RE: [EMAIL PROTECTED] Apache 2.2.2 and WebSphere PlugIn
LoadModule was_ap20_module /opt/CHROOT/HTTPD/WebSpherePlugin/bin/mod_was_ap20_http.so Another possibility is, that mod_was_ap20_http.so was compiled against 2.0.xx Ask IBM if they have something like mod_was_ap22_http.so which should be compiled against 2.2.x. bye Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: Do 20.07.2006 09:39 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Apache 2.2.2 and WebSphere PlugIn I've compiled Apache 2.2.2 and now I would like to use apache with websphere plugin to pass requests to a remore WebSphere Application Server. I installed and configured the plugin as written in the IBM guide and everything is Ok. I can find these two new lines in the httpd.conf: LoadModule was_ap20_module /opt/CHROOT/HTTPD/WebSpherePlugin/bin/mod_was_ap20_http.so WebSpherePluginConfig /opt/CHROOT/HTTPD/WebSpherePlugin/config/atmweb-ts-proxy/plugin-cfg.xml But now when I run the command 'apachectl -t' I get the following: httpd: Syntax error on line 225 of /opt/CHROOT/HTTPD-2.2.2/conf/httpd.conf: Cannot load /opt/CHROOT/HTTPD/WebSpherePlugin/bin/mod_was_ap20_http.so into server: /opt/CHROOT/HTTPD/WebSpherePlugin/bin/mod_was_ap20_http.so: cannot open shared object file: No such file or directory The mod_was_ap20_http.so exists and it is in the /opt/CHROOT/HTTPD/WebSpherePlugin/bin directory. Have you any idea Please let me know, I would not like to install Ibm Http Server! Thanks in advance MANUCIAO winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Reverse Proxy with internal redirects
I have a 2 node internal environment. http://internal-apps and http://internal-sso. The reverse proxy has two virtual hosts configured as http://external-apps and http://external-sso. All reverse proxy configs work except when the application server needs to authenticate to the sso server. The app server redirects the client to the internal name of the sso server and not to the external name. There is no way to change the redirection problem on the app server. My question is, can the location header variable be rewritten before the external client receives it and makes the request to the internal server name? Despite of the fact that i don't know your real configuration, i would say, you miss ProxyPassReverse ... or ProxyPreserveHost On More is only possible when you show a real config Bye Oliver winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Redirect Problem
On Tue, Jul 18, 2006 at 12:49:12PM +0200, Mario Doering wrote: Alle Anfragen auf /ordner1 sollen auf der gleichen Domain auf /ordner2 umgemappt werden. RedirectMatch permanent ^/ordner1/(.*) http://www.example.de/ordner2/$1 Jedenfalls so ungefähr ;-)) Rainer Oder so: # Schreibt extern um RewriteCond %{REQUEST_URI} ^/ordner1/ RewriteRule ^/ordner1/(.*)$ http://%{HTTP_HOST}/ordner2/$1 [R,L] # aendert das Ziel, Im Browser bleibt aber die alte URI erhalten # interne Umschreibung RewriteCond %{REQUEST_URI} ^/ordner3/ RewriteRule ^/ordner3/(.*)$ /ordner4/$1 [PT] Oliver -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] -- -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
RE: [EMAIL PROTECTED] question about using a SetHandler directive to handle a 404 case
ErrorDocument 404 /weblogicpath/error/404.jsp where Weblogic will handle /weblogicpath Before you have at least Location /weblogicpath/ SetHandler weblogic-handler ... /Location Bye Oliver -Ursprüngliche Nachricht- Von: Tom Hodder [mailto:[EMAIL PROTECTED] Gesendet: Mo 10.07.2006 16:49 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] question about using a SetHandler directive to handle a 404 case Hi, I have an application that generates a whole bunch of static files in a directory, and apache serves thoses files, (there is also a mod_cache directive.) However there is a marginal case in the system, where the file is not available locally in the filesystem (yet) and apache would generate a 404 error for that request. We have an application in place that can serve these requests in this marginal case (but it is preferred not to use it generally, even with the cache, as theres nfs stuff going on there) I would like to do something like this; (obviously that configuration is not available) ErrorDocument 404 SetHandler weblogic-handler /ErrorDocument Is there anything I can do to achieve such a handling of the 404 case? Thanks, Tom - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] How to tell if Apache is really running
In your first post you used ps -ax to check your httpd-processes. Use now ps -aux| grep httpd [ or ps -ef | grep httpd] You will get a line root 1029 ?? Ss 0:00.46 /usr/local/sbin/httpd or apacheuser 1029 ?? Ss 0:00.46 /usr/local/sbin/httpd This user has to get access to the Keyfile. Take care that the directories where the keyfile resides is for the same user aslo readable bye Oliver -Ursprüngliche Nachricht- Von: Graves, Jan [mailto:[EMAIL PROTECTED] Gesendet: Do 06.07.2006 20:55 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to tell if Apache is really running Oliver, I did find that I can use the find command to locate files and found my httpd.conf file. The server.key file is in the directory where it should be. How can I tell if users have read access to the file? Thanks. Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 10:57 AM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] How to tell if Apache is really running [Thu Jul 6 08:02:47 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) Look inside the configuration of your ssl.conf or httpd.conf or if you have some separate conf-files for line like SSLCertificateKeyFile /path/to/server.key and check if the file is at place and if the user which runs apache have read access to this file. bye Oliver -Ursprüngliche Nachricht- Von: Graves, Jan [mailto:[EMAIL PROTECTED] Gesendet: Do 06.07.2006 16:45 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to tell if Apache is really running Owen, Here is the last portion of the file. [Thu Jul 6 07:42:12 2006] [notice] caught SIGTERM, shutting down [Thu Jul 6 08:02:47 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:02:47 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 08:04:57 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:04:57 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 08:51:58 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:51:58 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 09:25:12 2006] [notice] Apache/1.3.27 (Unix) PHP/4.3.3RC2 configured -- resuming normal operations [Thu Jul 6 09:25:12 2006] [notice] Accept mutex: flock (Default: flock) Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us -Original Message- From: Boyle Owen [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 9:25 AM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] How to tell if Apache is really running -Original Message- From: Graves, Jan [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 4:16 PM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] How to tell if Apache is really running First I have to apologize to all of you Apache experts for what will sound like a stupid question. However, I am new to Apache and will admit that I have not a clue what I am doing with it. How can I tell if Apache is really running, since now matter what I cannot access the web site this server should be hosting? This commandps -ax |grep http produces the following results: 1029 ?? Ss 0:00.46 /usr/local/sbin/httpd 1030 ?? I 0:00.00 /usr/local/sbin/httpd 1031 ?? I 0:00.00 /usr/local/sbin/httpd 1032 ?? I 0:00.00 /usr/local/sbin/httpd 1033 ?? I 0:00.00 /usr/local/sbin/httpd I am running Apache Version 1.3 on a Unix system. Things were running fine until storms took out the power over the week-end and the system needed to be re-started. This system was set up by a third party company who no longer provides support. So, I am trying to determine what the problem is. The Unix system itself starts and all of the processes that I expect, except Apache. I have attached the error log file. Please post the tail of the log in plain text - I (and others) cannot open MS word docs from untrusted sources.. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. If anyone needs further information, please let me know. I will try to find it. In looking at the Apache site, I know that things were not left in default places. Thanks in advance for any suggestions. Jan Graves Network
RE: [EMAIL PROTECTED] apache 2.2.2 and talking to Tomcat 5.5 via ProxyPass
Apache 2.2 makes it SOOO easy to talk to a Tomcat app by just using: ProxyPass /mytomcatapp ajp://127.0.0.1:8009/mytomcatapp But the problem I'm facing is that I have an app that uses it's own stylesheets and javascripts. Further, the app itself calls the contents on these directories with relative paths (ie ./stylesheets/...) And the problem is that these are not being proxied. Any ideas ? yes 1. I hope you have beside your ProxyPass /mytomcatapp ajp://127.0.0.1:8009/mytomcatapp a line ProxyPassReserve /mytomcatapp ajp://127.0.0.1:8009/mytomcatapp and/or ProxyPreserveHost On 2. Either you put the stylesheets for your relative names on the apache or you have to put all your stylesheets and javascripts under a proxied path. TIA... Greetings Oliver -- °(((=((===°°°(((=== winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] apache 2.2.2 and talking to Tomcat 5.5 via ProxyPass
