You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Rodrigo Fabregas <ro...@map.es> on 2004/08/31 14:05:55 UTC

[users@httpd] Load balancing with SSL problem

Hi,
It's my first post here, so hi all :)

Well, i have an Apache 2.0.47 server running on a Mandrake
configured to redirect all petitions to 2 Tomcat servers through
SSL. To do this, i've created a file called servers.conf, that looks
like this:

LB1  10.1.74.194:8443
LB2  10.1.74.179:8443
ALL  10.1.74.194:8443|10.1.74.179:8443

10.1.74.194 and 10.1.74.179 are the tomcat server's IPs.

This is the configuration for Apache, with mod_proxy, mod_rewrite and
mod_ssl:

ProxyRequests on
ProxyVia on

SSLProxyEngine on
SSLProxyMachineCertificatePath /etc/httpd/conf/crt/
SSLProxyMachineCertificateFile /etc/httpd/conf/crt/jack.crt

RewriteMap SERVERS rnd:/etc/httpd/conf/servers.conf
RewriteLog /var/log/httpd/rewrite_log

<Location /ICP>
    RewriteEngine On

    RewriteCond "%{HTTP_COOKIE}"                 
"(^|;\s*)jsessionid=\w*\.(\w+)($|;)"
    RewriteRule "(.*)"                           
"https://${SERVERS:%2}%{REQUEST_URI}"  [P,L]
    RewriteRule "^.*;jsessionid=\w*\.(\w+)($|;)" 
"https://${SERVERS:$1}%{REQUEST_URI}"  [P,L]
    RewriteRule "(.*)"                           
"https://${SERVERS:ALL}%{REQUEST_URI}" [P,L]
</Location>

<Location /ERT>
    RewriteEngine On

    RewriteCond "%{HTTP_COOKIE}"                 
"(^|;\s*)jsessionid=\w*\.(\w+)($|;)"
    RewriteRule "(.*)"                           
"https://${SERVERS:%2}%{REQUEST_URI}"  [P,L]
    RewriteRule "^.*;jsessionid=\w*\.(\w+)($|;)" 
"https://${SERVERS:$1}%{REQUEST_URI}"  [P,L]
    RewriteRule "(.*)"                           
"https://${SERVERS:ALL}%{REQUEST_URI}" [P,L]
</Location>

<Location /registro>
    RewriteEngine On
    RewriteCond "%{HTTP_COOKIE}"                 
"(^|;\s*)jsessionid=\w*\.(\w+)($|;)"
    RewriteRule "(.*)"                           
"https://${SERVERS:%2}%{REQUEST_URI}"  [P,L]
    RewriteRule "^.*;jsessionid=\w*\.(\w+)($|;)" 
"https://${SERVERS:$1}%{REQUEST_URI}"  [P,L]
    RewriteRule "(.*)"                           
"https://${SERVERS:ALL}%{REQUEST_URI}" [P,L]
</Location>

when i connect to apache server (http://jack1/path/) i get an error from
a tomcat server
saying "The certificate is not valid" and get an error in apache's
error_log:

[Tue Aug 31 13:13:18 2004] [notice] child pid 16139 exit signal
Segmentation fault (11)

Anyone knows why do I get this error? I've already looked at
groups.google.com for about
4 hours, and get nothing.


Thanks in advance.