You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Michael Dockery <do...@yahoo.com> on 2009/12/02 13:41:20 UTC
SSL only working on localhost
I have gotten ssl w/self-signed cert
working on tomcat 6 a few times in the past.
I am trying it again on a different server
I am using port 443
when i attempt https://localhost
via a browswer on the server itself
the browser is properly presented with the cert warning (as i expected)
however, when i try to access https from another computer,
it just hangs... (and therefore NO cert warning)
i have wiresharked the server, and can see the inbound 443 connections,
so the firewall does not seem to be the issue.
(note: the other computers are on the same subnet/lan)
i have tried browsing to the servers ip, netbios name, fqdn/dns
with always the same result (below):
--- http is fine (the home page appears)
--- however httpS does not do anything
(unless i browse from the server itself to itself)
further the logs do not show anything interesting
and i have the log level set to debug.
ideas?
Re: SSL only working on localhost
Posted by Markus Schönhaber <to...@list-post.mks-mail.de>.
In addition to Pid's comment, which you should take heed of:
02.12.2009 13:41, Michael Dockery:
> i have wiresharked the server, and can see the inbound 443 connections,
> so the firewall does not seem to be the issue.
> (note: the other computers are on the same subnet/lan)
What exactly do you mean by "can see the inbound 443 connections"?
My guess would be that wireshark only shows incoming TCP packets
directed to port 443 of your server. If my guess is correct, this proves
nothing wrt to the packet filter's settings. It might well throw those
packets away.
--
Regards
mks
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: SSL only working on localhost
Posted by Michael Dockery <do...@yahoo.com>.
problem solved
the firewall exceptions were not config'ed correctly
it seems the 443 inbound packet was hitting the box
but not hitting tomcat itself (due to fw dropping the packets)
i do however wonder for future ref,
the best way to turn more logging-on for ssl
(even though in this case, logging would not have helped much
...except it would have been more obvious
that tomcat was NOT seeing the ssl attempts by the remote clients at all )
better logging ideas are welcomed.
(as this might benefit others also)
I was hoping the global "debug" logging level
would have showm a bit more on the ssl connections, etc
...but i dont think it did that
fyi
Tomcat 6.0.13
Java 1.6.017
________________________________
From: Guifre Bosch Fabregas <gu...@gmail.com>
To: Tomcat Users List <us...@tomcat.apache.org>; pid@pidster.com
Sent: Wed, December 2, 2009 8:13:58 AM
Subject: Re: SSL only working on localhost
Can you see your page from another computer without SSL?
What's your OS?
Is it possible that "the problem" is the Firewall. Can you see the port 80
and 443 are open?
2009/12/2 Pid <pi...@pidster.com>
> On 02/12/2009 12:41, Michael Dockery wrote:
>
>>
>>
>>
>>
>> I have gotten ssl w/self-signed cert
>> working on tomcat 6 a few times in the past.
>>
>> I am trying it again on a different server
>>
>> I am using port 443
>>
>>
>> when i attempt https://localhost
>> via a browswer on the server itself
>> the browser is properly presented with the cert warning (as i
>> expected)
>>
>> however, when i try to access https from another computer,
>> it just hangs... (and therefore NO cert warning)
>>
>> i have wiresharked the server, and can see the inbound 443 connections,
>> so the firewall does not seem to be the issue.
>> (note: the other computers are on the same subnet/lan)
>>
>> i have tried browsing to the servers ip, netbios name, fqdn/dns
>> with always the same result (below):
>> --- http is fine (the home page appears)
>> --- however httpS does not do anything
>> (unless i browse from the server itself to itself)
>>
>> further the logs do not show anything interesting
>> and i have the log level set to debug.
>>
>> ideas?
>>
>
> Idea: describe Tomcat, JVM, OS - precise versions please.
> Supply server.xml in use, comments removed.
>
>
> p
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
Re: SSL only working on localhost
Posted by Guifre Bosch Fabregas <gu...@gmail.com>.
Can you see your page from another computer without SSL?
What's your OS?