1. I hope you have beside your ProxyPass /mytomcatapp ajp://127.0.0.1:8009/mytomcatapp a line ProxyPassReserve /mytomcatapp ajp://127.0.0.1:8009/mytomcatapp and/or ProxyPreserveHost On Did not have the ProxyPreserveHost On, but did have ProxyPassReverse. OK 2. Either you put the stylesheets for your relative names on the apache or you have to put all your stylesheets and javascripts under a proxied path. Would I need a proxied path such as: ProxyPass /mytomcatapp http://127.0.0.1:8009/mytomcatapp (and ProxyPassReverse) in addition to the ajp ? Or should I list them separatedly such as: ProxyPass /mytomcatapp/stylesheets http://127.0.0.1:8009/mytomcatapp/stylesheets No, you don't need both http and ajp. Only one is sufficient. And if you want a stylesheet from tomcat you can still use ajp. All what comes after /mytomcatapp [e.g. stylesheets inside /mytomcatapp/stylesheets] is proxied to tomcat. So these two lines are sufficient ProxyPass/mytomcatapp ajp://127.0.0.1:8009/mytomcatapp ProxyPassReserve /mytomcatapp ajp://127.0.0.1:8009/mytomcatapp The next thing what you should take care are your relative Links inside your application If you have inside your /mytomcatapp/example.jsp a link to ../pictures/image.jpg, than you have to insert 2 more lines ProxyPass/pictures ajp://127.0.0.1:8009/pictures ProxyPassReserve /pictures ajp://127.0.0.1:8009/pictures what here will not work is a link to ../image.jpg, this will be served than by Apache and not by tomcat. To go around this, than you have to proxy all things to Tomcat ProxyPass/ ajp://127.0.0.1:8009/ ProxyPassReserve / ajp://127.0.0.1:8009/ Thanks again... :-) bye oliver winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] How to tell if Apache is really running
[Thu Jul 6 08:02:47 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) Look inside the configuration of your ssl.conf or httpd.conf or if you have some separate conf-files for line like SSLCertificateKeyFile /path/to/server.key and check if the file is at place and if the user which runs apache have read access to this file. bye Oliver -Ursprüngliche Nachricht- Von: Graves, Jan [mailto:[EMAIL PROTECTED] Gesendet: Do 06.07.2006 16:45 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to tell if Apache is really running Owen, Here is the last portion of the file. [Thu Jul 6 07:42:12 2006] [notice] caught SIGTERM, shutting down [Thu Jul 6 08:02:47 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:02:47 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 08:04:57 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:04:57 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 08:51:58 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:51:58 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 09:25:12 2006] [notice] Apache/1.3.27 (Unix) PHP/4.3.3RC2 configured -- resuming normal operations [Thu Jul 6 09:25:12 2006] [notice] Accept mutex: flock (Default: flock) Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us -Original Message- From: Boyle Owen [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 9:25 AM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] How to tell if Apache is really running -Original Message- From: Graves, Jan [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 4:16 PM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] How to tell if Apache is really running First I have to apologize to all of you Apache experts for what will sound like a stupid question. However, I am new to Apache and will admit that I have not a clue what I am doing with it. How can I tell if Apache is really running, since now matter what I cannot access the web site this server should be hosting? This commandps -ax |grep http produces the following results: 1029 ?? Ss 0:00.46 /usr/local/sbin/httpd 1030 ?? I 0:00.00 /usr/local/sbin/httpd 1031 ?? I 0:00.00 /usr/local/sbin/httpd 1032 ?? I 0:00.00 /usr/local/sbin/httpd 1033 ?? I 0:00.00 /usr/local/sbin/httpd I am running Apache Version 1.3 on a Unix system. Things were running fine until storms took out the power over the week-end and the system needed to be re-started. This system was set up by a third party company who no longer provides support. So, I am trying to determine what the problem is. The Unix system itself starts and all of the processes that I expect, except Apache. I have attached the error log file. Please post the tail of the log in plain text - I (and others) cannot open MS word docs from untrusted sources.. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. If anyone needs further information, please let me know. I will try to find it. In looking at the Apache site, I know that things were not left in default places. Thanks in advance for any suggestions. Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are
RE: [EMAIL PROTECTED] How to tell if Apache is really running
find / -name '*.conf' -print This will find ssl.conf httpd.conf or example.com.conf etc... Greetings Oliver -Ursprüngliche Nachricht- Von: Graves, Jan [mailto:[EMAIL PROTECTED] Gesendet: Do 06.07.2006 19:40 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to tell if Apache is really running Oliver, Is there any way to just search for a file on a Unix system. I know that somewhere this morning I saw a httpd.conf file, but I cannot find it again. And the only ssl file I can find is openssl.cnf Thanks. Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 10:57 AM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] How to tell if Apache is really running [Thu Jul 6 08:02:47 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) Look inside the configuration of your ssl.conf or httpd.conf or if you have some separate conf-files for line like SSLCertificateKeyFile /path/to/server.key and check if the file is at place and if the user which runs apache have read access to this file. bye Oliver -Ursprüngliche Nachricht- Von: Graves, Jan [mailto:[EMAIL PROTECTED] Gesendet: Do 06.07.2006 16:45 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to tell if Apache is really running Owen, Here is the last portion of the file. [Thu Jul 6 07:42:12 2006] [notice] caught SIGTERM, shutting down [Thu Jul 6 08:02:47 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:02:47 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 08:04:57 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:04:57 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 08:51:58 2006] [error] mod_ssl: Init: Private key not found (OpenSSL library error follows) [Thu Jul 6 08:51:58 2006] [error] OpenSSL: error:0D07207B:asn1 encoding routine s:ASN1_get_object:header too long [Thu Jul 6 09:25:12 2006] [notice] Apache/1.3.27 (Unix) PHP/4.3.3RC2 configured -- resuming normal operations [Thu Jul 6 09:25:12 2006] [notice] Accept mutex: flock (Default: flock) Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us -Original Message- From: Boyle Owen [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 9:25 AM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] How to tell if Apache is really running -Original Message- From: Graves, Jan [mailto:[EMAIL PROTECTED] Sent: Thursday, July 06, 2006 4:16 PM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] How to tell if Apache is really running First I have to apologize to all of you Apache experts for what will sound like a stupid question. However, I am new to Apache and will admit that I have not a clue what I am doing with it. How can I tell if Apache is really running, since now matter what I cannot access the web site this server should be hosting? This commandps -ax |grep http produces the following results: 1029 ?? Ss 0:00.46 /usr/local/sbin/httpd 1030 ?? I 0:00.00 /usr/local/sbin/httpd 1031 ?? I 0:00.00 /usr/local/sbin/httpd 1032 ?? I 0:00.00 /usr/local/sbin/httpd 1033 ?? I 0:00.00 /usr/local/sbin/httpd I am running Apache Version 1.3 on a Unix system. Things were running fine until storms took out the power over the week-end and the system needed to be re-started. This system was set up by a third party company who no longer provides support. So, I am trying to determine what the problem is. The Unix system itself starts and all of the processes that I expect, except Apache. I have attached the error log file. Please post the tail of the log in plain text - I (and others) cannot open MS word docs from untrusted sources.. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. If anyone needs further information, please let me know. I will try to find it. In looking at the Apache site, I know that things were not left in default places. Thanks in advance for any suggestions. Jan Graves Network Administrator/Engineer Lenawee Intermediate School District 4107 N. Adrian Highway Adrian, MI 49221 Phone: 517-265-1634 Fax: 517-265-7405 Visit us on the web at http://lisd.k12.mi.us Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw.
