Re: multiple ips, multiple ssl certificates and port forwarding
hello hassan! thanks for your input ... i guess i finally found out what it was, though it still seems a little bit strange to me: the portforwarding is the problem, without it, the right ssl certificate is chosen, otherwise the system takes the one of the ip adress associated with eth0. hmm - it's strange though as this seems to work with other java servlet engines like jetty. i will try to find a way to run tomcat as a normal user on priviledged ports, this should fix it. kind regards randolph At 17:52 17.01.2005, you wrote: Parsons Technical Services wrote: unfortunately this does not seem to solve the problem ... but results in the following error (as the given keystore cannot be used) java.io.FileNotFoundException: /home/essence/.keystore (No such file or directory) First, the give server.xml showed the keystore file (originally) as /home/essence/essence/KEYS/c.keystore which doesn't match the reported error above -- check for typos. Tomcat needs the name of the keystore to be .keystore No it doesn't. The name (and path) is arbitrary, which is why there *is* a keystoreFile attribute. As I said before, I haven't done this myself. I have, and none of my installations use .keystore as the file name... -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --- di randolph kepplinger, mba [EMAIL PROTECTED] / 0676-844899-800 metamagix - better online solutions favoritenstrasse 19 / 1040 wien / +43.1.9902804 buero: hackengasse 27 / 1150 wien / +43.1.9902804 http://www.metamagix.net - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: multiple ips, multiple ssl certificates and port forwarding
hello! At 17:58 17.01.2005, you wrote: [EMAIL PROTECTED] wrote: the keystore syntax is correct, as it works with one keytore ... the problem arises when there are multiple virtual hosts, it takes always one of them, but not the corresponding I'm puzzled by two aspects of your setup: 1) why don't you just assign the proper ports in the Connectors instead of redirecting through iptables? i don't want to run tomcat as root, so i cannot use ports1024 ... therfore i do the portforwarding. 2) what's the point of the multiple Services? as i said, i have multiple domains/ips and for each of them i'd like to use a different keystore. multiple connectors in one service did not seem to work as well. (but i may retry) regards randolph -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --- di randolph kepplinger, mba [EMAIL PROTECTED] / 0676-844899-800 metamagix - better online solutions favoritenstrasse 19 / 1040 wien / +43.1.9902804 buero: hackengasse 27 / 1150 wien / +43.1.9902804 http://www.metamagix.net - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: multiple ips, multiple ssl certificates and port forwarding
hello again! i also tried it with one service and multiple connectors with the same result ... only one of the keystore-files is taken ... as it is the one of the webservers original name i tend to think that this may be a portforward-problem (i.e. all forwardes port/ips are mapped to the one associated with the used keystore) .. has anybody a working tomcat 4.1.x configuration with multiple ips and ssl keystores? kind regards randolph At 16:00 17.01.2005, you wrote: hello everybody! i'm new to this list and dont have too much tomcat expericence but i've been searching for a while to solve the following problem - unfortunately up to date without success: here is my little mind bender ;-) i have tomcat 4.1.31 running on a linux server, to use multiple ssl keystores i built the following server.xml, i have port-forwarding on (script follows). my problem is, that i always get the same certificate, no matter what ip/domain i use. server xml --- Server port=8005 shutdown=SHUTDOWN debug=0 !-- Comment these entries out to disable JMX MBeans support -- !-- You may also configure custom components (e.g. Valves/Realms) by including your own mbean-descriptor file(s), and setting the descriptors attribute to point to a ';' seperated list of paths (in the ClassLoader sense) of files to add to the default list. e.g. descriptors=/com/myfirm/mypackage/mbean-descriptor.xml -- Listener className=org.apache.catalina.mbeans.ServerLifecycleListener debug=0/ Listener className=org.apache.catalina.mbeans.GlobalResourcesLifecycleListener debug=0/ !-- Global JNDI resources -- GlobalNamingResources !-- Test entry for demonstration purposes -- Environment name=simpleValue type=java.lang.Integer value=30/ !