. Lampert" <ja...@touchtonecorp.com> on 2020/01/07 00:57:15 UTC

Question about iptables, Re: Let's Encrypt with Tomcat?

Ladies and Gentlemen:

As I said earlier today, I have

> # Generated by iptables-save v1.4.18 on Mon Jan  6 21:17:22 2020
> *filter
> :INPUT ACCEPT [5018099:5766179544]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [4555500:2863742410]
> COMMIT
> # Completed on Mon Jan  6 21:17:22 2020
> # Generated by iptables-save v1.4.18 on Mon Jan  6 21:17:22 2020
> *nat
> :PREROUTING ACCEPT [41828:2351495]
> :INPUT ACCEPT [76356:4167904]
> :OUTPUT ACCEPT [254990:18418937]
> :POSTROUTING ACCEPT [254990:18418937]
> -A PREROUTING -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 8443
> COMMIT
> # Completed on Mon Jan  6 21:17:22 2020

But viewing Mr. Schultz's presentation, I see that it also calls for an 
output redirect.

I don't have that second redirect, and yet the Tomcat server works fine. 
Why? Is that something to do with the "proxyPort" clause on the connector?

--
JHHL

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org