RE: [EMAIL PROTECTED] apache and ssl
Joshua, Here is what is listed in the logs, but this is from this morning. I don't know why this information hasn't been updated: [Wed Jun 28 11:27:03 2006] [error] Init: Unable to read pass phrase [Hint: key introduced or changed before restart?] If you don't want to enter the passphrase at each start of Apache and to eliminate th eoccurance of this error, than you will have to delete the passphrase from your KEY. Make this - Take your SSLCertificateKeyFile /etc/apache2/ssl/keys/sitename.com.key - openssl rsa -in /etc/apache2/ssl/keys/sitename.com.key -out /etc/apache2/ssl/keys/sitename.com.nopp.key - You will be asked for the passphrase - Than change in your config: from SSLCertificateKeyFile /etc/apache2/ssl/keys/sitename.com.key to SSLCertificateKeyFile /etc/apache2/ssl/keys/sitename.com.nopp.key [see also http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removepassphrase] Than it will never asked again an the above error should not come again. bye Oliver winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Regarding Apache Plugin for weblogic server
What Version of Apache are you using ? If it is Apache 2.0.X than it should work. Otherwise if it is Apache 2.2.x than it will not working, becuse for the Apache 2.2.x no Weblogic Plugin is yet available. You can download the newest 9.1 binary and use the weblogic plugins for Apache from that version, perhaps they have now one. [A couple of weeks ago BEA Support told me they haven't]. Best Regards Oliver Schaudt -Ursprüngliche Nachricht- Von: sarvothaman vittal [mailto:[EMAIL PROTECTED] Gesendet: Mi 07.06.2006 23:13 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Regarding Apache Plugin for weblogic server I don't know but how can we find what kind of file of we have . can we cconvert asciii to binar format and vice versa. also before we do it can you tell me the command to check it. Thanks for your reply and will appreciate for your help On 6/7/06, William C. Mount [EMAIL PROTECTED] wrote: how did you get the file to your linux box? I had a similar problem installing the module a couple of years ago. It was an ASCII vs binary transfer that got me. William C. Mount RHCE J2EE Web Solutions CoEx Global IT Solutions Caterpillar Inc. 812 W. Washington St. East Peoria IL, 61630 (309) 675-3031 - Desk (309) 256-8099 - Cell [EMAIL PROTECTED] I love the way Microsoft follows standards. In much the same manner that fish follow migrating caribou. -- Paul Tomblin *sarvothaman vittal [EMAIL PROTECTED]* 06/07/2006 02:43 PM Please respond to users@httpd.apache.org To *To* users@httpd.apache.org [EMAIL PROTECTED] [EMAIL PROTECTED] cc Subject [EMAIL PROTECTED] Regarding Apache Plugin for weblogic server Caterpillar: Confidential GreenRetain Until: 07/07/2006 Retention Category: G90 - General Matters/Administration I am running into this error when I am trying to install the apache plugin module mod_wl_20.so on my apache web server running on Linux machine. the weblogic server is also on the same physical machine I edited the httpd.conf file with this line LoadModule weblogic_module modules/mod_wl_20.so After doing it when I run the command apachectl -t or httpd -t to verify the syntax it is giving me this error. *httpd: Syntax error on line 199 of /etc/httpd/conf/httpd.conf: API module structure `weblogic_module' in file /etc/httpd/modules/mod_wl_20.so is garbled - perhaps this is not an Apache module DSO? *I have copied the mod_wl_20.so from weblogic81/server/lib/linux/i686/ to httpd/modules which is my ServerRoot I do have mod_so.c enabled, which is confirmed by the command apachectl -l Can anyone please help me out why I am not able to load this module. -- Sarvothaman Vittal (251)-508-2982 winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] need help fighting DoS attack on Apache
Hi Sergey, mod_evasive could be a module for you in this case. Detection is performed by creating an internal dynamic hash table of IP Addresses and URIs, and denying any single IP address from any of the following: * Requesting the same page more than a few times per second * Making more than 50 concurrent requests on the same child per second * Making any requests while temporarily blacklisted (on a blocking list) Is is running on 1.3 oder 2.x http://www.nuclearelephant.com/projects/mod_evasive/ Greetings Oliver -Ursprüngliche Nachricht- Von: Sergey Tsalkov [mailto:[EMAIL PROTECTED] Gesendet: So 28.05.2006 19:50 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] need help fighting DoS attack on Apache Hey guys.. My Apache was hit with a DoS attack, where the attacker was opening connections to the server and not sending any data. It quickly reached the MaxClients limit and prevented any further connections to the server. The Server Status was filled with lines like this: 7-2 40390/8/8 R 0.013 25 0.0 0.010.01 ? ? ..reading.. and the apache log with lines like this: 87.10.176.44 - - [28/May/2006:17:26:24 +] - 408 - - - For some reason, Apache isn't listing the IP of the connection in Server Status until that connection actually makes a request. Anyone know why? Anyways, I tried mod_choke's functionality for limiting multiple connections from the same IP. That didn't help.. I suspect mod_choke doesn't activate until a request is received through the connection, so this script can dodge it by opening connections, not requesting anything, and keeping them open until they time out. mod_evasive was similarly unhelpful. I managed to stop the attack by setting IP bans at the firewall, but that doesn't actually solve the core problem. Anyone have any suggestions? - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Making Apache 2.2 work with Weblogic 8.1 (both on Solaris 9)
Like the last what i knew from the BEA-Support [a couple of minutes ago is that there doesn't exist a plugin for Apache 2.2 at the moment. For me there are only 2 possibilities: 1. Use 2.0.55 and mod_wl_20.so 2. Use 2.2.0 and mod_proxy_balancer to Weblogic and you can fire a feature request to the BEA Support that they compile mod_weblogic.c under Apache 2.2 Greetings Oliver -Ursprüngliche Nachricht- Von: Richard de Vries [mailto:[EMAIL PROTECTED] Gesendet: Di 25.04.2006 05:21 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Making Apache 2.2 work with Weblogic 8.1 (both on Solaris 9) I had a similar situation with WebSphere. It's just not compatible. I would definately recommend asking for a Apache 2.2 WebLogic plugin, but there is a good chance they won't have one for you. So, in the end you may have to back down to Apache 2.0.55. R --- Joshua Slive [EMAIL PROTECTED] wrote: On 4/24/06, D J Patel [EMAIL PROTECTED] wrote: I installed Apache 2.2 (using GNU gcc) on Solaris 9, Bea Weblogic8.1 on Solaris on two different servers. Both products works fine independently. Now I followed directions to configure the the Apache HTTP Server plug-in I did the following 1) Copied /opt/bea/weblogic81/server/lib/solaris/mod_wl_20.so from Weblogic server to /usr/local/apache2/modules directory in the Apache Server Apache 2.2 is not binary compatible with modules designed for Apache 2.0 (although it is largely source-compatible). So you'll need to ask Bea for a version compiled for 2.2. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Apache startet nicht mehr
Am Montag, 10. April 2006 16:57 schrieb [EMAIL PROTECTED]: Hallo Wolfgang, hast du dem virtuellen Server weniger RAM spendiert wie vorher ? Hallo, na ja, wenn jemand weniger RAM spendiert hat als vorher, dann war das nicht ich, sondern mein Anbieter. Der legt ja fest, wieviel Arbeitsspeicher die einzelnen virtuellen Server bekommen. Ist aber nicht Server4You - da haben vor kurzem andere auch dasselbe Problem gehabt. Ja und es sieht wirklich ganz danach aus, dass ich jetzt weniger Speicher zur Verfügung habe als vorher. Maximal kann ich 330 MB nutzen. Apache scheint allerdings schon mit Option -X ca. 200 MB zu brauchen. Ist das eigentlich nicht auch ein bisschen viel? Wenn der alle möglichen Module mit im Bauch hast könntest du einige LoadModule-Zeilen aus deiner httpd.conf auskommentieren. Das spart Speicher. Um herauszufinden, welche Module du nicht benötigst, solltest du die Zeilen um server-info aktivieren. Dann mit http://deinServerName/server-info herraussuchen, welche Module geladen sind und keine Konfiguration haben. Die könnten dann eigentlich alle deaktivert werden. Das der httpd -X funktioniert wundert nicht, denn da läuft immer nur 1 Prozess und er forkt keine neuen. Ist schon klar. Er hat wohl gerade soviel RAM übrig, um einen Prozess zu starten, aber dann keine weiteren. So sehe ich das auch mittlerweile. Ich dachte erst, das Problem läge woanders und die Fehlermeldung wäre irreführend, aber das scheint sich nicht zu bestätigen. Viele Grüße Wolfgang Schneegruesse aus MUC Oliver -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] -- -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