-- Editable user database that can also be used by UserDatabaseRealm to authenticate users -- Resource name=UserDatabase auth=Container type=org.apache.catalina.UserDatabase description=User database that can be updated and saved /Resource ResourceParams name=UserDatabase namefactory/name valueorg.apache.catalina.users.MemoryUserDatabaseFactory/value /parameter parameter namepathname/name valueconf/tomcat-users.xml/value /parameter /ResourceParams /GlobalNamingResources Service name=Service C !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 address=100.100.100.3 minProcessors=10 maxProcessors=100 enableLookups=true redirectPort=8080 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=30 address=100.100.100.3 enableLookups=true acceptCount=30 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory keystoreFile=/home/essence/essence/KEYS/c.keystore keystorePass=xxx clientAuth=false protocol=TLS / /Connector Engine defaultHost=www.domainc.at debug=0 Logger className=org.apache.catalina.logger.FileLogger prefix=catalina_log. suffix=.txt timestamp=true/ Realm className=org.apache.catalina.realm.UserDatabaseRealm debug=0 resourceName=UserDatabase/ !-- Define the default virtual host -- Host name=www.domainc.at debug=0 appBase=webapps unpackWARs=true autoDeploy=true Logger className=org.apache.catalina.logger.FileLogger directory=logs prefix=domainc_log. suffix=.txt timestamp=true/ !-- Tomcat Root Context -- Context path= docBase=essence debug=0/ /Host /Engine /Service Service name=service b !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 address=100.100.100.2 minProcessors=10 maxProcessors=100 enableLookups=true redirectPort=8080 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=50 address=100.100.100.2
Re: multiple ips, multiple ssl certificates and port forwarding
hello hassan! hmm ... portforwarding works with jetty (on the same ports), so it should also work with tomcat, and i'd rather have tomcat on a non privileged port. which tomcat version are you using? could you send me an anonymized version of your config? kind regards randolph At 16:06 18.01.2005, you wrote: [EMAIL PROTECTED] wrote: i also tried it with one service and multiple connectors with the same result ... only one of the keystore-files is taken ... as it is the one of the webservers original name i tend to think that this may be a portforward-problem (i.e. all forwardes port/ips are mapped to the one associated with the used keystore) .. has anybody a working tomcat 4.1.x configuration with multiple ips and ssl keystores? Yes, one service with multiple connectors for different IPs using different keystores. It works fine, and I don't see any significant difference between my server.xml and the one you previously sent. I would seriously urge you to turn off the port-forwarding, change the connectors to standard ports 80 and 443 and test again. :-) FWIW! -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --- di randolph kepplinger, mba [EMAIL PROTECTED] / 0676-844899-800 metamagix - better online solutions favoritenstrasse 19 / 1040 wien / +43.1.9902804 buero: hackengasse 27 / 1150 wien / +43.1.9902804 http://www.metamagix.net - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
multiple ips, multiple ssl certificates and port forwarding
hello everybody! i'm new to this list and dont have too much tomcat expericence but i've been searching for a while to solve the following problem - unfortunately up to date without success: here is my little mind bender ;-) i have tomcat 4.1.31 running on a linux server, to use multiple ssl keystores i built the following server.xml, i have port-forwarding on (script follows). my problem is, that i always get the same certificate, no matter what ip/domain i use. server xml --- Server port=8005 shutdown=SHUTDOWN debug=0 !-- Comment these entries out to disable JMX MBeans support -- !-- You may also configure custom components (e.g. Valves/Realms) by including your own mbean-descriptor file(s), and setting the descriptors attribute to point to a ';' seperated list of paths (in the ClassLoader sense) of files to add to the default list. e.g. descriptors=/com/myfirm/mypackage/mbean-descriptor.xml -- Listener className=org.apache.catalina.mbeans.ServerLifecycleListener debug=0/ Listener className=org.apache.catalina.mbeans.GlobalResourcesLifecycleListener debug=0/ !-- Global JNDI resources -- GlobalNamingResources !-- Test entry for demonstration purposes -- Environment name=simpleValue type=java.lang.Integer value=30/ !