You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Riccardo Venittelli <ri...@objectway.it> on 2012/01/31 18:52:18 UTC
Clustering and https configuration
Hy,
I download tomcat 7.0.22 and apache server 2.2 on windows xp professional
32 bit.
I have made a cluster configuration with 2 server(tomcat) and a load
balancer (apache) and everithing works fine.
Now i need to use https protocol over clustering, but i'm unable to find
any documentation about clustering and https.
Thanks a lot.
Riccardo Venittelli
--
Riccardo Venittelli
ObjectWay S.p.A.
Via Flavio Domiziano, 10 - 00145 Roma
Tel: +39 0659604235
Fax: +39 0659605107
e-mail: riccardo.venittelli@objectway.it
http://www.objectway.it
Chi riceve il presente messaggio e' tenuto a verificare se lo stesso non gli
sia pervenuto per errore. In tal caso e' pregato di avvisare immediatamente
il mittente e, tenuto conto delle responsabilita' connesse all'indebito
utilizzo e/o divulgazione del messaggio e/o delle informazioni in esso
contenute, voglia cancellare l'originale e distruggere le varie copie o
stampe.
The receiver of this message is required to check if he/she has received it
erroneously. If so, the receiver is requested to immediately inform the
sender and - in consideration of the responsibilities arising from undue use
and/or disclosure of the message and/or the information contained therein -
destroy the original message and any copy or printout thereof.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Clustering and https configuration
Posted by Daniel Mikusa <dm...@vmware.com>.
On Tue, 2012-01-31 at 09:52 -0800, Riccardo Venittelli wrote:
> Hy,
>
> I download tomcat 7.0.22 and apache server 2.2 on windows xp professional
> 32 bit.
> I have made a cluster configuration with 2 server(tomcat) and a load
> balancer (apache) and everithing works fine.
> Now i need to use https protocol over clustering,
I'm not exactly sure what you mean by this. Can you elaborate?
If you are referring to accepting incoming HTTP requests via HTTPS,
there is nothing special that needs to be done.
You would just configure Apache HTTPD to accept incoming HTTPS requests.
It would handle the encryption and then proxy the requests to the
appropriate node in your cluster.
Ex (ASCII graphic, hope it displays OK):
----> Tomcat Node 1
(HTTPS) |
Client --------------> Apache HTTPD ----> Tomcat Node 2
|
----> Tomcat Node N
Dan
> but i'm unable to find
> any documentation about clustering and https.
>
> Thanks a lot.
>
> Riccardo Venittelli
>
>
Re: Clustering and https configuration
Posted by Pid <pi...@pidster.com>.
On 06/02/2012 18:29, Christopher Schultz wrote:
> Riccardo,
>
> On 2/6/12 8:10 AM, Riccardo Venittelli wrote:
>> Now my test web app work fine but i'm unable to find a
>> configuration for SingleSignOn in cluster.
>
> Are you trying to set up a Cluster to communicate over SSL? I don't
> believe <Cluster> supports that. I have two recommendations (having
> never done anything like this):
Or is he asking for a ClusterSingleSignOn?
p
> * stunnel (requires that you know in advance which ports will be used)
>
> That's probably either non-ideal or not actually possible due to the
> multicast nature of the <Cluster> capabilities.
>
> * Use a secure VPN with multicast enabled on that interface
>
> -chris
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
--
[key:62590808]
Re: Clustering and https configuration
Posted by Riccardo Venittelli <ri...@objectway.it>.
many thanks i find ClusterSingleSignOn api online and i solve my problem.
> On 06/02/2012 18:29, Christopher Schultz wrote:
>> Riccardo,
>>
>> On 2/6/12 8:10 AM, Riccardo Venittelli wrote:
>>> Now my test web app work fine but i'm unable to find a
>>> configuration for SingleSignOn in cluster.
>>
>> Are you trying to set up a Cluster to communicate over SSL? I don't
>> believe <Cluster> supports that. I have two recommendations (having
>> never done anything like this):
>
> Or is he asking for a ClusterSingleSignOn?
>
>
> p
>
>> * stunnel (requires that you know in advance which ports will be used)
>>
>> That's probably either non-ideal or not actually possible due to the
>> multicast nature of the <Cluster> capabilities.