RE: Apache startet nicht mehr
Hallo Wolfgang, hast du dem virtuellen Server weniger RAM spendiert wie vorher ? Das der httpd -X funktioniert wundert nicht, denn da läuft immer nur 1 Prozess und er forkt keine neuen. Er hat wohl gerade soviel RAM übrig, um einen Prozess zu starten, aber dann keine weiteren. Gruss Oliver -Ursprüngliche Nachricht- Von: Wolfgang Jeltsch [mailto:[EMAIL PROTECTED] Gesendet: Sa 08.04.2006 22:16 An: users-de@httpd.apache.org Betreff: Apache startet nicht mehr Hallo, auf meinem virtuellen Server betreibe ich normalerweise Apache 2.0.54 mit Worker-MPM unter Debian GNU/Linux 3.1. Letzten Sonntag wurde mein Server neu gestartet. Der damit verbundene Start von Apache war allerdings nicht erfolgreich. Alle weiteren Versuche, Apache zu starten, schlugen fehl. Auch eine Neuinstallation von Apache half nichts. In den Logs standen jedes Mal Einträge der folgenden Form: [Sat Apr 08 13:55:29 2006] [alert] (12)Cannot allocate memory: apr_thread_create: unable to create worker thread [Sat Apr 08 13:55:29 2006] [alert] (12)Cannot allocate memory: apr_thread_create: unable to create worker thread [Sat Apr 08 13:55:40 2006] [alert] Child 5279 returned a Fatal error... Apache is exiting! Ich habe bereits versucht, andere Serverdienste zu stoppen, damit wirklich genügend Arbeitsspeicher zur Verfügung steht - ohne Erfolg. Mit Option -X startet Apache ohne Probleme. Ich sollte vielleicht noch dazu sagen, dass ich seit der Zeit, wo Apache noch lief, nichts an der Apache-Konfiguration verändert hatte. Allerdings könnte es sein, dass der Anbieter des virtuellen Servers Wartungsarbeiten am Hostsystem durchgeführt hat. Weiß jemand, was das zu bedeuten hat? Viele Grüße Wolfgang -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] -- -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
RE: [EMAIL PROTECTED] making Apache work with WebLogic
http://forums.bea.com/bea/message.jspa?messageID=600019159tstart=0 From there: This happens because the plugin assumes that in the apache install/homedir there is a logs directory and writes it's lock file into there. Many apache installs have a log (not logs) directory or even put the logfiles on a completely different filesystem Solution: create a symbolic link of your real log directory to apachehome/logs Greets Oliver -Ursprüngliche Nachricht- Von: Amalan, S [mailto:[EMAIL PROTECTED] Gesendet: Di 28.03.2006 07:20 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] making Apache work with WebLogic Hi! I am trying to make Apache work with WebLogic so that Apache functions like a proxy webserver which forwards the requests back and forth between a user and the WebLogic Web/App Server. I downloaded version 2.0.55 and followed the instructions at http://httpd.apache.org/docs/2.0/install.html and the Test described on that page succeeded. I have WebLogic successfully working on a separate machine. So, all I had to do was place the WebLogic Plug-in on the Apache server correctly to make Apache forward the requests to WebLogic. Though you may not be interested, I followed instructions at http://edocs.beasys.com/wls/docs81/plugins/apache.html#125129 to install the plug-in as a Dynamic Shared Object (meaning I didn't have to recompile Apache; it will pick it up at runtime). The only configuration I had to make to Apache's APACHE_HOME/conf/httpd.conf file was: -begin-- LoadModule weblogic_module modules/mod_wl128_20.so Listen 10.8.32.16:1180 # adding new section for WebLogic information IfModule mod_wl128_20.so WebLogicHost 10.8.32.26 WebLogicPort 7013 /IfModule -end-- The other settings remained as set during the Apache installation. However, when I start Apache (apachectl start), I get an error message in the logs/error_log file: [Mon Mar 27 22:06:29 2006] [crit] (13)Permission denied: mod_weblogic: Parent could not create lock Configuration Failed What does this mean? I have done the following: - Made sure the logs directory has full permissions (777) - checked to see and compare the files in the logs directory between having the LoadModule weblogic line in the httpd.conf file and having it blocked. This single line is making the difference between Apache running and not running. When LoadModule is blocked (and therefore Apache is running fine), I have the following files in the logs dir: 4096 Mar 27 15:26 . 4096 Mar 24 16:27 .. 0 Mar 27 15:26 .nfsB75A 303 Mar 27 12:53 access_log 1273 Mar 27 15:26 error_log 6 Mar 27 15:26 httpd.pid When LoadModule is not blocked (and Apache fails to start), the logs dir contains just the following: access_log error_log (and the dot files) Can someone help determine the cause of the error message reported earlier? Thanks. Amalan - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] mod_proxy_balance sticky sessions without cookies?
can you send your patch details so that I can see exactly what change you made in mod_proxy_balancer.c? Here it is what i did from mod_proxy_balancer.c: --- mod_proxy_balancer.c.ORIG 2005-11-10 16:20:05.0 +0100 +++ mod_proxy_balancer.c2006-01-31 18:03:56.0 +0100 @@ -111,9 +111,17 @@ const char *name) { char *path = NULL; +char *session_id = NULL; +int i; +session_id= apr_pstrdup(pool, name); +/* Change 'JSESSIONID' to 'jsessionid' to match the value in the url */ +if (isupper(name[0])) { +for (i=0;i=strlen(session_id);i++) +session_id[i] = tolower(session_id[i]); +} -for (path = strstr(url, name); path; path = strstr(path + 1, name)) { -path += (strlen(name) + 1); +for (path = strstr(url, session_id); path; path = strstr(path + 1, session_id)) { +path += strlen(session_id); if (*path == '=') { /* * Session path was found, get it's value Thanks for your help, - Sam Greets Oliver - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] mod_proxy_balance sticky sessions without cookies?
[EMAIL PROTECTED] wrote: Hi Sam, i have had the same problem and i resolve it for me with a source change inside mod_proxy_balancer.c In the function get_path_param i made the stickyness parameter from the apache config [JESSIONID] lowercase, because here you will get everytime the identifier as jsessionid. If is anybody out there which knows some better and easier way, i am glad to know it. Greetings Oliver Thanks Oliver, Your reply prompted me to look at the relevant code which is exactly where I need to start I believe. Now I know that mod_proxy_balancer does inspect the URL looking for a session id parameter which is the most important thing. I still don't really understand why it isn't working. Are you saying that mod_proxy_balancer sees only lowercase URL parameter names? So that 'SID' won't work but 'sid' will? Do you know why this is? Yes this is the case [at least for me and i think by you too] When i put in my apache config JSESSIONID than Cookies was working. But if there aren't any cookies allowed by the browser and the sessionn url rewriting will be made ;jsessionid=123456 that it failed. When i put in my apache config jsessionid than the session url rewriting is working and will be sticky balanced, but than JSESSIONID will fail. If it is not too inconvenient, No, it doesn't matter can you send your patch details so that I can see exactly what change you made in mod_proxy_balancer.c? Yes, i will send the lines tommorow. Today i am not at my workplace. Thanks for your help, - Sam Greets Oliver - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] 2 Tomcat instances on one box: stop bouncing between them?