-- Editable user database that can also be used by UserDatabaseRealm to authenticate users -- Resource name=UserDatabase auth=Container type=org.apache.catalina.UserDatabase description=User database that can be updated and saved /Resource ResourceParams name=UserDatabase namefactory/name valueorg.apache.catalina.users.MemoryUserDatabaseFactory/value /parameter parameter namepathname/name valueconf/tomcat-users.xml/value /parameter /ResourceParams /GlobalNamingResources Service name=Service C !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 address=100.100.100.3 minProcessors=10 maxProcessors=100 enableLookups=true redirectPort=8080 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=30 address=100.100.100.3 enableLookups=true acceptCount=30 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory keystoreFile=/home/essence/essence/KEYS/c.keystore keystorePass=xxx clientAuth=false protocol=TLS / /Connector Engine defaultHost=www.domainc.at debug=0 Logger className=org.apache.catalina.logger.FileLogger prefix=catalina_log. suffix=.txt timestamp=true/ Realm className=org.apache.catalina.realm.UserDatabaseRealm debug=0 resourceName=UserDatabase/ !-- Define the default virtual host -- Host name=www.domainc.at debug=0 appBase=webapps unpackWARs=true autoDeploy=true Logger className=org.apache.catalina.logger.FileLogger directory=logs prefix=domainc_log. suffix=.txt timestamp=true/ !-- Tomcat Root Context -- Context path= docBase=essence debug=0/ /Host /Engine /Service Service name=service b !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 address=100.100.100.2 minProcessors=10 maxProcessors=100 enableLookups=true redirectPort=8080 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=50 address=100.100.100.2 enableLookups=true acceptCount=50 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory keystoreFile=/home/essence/essence/KEYS/b.keystore keystorePass= clientAuth=false protocol=TLS / /Connector Engine defaultHost=www.domainb.at debug=0 Logger
Re: multiple ips, multiple ssl certificates and port forwarding
unfortunately this does not seem to solve the problem ... but results in the following error (as the given keystore cannot be used) Jan 17, 2005 4:59:29 PM org.apache.coyote.http11.Http11Protocol init INFO: Initializing Coyote HTTP/1.1 on http-62.116.64.7-8080 Jan 17, 2005 4:59:29 PM org.apache.coyote.http11.Http11Protocol init SEVERE: Error initializing endpoint java.io.FileNotFoundException: /home/essence/.keystore (No such file or directory) at java.io.FileInputStream.open(Native Method) at java.io.FileInputStream.init(FileInputStream.java:106) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocketFactory.java:276) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESocketFactory.java:220) at org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.getKeyManagers(JSSE14SocketFactory.java:143) at org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.init(JSSE14SocketFactory.java:109) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:98) at org.apache.tomcat.util.net.PoolTcpEndpoint.initEndpoint(PoolTcpEndpoint.java:261) at org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:137) at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector.java:1238) at org.apache.catalina.core.StandardService.initialize(StandardService.java:532) at org.apache.catalina.core.StandardServer.initialize(StandardServer.java:2199) at org.apache.catalina.startup.Catalina.start(Catalina.java:462) at org.apache.catalina.startup.Catalina.execute(Catalina.java:350) at org.apache.catalina.startup.Catalina.process(Catalina.java:129) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:156) Catalina.start: LifecycleException: Protocol handler initialization failed: java.io.FileNotFoundException: /home/essence/.ke ystore (No such file or directory) LifecycleException: Protocol handler initialization failed: java.io.FileNotFoundException: /home/essence/.keystore (No such file or directory) at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector.java:1240) at org.apache.catalina.core.StandardService.initialize(StandardService.java:532) at org.apache.catalina.core.StandardServer.initialize(StandardServer.java:2199) at org.apache.catalina.startup.Catalina.start(Catalina.java:462) at org.apache.catalina.startup.Catalina.execute(Catalina.java:350) at org.apache.catalina.startup.Catalina.process(Catalina.java:129) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:156) Catalina.stop: LifecycleException: This server has not yet been started LifecycleException: This server has not yet been started At 16:35 17.01.2005, you wrote: I think you have an error in your server.xml. The path to the keystore and other SSL fields are in the Factory element instead of the connector element. !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=30 address=100.100.100.3 enableLookups=true acceptCount=30 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory keystoreFile=/home/essence/essence/KEYS/c.keystore keystorePass=xxx clientAuth=false protocol=TLS / /Connector Should read: !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=30 address=100.100.100.3 enableLookups=true acceptCount=30 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true keystoreFile=/home/essence/essence/KEYS/c.keystore keystorePass=xxx clientAuth=false protocol=TLS Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory/ /Connector Doug - To