>>
>> * Use a secure VPN with multicast enabled on that interface
>>
>> -chris
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
>> For additional commands, e-mail: users-help@tomcat.apache.org
>>
>
> --
>
> [key:62590808]
>
>
--
Riccardo Venittelli
ObjectWay S.p.A.
Via Flavio Domiziano, 10 - 00145 Roma
Tel: +39 0659604235
Fax: +39 0659605107
e-mail: riccardo.venittelli@objectway.it
http://www.objectway.it
Chi riceve il presente messaggio e' tenuto a verificare se lo stesso non gli
sia pervenuto per errore. In tal caso e' pregato di avvisare immediatamente
il mittente e, tenuto conto delle responsabilita' connesse all'indebito
utilizzo e/o divulgazione del messaggio e/o delle informazioni in esso
contenute, voglia cancellare l'originale e distruggere le varie copie o
stampe.
The receiver of this message is required to check if he/she has received it
erroneously. If so, the receiver is requested to immediately inform the
sender and - in consideration of the responsibilities arising from undue use
and/or disclosure of the message and/or the information contained therein -
destroy the original message and any copy or printout thereof.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Clustering and https configuration
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Riccardo,
On 2/6/12 8:10 AM, Riccardo Venittelli wrote:
> Now my test web app work fine but i'm unable to find a
> configuration for SingleSignOn in cluster.
Are you trying to set up a Cluster to communicate over SSL? I don't
believe <Cluster> supports that. I have two recommendations (having
never done anything like this):
* stunnel (requires that you know in advance which ports will be used)
That's probably either non-ideal or not actually possible due to the
multicast nature of the <Cluster> capabilities.
* Use a secure VPN with multicast enabled on that interface
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk8wHBQACgkQ9CaO5/Lv0PBhigCgiegd0D7r8dLapzbK5/ZqOooA
Ti8AnR4lAkhjuWXLRBIDXqgUV0ocsWca
=jVBu
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Clustering and https configuration
Posted by Daniel Mikusa <dm...@vmware.com>.
On Mon, 2012-02-06 at 05:10 -0800, Riccardo Venittelli wrote:
> Hi Daniel,
>
> i've configured my apache 2.2 server in https an my tomcat nodes with ajp.
> Now my test web app work fine
Glad to see that you got this working!
> but i'm unable to find a configuration for
> SingleSignOn in cluster.
Please start a new thread as this is a completely different topic.
Dan
>
> Please help me :-)
>
> Thanks a lot.
> > On Tue, 2012-01-31 at 09:52 -0800, Riccardo Venittelli wrote:
> >> Hy,
> >>
> >> I download tomcat 7.0.22 and apache server 2.2 on windows xp
> >> professional
> >> 32 bit.
> >> I have made a cluster configuration with 2 server(tomcat) and a load
> >> balancer (apache) and everithing works fine.
> >
> >> Now i need to use https protocol over clustering,
> >
> > I'm not exactly sure what you mean by this. Can you elaborate?
> >
> > If you are referring to accepting incoming HTTP requests via HTTPS,
> > there is nothing special that needs to be done.
> >
> > You would just configure Apache HTTPD to accept incoming HTTPS requests.
> > It would handle the encryption and then proxy the requests to the
> > appropriate node in your cluster.
> >
> > Ex (ASCII graphic, hope it displays OK):
> >
> > ----> Tomcat Node 1
> > (HTTPS) |
> > Client --------------> Apache HTTPD ----> Tomcat Node 2
> > |
> > ----> Tomcat Node N
> > Dan
> >
> >
> >> but i'm unable to find
> >> any documentation about clustering and https.
> >>
> >> Thanks a lot.
> >>
> >> Riccardo Venittelli
> >>
> >>
> >
>
>
Re: Clustering and https configuration
Posted by Riccardo Venittelli <ri...@objectway.it>.
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
Hi chris ,
i configured mi cluster with ajp (2 tomcat nodes), i use apache 2.2 for
https comunication and now it seems work fine :-)
>
> Riccardo,
>
> On 2/6/12 8:10 AM, Riccardo Venittelli wrote:
>> Now my test web app work fine but i'm unable to find a
>> configuration for SingleSignOn in cluster.