You said you are using default config. Most of the time the Host inside the config of the TOMCAT is localhost. There you should insert dev.foobar.com and stage.foobar.com instead. Can you check this ? bye Oliver -Ursprüngliche Nachricht- Von: Clute, Andrew [mailto:[EMAIL PROTECTED] Gesendet: Fr 10.03.2006 17:49 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] 2 Tomcat instances on one box: stop bouncing between them? I have one box, that hosts both my dev and stage environments. Both are different config directories inside of JBoss 4.0.3sp1. Each one is bound to a different IP address. I have turned on the jvmRoute for both instances. The domain names are dev.foobar.com and stage.foobar.com For some reason, while my URL in the browser will stay the same, it will flip between which JBoss instance is responding. And when I look at the cookies for each flip, they are the exact same (sometimes I will get a '.stage' appending, but be shown the dev site). I am using the default config, so clustering is not enabled (I think). I am fronting this with Apache 2.2, using the new mod_proxy_ajp settings. Here is the relelvant httpd.conf sections: Code: VirtualHost * ServerName stage.foobar.com ErrorLog logs/stage-error_log.log CustomLog logs/stage-access.log combined ProxyPass /jcore ajp://192.168.2.87/jcore smax=5 max=20 ttl=30 retry=60 route=stage ProxyPreserveHost on /VirtualHost VirtualHost * ServerName dev.foobar.com ErrorLog logs/stage-error_log.log CustomLog logs/stage-access.log combined ProxyPass /jcore ajp://192.168.2.85/jcore smax=5 max=20 ttl=30 retry=60 route=dev ProxyPreserveHost on /VirtualHost There is no consistent nature to this. Anyone seen something like this before? Thanks in advance! -Andrew winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Blocking invalid URIs?
The thing what you need is mod_security http://www.modsecurity.org/ which is acting as a module inside Apache. Here eare rules for it http://www.modsecurity.org/projects/rules/index.html They are snort-like mod_security block your invalid url's. bye Oliver -Ursprüngliche Nachricht- Von: John Rodenbiker [mailto:[EMAIL PROTECTED] Gesendet: Sa 11.03.2006 02:06 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Blocking invalid URIs? -- Freedom, Truth, Love, Beauty. John Rodenbiker [EMAIL PROTECTED] On Mar 10, 2006, at 4:25 PM, Sean Conner wrote: It was thus said that the Great John Rodenbiker once stated: Is there a way to have httpd drop requests to URIs that don't actually exist in my environment? It's turned on by default in Apache. In other words, any content *outside* of the DocumentRoot is not served up, no matter how many ../ are thrown at the web server. Don't put anything you don't want seen in the DocumentRoot. That's good to know, thank you. The reason I ask is because there is a company trying to sell a web application firewall that appears to do just what I asked, except for $9995. Are these guys full of it, or what are they really offering? http://www.webscurity.com/products.htm - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] 2 Tomcat instances on one box: stop bouncing between them?
If you have the both JBOSS including Tomcat on two different machines than it should do nothing, but i don't know if it is going well on one machine. Another aspect: What is if you use VirtualHost stage.foobar.com ServerName stage.foobar.com ErrorLog logs/stage-error_log.log CustomLog logs/stage-access.log combined ProxyPass /jcore ajp://192.168.2.87/jcore smax=5 max=20 ttl=30 retry=60 route=stage ProxyPreserveHost on /VirtualHost VirtualHost dev.foobar.com ServerName dev.foobar.com ErrorLog logs/stage-error_log.log CustomLog logs/stage-access.log combined ProxyPass /jcore ajp://192.168.2.85/jcore smax=5 max=20 ttl=30 retry=60 route=dev ProxyPreserveHost on /VirtualHost I think if you use two times * for in the VirtualHost Line only on can win, and you don't know which. bye Oliver -Ursprüngliche Nachricht- Von: Clute, Andrew [mailto:[EMAIL PROTECTED] Gesendet: Sa 11.03.2006 21:39 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] 2 Tomcat instances on one box: stop bouncing between them? Do you have to do this, even if the two sites are being run inside of two different tomcat instances? It looks to me like the defaultHost attribute just maps to an host listed below it. Since this is inside Jboss, it just has the default localhostbut I have two different Jboss instances running. Also, it looks to me like the defaultHost entry has nothing to do with the actual DNS name of the request...or am I reading that wrong? -Andrew -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Saturday, March 11, 2006 1:48 PM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] 2 Tomcat instances on one box: stop bouncing between them? You said you are using default config. Most of the time the Host inside the config of the TOMCAT is localhost. There you should insert dev.foobar.com and stage.foobar.com instead. Can you check this ? bye Oliver -Ursprüngliche Nachricht- Von: Clute, Andrew [mailto:[EMAIL PROTECTED] Gesendet: Fr 10.03.2006 17:49 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] 2 Tomcat instances on one box: stop bouncing between them? I have one box, that hosts both my dev and stage environments. Both are different config directories inside of JBoss 4.0.3sp1. Each one is bound to a different IP address. I have turned on the jvmRoute for both instances. The domain names are dev.foobar.com and stage.foobar.com For some reason, while my URL in the browser will stay the same, it will flip between which JBoss instance is responding. And when I look at the cookies for each flip, they are the exact same (sometimes I will get a '.stage' appending, but be shown the dev site). I am using the default config, so clustering is not enabled (I think). I am fronting this with Apache 2.2, using the new mod_proxy_ajp settings. Here is the relelvant httpd.conf sections: Code: VirtualHost * ServerName stage.foobar.com ErrorLog logs/stage-error_log.log CustomLog logs/stage-access.log combined ProxyPass /jcore ajp://192.168.2.87/jcore smax=5 max=20 ttl=30 retry=60 route=stage ProxyPreserveHost on /VirtualHost VirtualHost * ServerName dev.foobar.com ErrorLog logs/stage-error_log.log CustomLog logs/stage-access.log combined ProxyPass /jcore ajp://192.168.2.85/jcore smax=5 max=20 ttl=30 retry=60 route=dev ProxyPreserveHost on /VirtualHost There is no consistent nature to this. Anyone seen something like this before? Thanks in advance! -Andrew - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] mod jk
[EMAIL PROTECTED]/apache/bin# ./apachectl start Syntax error on line 212 of /home/qrq/suds_20_dir/apache/conf/httpd.conf: Invalid command 'JkWorkersFile', perhaps mis-spelled or defined by a module not included in the server configuration /apachectl start: httpd could not be started [EMAIL PROTECTED]/apache/bin# Perhaps you forgotten to insert the module mod_jk.so inside your httpd.conf LoadModule jk_module libexec/mod_jk.so Please let me know where i am going wrong Regards Kaushal Greets Oliver - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] SSLVerifyClient require in Virtual Host
Hi Tony, if you want run SSL my understanding is that your server need a certificate and a key file too or do you have it at another place ? Like: SSLCertificateFile/path/to/conf/ssl.crt/subversion2.phoenixphire.org.crt SSLCertificateKeyFile /path/to/conf/ssl.key/subversion2.phoenixphire.org.key Than it would be better not to put your key and crtificate files in the document root. Make this too: SSLCertificateFile/path/to/conf/ssl.crt/ca.crt LogLevel debug can help you later that you see what is going wrong during the connection phase between your client and your server Greets oliver -Ursprüngliche Nachricht- Von: Tony Davies [mailto:[EMAIL PROTECTED] Gesendet: Do 02.03.2006 00:59 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] SSLVerifyClient require in Virtual Host Hi, I am running Apache 2.0.55 on a Linux From Scratch box. I am trying to get an entire virtual host to get an entire virtual host to use client certificates to authenticate, however I can only get it to work on Location / directive (I havent tried Directory) which forces a renogiate. This is fine for things like Firefox which can handle the renogiation, however I plan on turning this virtual host into a subversion repository and havent been able to get renogiation to work with the svn client or javasvn (but that is a whole other problem). The subversion2.phoenixphire.org-ssl.log verifies that a client certificate isnt being sent with my configuration. After running some tests with SSLVerifyClient require in a Location / directive I can verify that firefox does send a client certificat after a renogiation. Is this a bug? The Apache 2.0 documentation says that this is valid and should work (The howto on the apache site for this also says this should work). Cheers, Phoenix My virtual host config is as follows: VirtualHost *:443 ServerName subversion2.phoenixphire.org DocumentRoot /srv/www/subversion2.phoenixphire.org ErrorLog /var/log/apache/subversion2.phoenixphire.org-error.log CustomLog /var/log/apache/subversion2.phoenixphire.org-access.log common CustomLog /var/log/apache/subversion2.phoenixphire.org-ssl.log %t %{SSL_CLIENT_I_DN_CN}x %{SSL_CLIENT_S_DN_CN}x SSLCACertificateFile /srv/www/ca.crt SSLVerifyClient require SSLVerifyDepth 1 SSLOptions +StrictRequire /VirtualHost - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] OS Env variables - TMP