Re: multiple ips, multiple ssl certificates and port forwarding
the keystore syntax is correct, as it works with one keytore ... the problem arises when there are multiple virtual hosts, it takes always one of them, but not the corresponding At 17:30 17.01.2005, you wrote: unfortunately this does not seem to solve the problem ... but results in the following error (as the given keystore cannot be used) Jan 17, 2005 4:59:29 PM org.apache.coyote.http11.Http11Protocol init INFO: Initializing Coyote HTTP/1.1 on http-62.116.64.7-8080 Jan 17, 2005 4:59:29 PM org.apache.coyote.http11.Http11Protocol init SEVERE: Error initializing endpoint java.io.FileNotFoundException: /home/essence/.keystore (No such file or directory) Tomcat needs the name of the keystore to be .keystore You have it as a. b. c. The keystore file is for the path and not the name (as I understand the docs). So setup all the keystores with the default name but in dir a, b and c. keystoreFile=/home/essence/essence/KEYS/c/.keystore or maybe keystoreFile=/home/essence/essence/c/KEYS/.keystore As I said before, I haven't done this myself. Doug - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --- di randolph kepplinger, mba [EMAIL PROTECTED] / 0676-844899-800 metamagix - better online solutions favoritenstrasse 19 / 1040 wien / +43.1.9902804 buero: hackengasse 27 / 1150 wien / +43.1.9902804 http://www.metamagix.net - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Accessing Multiple Contexts
Hi I have 2 web apps configured in a single tomcat 4.1.24 server and each one's docbase is pointing to a .war file. I have two questions. 1. Is it possible to access functionality from one webapp to another one? If yes, how I can I do that. 2. How can I get context paths of all the web apps in my tomcat server? Thanks RK
Tomcat connection problems. Webapp hangs up after a while.
) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:223) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:59 4) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processC onnection(Http11Protocol.java:392) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:56 5) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool .java:619) at java.lang.Thread.run(Thread.java:536) Thanks RK
Problem with tomcat 4.1.24 : java.net.SocketException: Connection reset by peer: socket write error
) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:56 5) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool .java:619) at java.lang.Thread.run(Thread.java:536) Thanks RK
getInitParameter Error
Hi: I am trying to get the following entries from web.xml. context-paramparam-nameDriverName/param-nameparam-valueorg.gjt.mm.mysql.Driver/param-value/context-param I am using the following apis to get the DriverName. public void init(ServletConfig scon) { super.init(scon); DriverName = getServletContext().getInitParameter("DriverName"); ... When I compile this code, I get the following error: Method getInitParameter(java.lang.String) not found in interface javax.servlet.ServletContext.DriverName = getServletContext().getInitParameter("DriverName"); javax.servlet.ServletContext api swears that getInitParameter exists. Obviously I am missing something here. Please help. Thanks,rk
Re: Logging errors on Tomcat Startup
If you are on Windows, try the following. See the log files Start tomcat from the DOS window with the following command that saves the output to a file tomcat run tomcat.out 21 tomcat.out contains the error log. Use your favorite editor (emacs! :-)) to look at the log. - Original Message - From: Dusan Petrovic To: [EMAIL PROTECTED] Sent: Monday, February 05, 2001 3:19 AM Subject: Logging errors on Tomcat Startup Hi, I have problem during the start of TomCat server tomcat start After few seccond, TomCut write some errors on the screen and then that window desappear. I can not see what is the problem. My question is: Can I see log of those errors??? Thanks!!!