>
> Are you trying to set up a Cluster to communicate over SSL? I don't
> believe <Cluster> supports that. I have two recommendations (having
> never done anything like this):
>
> * stunnel (requires that you know in advance which ports will be used)
>
> That's probably either non-ideal or not actually possible due to the
> multicast nature of the <Cluster> capabilities.
>
> * Use a secure VPN with multicast enabled on that interface
>
> - -chris
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
> Comment: GPGTools - http://gpgtools.org
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAk8wHBQACgkQ9CaO5/Lv0PBhigCgiegd0D7r8dLapzbK5/ZqOooA
> Ti8AnR4lAkhjuWXLRBIDXqgUV0ocsWca
> =jVBu
> -----END PGP SIGNATURE-----
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
--
Riccardo Venittelli
ObjectWay S.p.A.
Via Flavio Domiziano, 10 - 00145 Roma
Tel: +39 0659604235
Fax: +39 0659605107
e-mail: riccardo.venittelli@objectway.it
http://www.objectway.it
Chi riceve il presente messaggio e' tenuto a verificare se lo stesso non gli
sia pervenuto per errore. In tal caso e' pregato di avvisare immediatamente
il mittente e, tenuto conto delle responsabilita' connesse all'indebito
utilizzo e/o divulgazione del messaggio e/o delle informazioni in esso
contenute, voglia cancellare l'originale e distruggere le varie copie o
stampe.
The receiver of this message is required to check if he/she has received it
erroneously. If so, the receiver is requested to immediately inform the
sender and - in consideration of the responsibilities arising from undue use
and/or disclosure of the message and/or the information contained therein -
destroy the original message and any copy or printout thereof.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Clustering and https configuration
Posted by Riccardo Venittelli <ri...@objectway.it>.
Hi Daniel,
i've configured my apache 2.2 server in https an my tomcat nodes with ajp.
Now my test web app work fine but i'm unable to find a configuration for
SingleSignOn in cluster.
Please help me :-)
Thanks a lot.
> On Tue, 2012-01-31 at 09:52 -0800, Riccardo Venittelli wrote:
>> Hy,
>>
>> I download tomcat 7.0.22 and apache server 2.2 on windows xp
>> professional
>> 32 bit.
>> I have made a cluster configuration with 2 server(tomcat) and a load
>> balancer (apache) and everithing works fine.
>
>> Now i need to use https protocol over clustering,
>
> I'm not exactly sure what you mean by this. Can you elaborate?
>
> If you are referring to accepting incoming HTTP requests via HTTPS,
> there is nothing special that needs to be done.
>
> You would just configure Apache HTTPD to accept incoming HTTPS requests.
> It would handle the encryption and then proxy the requests to the
> appropriate node in your cluster.
>
> Ex (ASCII graphic, hope it displays OK):
>
> ----> Tomcat Node 1
> (HTTPS) |
> Client --------------> Apache HTTPD ----> Tomcat Node 2
> |
> ----> Tomcat Node N
> Dan
>
>
>> but i'm unable to find
>> any documentation about clustering and https.
>>
>> Thanks a lot.
>>
>> Riccardo Venittelli
>>
>>
>
--
Riccardo Venittelli
ObjectWay S.p.A.
Via Flavio Domiziano, 10 - 00145 Roma
Tel: +39 0659604235
Fax: +39 0659605107
e-mail: riccardo.venittelli@objectway.it
http://www.objectway.it
Chi riceve il presente messaggio e' tenuto a verificare se lo stesso non gli
sia pervenuto per errore. In tal caso e' pregato di avvisare immediatamente
il mittente e, tenuto conto delle responsabilita' connesse all'indebito
utilizzo e/o divulgazione del messaggio e/o delle informazioni in esso
contenute, voglia cancellare l'originale e distruggere le varie copie o
stampe.
The receiver of this message is required to check if he/she has received it
erroneously. If so, the receiver is requested to immediately inform the
sender and - in consideration of the responsibilities arising from undue use
and/or disclosure of the message and/or the information contained therein -
destroy the original message and any copy or printout thereof.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org