I think Apache takes your %TEMP%/httpd.pid as an relative path Is there a difference in the behaviour when you make it inside PidFile %temp%/apache.pid bye Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: Di 28.02.2006 16:42 An: users Betreff: RE: [EMAIL PROTECTED] OS Env variables - TMP Tx for your answer. I actually tried this solution before with %tmp% window env variable, but did not work, nor with %systemroot. I tried to do that for the directive: PidFile %temp%/apache.pid Error message i get is: fopen: no such file or directory Apache.exe: could not log pid to file /apache/%systemroot%/temp Major problem: 1. /apache is prepended which i do not want, therefore the full path is wrongly interpreted If any answer to that, thanks to let me know. Regards, Sébastien -- Initial Header --- From : [EMAIL PROTECTED] To : users@httpd.apache.org Cc : Date : Tue, 28 Feb 2006 14:09:12 +0100 Subject : RE: [EMAIL PROTECTED] OS Env variables - TMP On attempt on Windows Systems %SystemRoot%\temp Greets Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: Di 28.02.2006 11:29 An: users Betreff: [EMAIL PROTECTED] OS Env variables - TMP Hello, In my attempt to ship Apache as a standlone server on a CD-ROM to run a Web-based application, I would need to access my OS environment variables from httpd.conf, since i would like to access TEMP directory on any computer (at least Windows-based computers). Any idea how to achieve that? Thanks for your help -- ALICE HAUT DEBIT : TRIPLE PLAY A 29,95 EUR/MOIS -- Découvrez vite ALICEBOX : avec le modem WIFI, profitez de l'ADSL, de la TELEPHONIE et en exclusivité de la TELEVISION ! Bénéficiez aussi de la hotline gratuite 24h/24 ! Soumis à conditions. Pour en profiter cliquez ici http://abonnement.aliceadsl.fr - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- ALICE HAUT DEBIT : TRIPLE PLAY A 29,95 EUR/MOIS -- Découvrez vite ALICEBOX : avec le modem WIFI, profitez de l'ADSL, de la TELEPHONIE et en exclusivité de la TELEVISION ! Bénéficiez aussi de la hotline gratuite 24h/24 ! Soumis à conditions. Pour en profiter cliquez ici http://abonnement.aliceadsl.fr - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] apache ssl
Ursprüngliche Nachricht- Von: azeem ahmad [mailto:[EMAIL PROTECTED] Gesendet: Di 28.02.2006 20:05 An: users@httpd.apache.org; [EMAIL PROTECTED] Betreff: [EMAIL PROTECTED] apache ssl hi list, i have installed httpd with webdav, now i want it to run on https only, its running on both http and https both, how can i disable http Assuming that your http is listening on 80 Look in your config file for a line Listen 80 or Listen ip_or_host80 and make a # in front of this line Regards Azeem greetings Oliver - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] How to Check
What about /bin/arch which should be the same like uname -m and what do you get from httpd -V | grep Architecture bye Oliver -Ursprüngliche Nachricht- Von: sanjay tripathi [mailto:[EMAIL PROTECTED] Gesendet: Mo 27.02.2006 19:11 An: users@httpd.apache.org Betreff: Re: AW: [EMAIL PROTECTED] How to Check For me its uname -p is unkown.. Thanks Sanjay Tripati [EMAIL PROTECTED] wrote: uname -p | cut -d\_ -f2 for me on Linux i receive than 64 -Ursprüngliche Nachricht- Von: sanjay tripathi [mailto:[EMAIL PROTECTED] Gesendet: Mo 27.02.2006 19:00 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] How to Check In Solaris There is Command isainfo -b But in Linux :) ?? Kishore Jalleda wrote: I am not really sure but may be you could get some hint from these #cat /proc/cpuinfo #uname -a #arch or refer to your products documentation :) Kishore Jalleda On 2/27/06, sanjay tripathi wrote: Hey, can you tell me any one if i want to know that How to check to Linux Base OS that its N Bit OS? Any command by which we can get? Thanks Sanjay Tripathi Yahoo! Mail Bring photos to life! New PhotoMail makes sharing a breeze. - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - Brings words and photos together (easily) with PhotoMail - it's free and works with Yahoo! Mail. - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - Yahoo! Mail Bring photos to life! New PhotoMail makes sharing a breeze. winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re: Apache1.3.33 with mod_ssl compilation error
Hi Jerome, Are you having any 3rd party modules which prevents you to use Apache 2.x ? There you have mod_ssl integrated inside apache An apache 1.3.x is more complicated to compile because you must have the corresponding mod_ssl and openssl version together with your apache The above lines are from a description at http://www.modssl.org/example/ to compile an Apache 1.3.34 you have to compile in this way $ cd mod_ssl-2.8.25-1.3.34 $ ./configure \ --with-apache=../apache_1.3.34 \ --with-ssl=../openssl-0.9.8a \ --prefix=/usr/local/apache put here your more options.. $ cd .. $ cd apache_1.3.34 $ make $ make certificate $ make install and you need http://httpd.apache.org/dist/httpd/apache_1.3.34.tar.gz ftp://ftp.modssl.org/source/mod_ssl-2.8.25-1.3.34.tar.gz ftp://ftp.openssl.org/source/openssl-0.9.8a.tar.gz bye Oliver -Ursprüngliche Nachricht- Von: JM [mailto:[EMAIL PROTECTED] Gesendet: Fr 24.02.2006 09:24 An: users@httpd.apache.org Cc: Schaudt, Oliver Betreff: Re: [EMAIL PROTECTED] Re: Apache1.3.33 with mod_ssl compilation error Hi, rpm -q -l --provides openssl-0.9.7a-20.2 | grep libssl libssl.so.4 /lib/libssl.so.0.9.7a # SSL_BASE=/lib/ [EMAIL PROTECTED] apache_1.3.34]# ./configure --disable-module=all --prefix=/usr/local/apache --server-uid=apache --server-gid=apache --enable-module=access --enable-module=log_config --enable-module=dir --enable-module=mime --activate-module=src/modules/php4/libphp4.a --enable-module=alias --enable-module=status --enable-module=ssl --enable-shared=ssl --enable-module=auth Error: Cannot find SSL binaries under /lib/ + SSL library path: /lib/ I still get this error.. tia, On Thursday 23 February 2006 9:25 pm, [EMAIL PROTECTED] wrote: Make an rpm -qa | grep openssl then with the outcoming name (for example openssl-0.9.8a-11.18) make rpm -q -l --provides openssl-0.9.8a-11.18 | grep libssl Than you shoudl know where it is. bye Oliver -Ursprüngliche Nachricht- Von: JM [mailto:[EMAIL PROTECTED] Gesendet: Do 23.02.2006 13:20 An: users@httpd.apache.org Cc: Joost de Heer; ziwei ds Betreff: Re: [EMAIL PROTECTED] Re: Apache1.3.33 with mod_ssl compilation error Hi, what application provides ssl library? in my system openssl and the dev was is currently installed via RPM. Ive tried setting SSL_BASE to /usr/lib but with no luck.. Error: Cannot find SSL binaries under /usr/lib tia, On Friday 08 July 2005 12:34 am, Joost de Heer wrote: Error: Cannot find SSL binaries under /usr/local/ssl Apparently you don't have the SSL libraries in /usr/local/ssl/lib. Joost - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] determining page size correctly
Hello again.. The reason for web page size exploration is a rule for the application. No page will exceed 150K, only %35 can exceed 60K etc.. I am not good at Apache so can you explain referrers a bit more and how to use it in page size exploration And when I connect with a browser I could not see the page size (from rigth click properties size )This can be due to HTTPS protocol ? Instead of a normal browser like firefox or IE you can use wget wget -nc -p -l inf -r -E https://yoursite will download all files from your website on which you have reference and make on your harddisk directories with the same structure of the webpage. It will save an index.jsp with all its dependant parts. bye Oliver winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] how to avoid to go to parent directory