Re: JDBC connectivity - java.sql.SQLException: No suitable driver
Please check classpath. Before testing any jdbc connection using Tomcat, I run a simple java program that does dblook-up outside of Tomcat. This helps resolve any classpath/driver issues. - Original Message - From: Dipankar Sinha To: [EMAIL PROTECTED] Cc: Ignacio J. Ortega Sent: Sunday, February 04, 2001 3:22 PM Subject: JDBC connectivity - java.sql.SQLException: No suitable driver I am trying tohost some webpages using Tomcat and when my webpage is being accessed, I am getting an error message on the linux console as: java.sql.SQLException: No suitable driverI have setup Tomcat-3.2.1 and Apache_1.3.14 with MySQL-3.23.31 under RedHatLinux 6.2. jdk1.3 is installed under /usr/java. Tomcat, Apache and MySQL are basically working fine I have to setup login authentication from the webpages accessing data from MySQL (name of database is test, no user, no password). I am trying to use MM.MySQL for JDBC connectivity to MySQL As indicated in Tomcat/MM.MySQL documentation, I have tried as follows:1. Modified $TOMCAT_HOME/conf/server.xml to add following lines: RequestInterceptor className="org.apache.tomcat.request.JDBCRealm" debug="99" driverName="org.gjt.mm.mysql.Driver" connectionURL="jdbc:mysql://localhost/test''" /2. I tried dropping mm.mysql-2.0.4-bin without un jaring under $TOMCAT_HOME/lib Tomcat starts without any error but does not confirm Database connection. Further when I am trying to stop Tomcat, I am getting additional error message as:java.lang.NullPointerExceptionIn a separate environment, I have used NT4.0, JavaWebserver, MySQL and ODBCdriver. Every thing is working over there including database access from the sameWebPages etc.Can somebody help?Thanks a million in advance.Dipankar
Re: Sorry--Out of topic question For Html Gurus
Deepak: There are several otions for doing this. If you use products such as Dreamweaver, investigate behaviors -- as they write nice little code that is cross browser compatible. Option 1. Please down load the following file and implement in your web site. http://netscape.zdnet.com/framer/hud0022460/www.zdnet.com/devhead/filters/0, 9429,2133214,00.html Look for cascading menus link and follow it. This is an easy to implement, well written drop down menu system. Option 2: Write your own javascript using the following steps. step 1: develop a layer containing drop down menu list step 2: set the layer visibility to hidden step 3: For the code that contains the link where the drop down should occur, add a onmouseover = java script function such as showImage step 4: for the layer write the hide image function. If you need full details of this type of approach please contact me at the above address. Thanks, Rk - Original Message - From: "Deepak C S" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, January 10, 2001 3:38 AM Subject: Sorry--Out of topic question For Html Gurus hi , Does anybody know how to develop Navigation Interface like ones On microsoft.com home page,Jspinsider.com etc...?? i.e. On moving mouse cursor over a heading ,a drop down of options is displayed and on mouse Out, the dropdown is removed. Ive seen the sites View/source but not much I could infer from them... So,if anybody knows ,please send a template of how to do it.. your suggestions are welcome. Thanx very much, Deeps - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]