Is it possible that "the problem" is the Firewall. Can you see the port 80
and 443 are open?
2009/12/2 Pid <pi...@pidster.com>
> On 02/12/2009 12:41, Michael Dockery wrote:
>
>>
>>
>>
>>
>> I have gotten ssl w/self-signed cert
>> working on tomcat 6 a few times in the past.
>>
>> I am trying it again on a different server
>>
>> I am using port 443
>>
>>
>> when i attempt https://localhost
>> via a browswer on the server itself
>> the browser is properly presented with the cert warning (as i
>> expected)
>>
>> however, when i try to access https from another computer,
>> it just hangs... (and therefore NO cert warning)
>>
>> i have wiresharked the server, and can see the inbound 443 connections,
>> so the firewall does not seem to be the issue.
>> (note: the other computers are on the same subnet/lan)
>>
>> i have tried browsing to the servers ip, netbios name, fqdn/dns
>> with always the same result (below):
>> --- http is fine (the home page appears)
>> --- however httpS does not do anything
>> (unless i browse from the server itself to itself)
>>
>> further the logs do not show anything interesting
>> and i have the log level set to debug.
>>
>> ideas?
>>
>
> Idea: describe Tomcat, JVM, OS - precise versions please.
> Supply server.xml in use, comments removed.
>
>
> p
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
RE: SSL only working on localhost
Posted by Jeffrey Janner <Je...@PolyDyne.com>.
>-----Original Message-----
>From: Pid [mailto:pid@pidster.com]
>Sent: Wednesday, December 02, 2009 6:51 AM
>To: users@tomcat.apache.org
>Subject: Re: SSL only working on localhost
>On 02/12/2009 12:41, Michael Dockery wrote:
>>
>> I have gotten ssl w/self-signed cert
>> working on tomcat 6 a few times in the past.
>>
>> I am trying it again on a different server
>>
>> I am using port 443
>>
>>
>> when i attempt https://localhost
>> via a browswer on the server itself
>> the browser is properly presented with the cert warning (as i
expected)
>>
>> however, when i try to access https from another computer,
>> it just hangs... (and therefore NO cert warning)
>>
...
>> ideas?
>Idea: describe Tomcat, JVM, OS - precise versions please.
>Supply server.xml in use, comments removed.
Definitely a good idea, as there are problems with specific versions of
Windows and APR and certain implied settings about the default
<Connector> configuration.
******************************* NOTICE *********************************
This message is intended for the use of the individual or entity to which
it is addressed and may contain information that is privileged,
confidential, and exempt from disclosure under applicable law. If the
reader of this message is not the intended recipient or the employee or
agent responsible for delivering this message to the intended recipient,
you are hereby notified that any dissemination, distribution, or copying
of this communication is strictly prohibited. If you have received this
communication in error, please notify us immediately by reply or by
telephone (call us collect at 512-343-9100) and immediately delete this
message and all its attachments.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: SSL only working on localhost
Posted by Pid <pi...@pidster.com>.
On 02/12/2009 12:41, Michael Dockery wrote:
>
>
>
>
> I have gotten ssl w/self-signed cert
> working on tomcat 6 a few times in the past.
>
> I am trying it again on a different server
>
> I am using port 443
>
>
> when i attempt https://localhost
> via a browswer on the server itself
> the browser is properly presented with the cert warning (as i expected)
>
> however, when i try to access https from another computer,
> it just hangs... (and therefore NO cert warning)
>
> i have wiresharked the server, and can see the inbound 443 connections,
> so the firewall does not seem to be the issue.
> (note: the other computers are on the same subnet/lan)
>
> i have tried browsing to the servers ip, netbios name, fqdn/dns
> with always the same result (below):
> --- http is fine (the home page appears)
> --- however httpS does not do anything
> (unless i browse from the server itself to itself)
>
> further the logs do not show anything interesting
> and i have the log level set to debug.
>
> ideas?
Idea: describe Tomcat, JVM, OS - precise versions please.
Supply server.xml in use, comments removed.
p
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org