Hi Maurizio, for Tomcat you should change the default entry for Listing directories inside tomcat-dir/conf/web.xml There inside, search for listings, than you will find ... !-- listings Should directory listings be produced if there -- !-- is no welcome file in this directory? [true] -- and init-param param-namelistings/param-name param-valuetrue/param-value /init-param Here you should change the value from from param-valuetrue/param-value toparam-valuefalse/param-value Then each attempt for an access to a directory will be treated as 403 Forbidden. bye Oliver -Ursprüngliche Nachricht- Von: Boyle Owen [mailto:[EMAIL PROTECTED] Gesendet: Mi 22.02.2006 12:38 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] how to avoid to go to parent directory -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Mittwoch, 22. Februar 2006 12:28 To: users@httpd.apache.org Subject: [EMAIL PROTECTED] how to avoid to go to parent directory I'm using apache 2.0.55 or tomcat-4.1.30 and i would like to avoid that an user after having accessed a resource (an .txt or .pdf file) using an url can see the list of the directory containg that file or a parent directory simply deleting the name of the file (the last word). See http://httpd.apache.org/docs/2.0/mod/core.html#options and the Indexes option. (you probably want Options -Indexes) Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. Thanks in advance to all. Maurizio Salviato Servizio Supporto Sistemi Integrazione Sistemi Office Automation Gruppo PAM s.p.a. (041-5496-226 fax.041-5496-296 * [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] apachectl and multiple daemons
Hi Richard, -Ursprüngliche Nachricht- Von: Richard de Vries [mailto:[EMAIL PROTECTED] Gesendet: Mi 22.02.2006 22:23 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] apachectl and multiple daemons I have the need to run multiple daemons off of the same apache base install. Each daemon will have it's own configuration file of course, but since they are all configured pretty much the same (same modules etc) I don't see a need to have several apache installs. Me too So, I'd have one install, i.e. /usr/apache/ Ok with multiple configs, i.e /usr/apache/conf/httpd-host1.conf /usr/apache/conf/httpd-host2.conf /usr/apache/conf/httpd-host3.conf Is there an apachectl script that allows for multiple daemons to be managed? (start/stop/restart) ? There a several things you can do (i have the Number 2 running) 1. Config-independent. Make a symlink of the apachectl and name the links than host1 / host2 / host3 Inside of apachectl put at the begin PROGRAMM_NAME=`basename $0` to receive the name of your host. Than change the line HTTPD=/usr/apache/bin/httpd into if [ $PROGRAMM_NAME != apachectl ];then HTTPD=/usr/apache/bin/httpd -f /usr/apache/conf/httpd-${PROGRAMM_NAME}.conf else HTTPD=/usr/apache/bin/httpd fi OR 2. config- and version-independant: After a clean installation make a complete split of the binaries and your domain files Binaries: /usr/apache/2.0.55/ /usr/apache/2.2.0/ /usr/apache/other_version and herein at least bin/lib/libexec of each version The config files and your doamain files (Docroot,Logs etc) put than under /usr/apache/host1 /usr/apache/host2 /usr/apache/host3 and above each host you have etc configuration-with the httpd.conf, perhaps vhosts, ssl-configs, certificate The serverroot in your httpd.conf you should change to the desired version e.g /usr/apache/2.2.0 var Docroot, logs bin receives a copy of the apachectl of your desired version name the copy host1 / host2 /host3 and change the same things like before in 1.) additionally you have to take care now which version of apache you want to use if [ $PROGRAMM_NAME != apachectl ];then HTTPD=/usr/apache/2.2.0/bin/httpd -f /usr/apache/conf/httpd-${PROGRAMM_NAME}.conf else HTTPD=/usr/apache/2.2.0/bin/httpd fi If you want to use later another version of Apache for your domain you only have to change your copied apachectl with the HTTPD-Line and the ServerRoot line in httpd.conf bye Oliver Than search for the line after start and status. Here you can put the desired conffile with R __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE:[EMAIL PROTECTED] huge mod_jk.log
Hello I got mod_jk working, hurrah, however I am serving large files and the mod_jk.log file is huge. When it is over about 100MB Apache will not start up. Clear out the file and it starts fine. How do I configure Apache to log as tersely as possible to mod_jk.log? You can use rotatelogs http://httpd.apache.org/docs/2.2/programs/rotatelogs.html This works for JkLogFile too Example: JkLogFile |/path/to/apache/bin/rotatelogs /path/to/apache/logs/mod_jk.log.%Y-%m-%d-%H_%M_%S 5M The rotation is here after 10 MB with a timestamp of mod_jk.log.2006-02-23-12_00_00. If you are using 2.2 you can use mod_proxy_ajp http://httpd.apache.org/docs/2.1/mod/mod_proxy_ajp.html bye Oliver winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] apache 2.2 build failure
Like what Keith and Joost said, send your configure line. There should be something mising. I can test it on a SLES on an AMD 64 Opteron. bye Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: So 19.02.2006 14:39 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] apache 2.2 build failure Yes - please post your configure line, and I will try and do a build on SuSE 9.2 pro as well. Keith In theory, theory and practice are the same; In practice they are not. On Sun, 19 Feb 2006, Joost de Heer wrote: To: kalin mintchev [EMAIL PROTECTED] From: Joost de Heer [EMAIL PROTECTED] Subject: Re: [EMAIL PROTECTED] apache 2.2 build failure kalin mintchev wrote: anybody has tried mod_proxy and balancer then? hi al... trying to build apache 2.2 with the http proxy and load balancing modules enabled. ./configure went trough fine. the making fails. i'm attaching the full output of where the error happens but here is a few lines of it What is your exact configure line? Joost - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE [EMAIL PROTECTED] Re: Apache 2 on Suse 9.1 Reverse Proxy not working
2. Server responds with rewrite of URL: http://lucas.delexian.com/welcome/index.jsp The server is making a reversproxy for the locations /ocs but not for /welcome So i think you need Location /welcome/ ProxyPassReverse / SetOutputFilter proxy-html ProxyHTMLURLMap / /welcome/ ProxyHTMLURLMap /welcome /welcome RequestHeader unset Accept-Encoding /Location perhaps too Here you need to use ProxyPass /ocs ajp://lucas.delexian.com:8009 Is ajp as part of mod_ajp only avaible since Apache 2.2 ? Greets Oliver -Ursprüngliche Nachricht- Von: Joost de Heer [mailto:[EMAIL PROTECTED] Gesendet: Mi 15.02.2006 00:37 An: [EMAIL PROTECTED] Cc: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Re: Apache 2 on Suse 9.1 Reverse Proxy not working 1. issue the following URL: http://lucas.delexian.com/ocs 2. Server responds with rewrite of URL: http://lucas.delexian.com/welcome/index.jsp 3. However, server message is: Object not found! The requested URL was not found on this server. If you entered the URL manually please check your spelling and try again. The .jsp makes me think you want to proxy to a Tomcat machine. Then: ProxyPass /ocs http://lucas.delexian.com:8009 Here you need to use ProxyPass /ocs ajp://lucas.delexian.com:8009 Joost - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] Apache performance
Perhaps this http://www.cohprog.com/mod_bandwidth.html bye OLiver -Ursprüngliche Nachricht- Von: Bob Bo [mailto:[EMAIL PROTECTED] Gesendet: Mi 15.02.2006 13:29 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Apache performance Hello all, I have a small project of distributing a single 30M file to 10.000 Users. I build up a small php site that will gather user registration information and generate a link to that file. Then users will be able to download the file. I was wondering if some of you could help me out with the bottlenecks I might be facing. Are there particular points that I must take care of? For the moment I'm using 2.0.53 in the prefork model. StartServers 20 MinSpareServers 25 MaxSpareServers 50 MaxClients 256 MaxRequestsPerChild 0 Should I also increase ServerLimit? Should I play with HTTP1/1 or disable it? (The site has one image) When I launch hundreds of connections to the site and make a top, I see for example that 98% of my processes are sleeping... with only 2-3 running. but iptraf clearly shows that the whole bandwidth is being taken... Am I only serving 2-3 clients? CPU and I/Os are null... Am I missing something? Advices would highly be appreciated :) Thanks LoPo - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] force 404 error
ErrorDocument 403 /path/to/errorfile/404.html see http://httpd.apache.org/docs/2.0/custom-error.html bye Oliver Schaudt -Ursprüngliche Nachricht- Von: Uk1ah Sm1th [mailto:[EMAIL PROTECTED] Gesendet: Mi 15.02.2006 16:29 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] force 404 error I want to know if it is possible to force a 404 error even when a file or directory exist. I manage my website using svn. I pull a working copy into my htdocs directory. This also creates .svn directorys with svn meta data. Right now they return 403 forbiden. However I would like it if they could return 404 not found when the directory is typed in to the address bar. Such as: http://example.com/.svn The file is there, but I want the user to see a 404. Thanks. Ukiah -- Well done is better than well said. - Benjamin Franklin (1706-1790) - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0)
Should I post a bug report? Than Do it -Ursprüngliche Nachricht- Von: Kresimir Peharda [mailto:[EMAIL PROTECTED] Gesendet: Di 14.02.2006 21:04 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0) --- [EMAIL PROTECTED] wrote: Can you turn on LogLevel Debug and post some lines out of it. If occur, Lines around proxy: HTTPS: declining URL or proxy: HTTP: serving URL Ok, I tried that, but nothing like HTTPS in the logs. As I said, I suspect that the problem is in rewriting replies properly. Requests are fine. At this stage I am suspecting a bug, unless someone is ready to convince me that rewriting replies to always start with http, and never with https is wanted behaviour. In addition to the LogLevel Debug you can use a RewriteRule in Conjunction with ProxyPreserveHost on instead of a ProxyPass/ProxyPassReverse combination So instead of ProxyPass /b-end/ http://backend/ ProxyPassReverse /b-end/ http://backend/ use RewriteRule ^/b-end/(.*)$ http://backend/$1 [P,L] ProxyPreserveHost On Than turn on RewriteLog logs/fe-rewrite.log and RewriteLogLevel 9 I did that too. So, RewriteRule works just like ProxyPass, but ProxyPreserveHost On does not have the same effect like ProxyPassReverse. Any ideas on how to use Header directive or external filters to rewrite headers in replies? From my experiment with external filters I could deduce that they work on the content of replies, rather than on their headers. Is that true? Should I post a bug report? Cheers, Kresimir __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] force 404 error
Right now they return 403 forbiden In your first post you talked of a HTTP_FORBIDDEN (403) not from a HTTP_OK (200) With ErrorDocument 403 404.html you send each user which gets a HTTP_FORBIDDEN (403) your HTTP_NOT_FOUND page I am looking for a way to change a http response from 200 to 404 This is new and cannot be covered alone by the thing above Here should help a RewriteRule and a RewriteCond in a manner like this RewriteCond %{REQUEST_URI} .svn RewriteRule ^(.*)$ 404.html Oli -Ursprüngliche Nachricht- Von: Uk1ah Sm1th [mailto:[EMAIL PROTECTED] Gesendet: Mi 15.02.2006 17:20 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] force 404 error On Wed, Feb 15, 2006 at 04:54:51PM +0100, [EMAIL PROTECTED] wrote: ErrorDocument 403 /path/to/errorfile/404.html see http://httpd.apache.org/docs/2.0/custom-error.html bye I am not looking for how to make custom error pages. I am looking for a way to change a http response from 200 to 404. I have some directorys that exist on my server, .svn directorys. When a user types in http://example.com/.svn the NORMALLY get a 200 response and the file. This is because the .svn directory is there and readable. I want a user to recieve a 404 file not found INSTEAD of the 200, without me having to manually delete the .svn directorys. I don't want users to even know that the .svn directorys exist. Thanks .U -- Well done is better than well said. - Benjamin Franklin (1706-1790) - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] force 404 error
You can put RewriteCond/RewriteRule inside server config, virtual host, directory, .htaccess see http://httpd.apache.org/docs/2.0/mod/mod_rewrite.html#rewritecond You don't need the DirectoryMatch because the same thing makes RewriteCond for you. REQUEST_URI is the part after host:port e.g www.example.com:8000/dir1/dir2/.svn the /dir1/dir2/.svn-part RewriteCond %{REQUEST_URI} ^(.*)/.svn(.*)$ RewriteRule ^(.*)$ /errors/404.html This should do the trick to rewrite all .svn which could be in any URI. bye Oli -Ursprüngliche Nachricht- Von: Uk1ah Sm1th [mailto:[EMAIL PROTECTED] Gesendet: Mi 15.02.2006 18:04 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] force 404 error On Wed, Feb 15, 2006 at 05:38:05PM +0100, [EMAIL PROTECTED] wrote: Right now they return 403 forbiden In your first post you talked of a HTTP_FORBIDDEN (403) not from a HTTP_OK (200) Sorry about the confusion. I currently have the .svn directorys set as forbidden. With ErrorDocument 403 404.html you send each user which gets a HTTP_FORBIDDEN (403) your HTTP_NOT_FOUND page I am looking for a way to change a http response from 200 to 404 This is new and cannot be covered alone by the thing above Here should help a RewriteRule and a RewriteCond in a manner like this RewriteRule ^(.*)$ 404.html Oli I thinks this is what I'm looking for. Could it be put inside a DirectoryMatch item? DirectoryMatch ^/.*/\.svn/ RewriteCond .* RewriteRule ^(.*)$ /errors/404.html /DirectoryMatch thanks again. -Urspr?ngliche Nachricht- Von: Uk1ah Sm1th [mailto:[EMAIL PROTECTED] Gesendet: Mi 15.02.2006 17:20 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] force 404 error On Wed, Feb 15, 2006 at 04:54:51PM +0100, [EMAIL PROTECTED] wrote: ErrorDocument 403 /path/to/errorfile/404.html see http://httpd.apache.org/docs/2.0/custom-error.html bye I am not looking for how to make custom error pages. I am looking for a way to change a http response from 200 to 404. I have some directorys that exist on my server, .svn directorys. When a user types in http://example.com/.svn the NORMALLY get a 200 response and the file. This is because the .svn directory is there and readable. I want a user to recieve a 404 file not found INSTEAD of the 200, without me having to manually delete the .svn directorys. I don't want users to even know that the .svn directorys exist. Thanks .U -- Well done is better than well said. - Benjamin Franklin (1706-1790) - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Well done is better than well said. - Benjamin Franklin (1706-1790) - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] AW: RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0)
Can you turn on LogLevel Debug and post some lines out of it. If occur, Lines around proxy: HTTPS: declining URL or proxy: HTTP: serving URL bye Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: Mo 13.02.2006 19:41 An: users@httpd.apache.org Betreff: RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0) Only to make a ProxyPassReverse is not enough to make https Do you have in your httpd.conf at least Lines like this ? SSLEngine On SSLProxyEngine On Listen fe:443 Your four lines with the Location shows a ProxyPass Directive with an absolute URL to the backend, which is normal. You cannot go to the backend with only 1 Location, you have to do this at least twice. 1 for http and 1 for https. This was the intention why i said you need 2 virtual hosts. Here are some examples http://httpd.apache.org/docs/2.2/en/vhosts/examples.html bye Oliver -Ursprüngliche Nachricht- Von: Kresimir Peharda [mailto:[EMAIL PROTECTED] Gesendet: Mo 13.02.2006 12:16 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0) --- [EMAIL PROTECTED] wrote: Where in your config should come the https from ? If you want a secure communication to the backend than make a virtual host on Port 80 for the frontend, rewrite than all incoming requests from the second virtual host which is listening on Port 443 of your frontend server and put there (in the 443 Virtuel Host Config )your ProxyPass Lines. bye Oliver Hi Oliver, thanks for the offered help, but either I don't understand your answer, or maybe I did not illustrate my problem good enough. Let me try again. It goes like this (fe - fronted, be - backend): Browser--Proxy(fe)Backend |---http:/fe/b-end/---| |---http://be/---| |--(302)--http://be/Login/---| |--(302)--http://fe/b-end/Login/--| |-http://fe/b-end/Login/--| |-http://be/Login/---| |--(302)-https://be/Login/---| |--(302)--http://fe/b-end/Login/--| Now, the last response from the backend indicates that the browsers next request should go to the https port, however, ProxyPassReverse translates it to http instead to https. Even if I try: ProxyPassReverse https:/fe/b-end/ https://be/ What am I missing here? BR, Kresimir __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0)
. in addition to the LogLevel Debug you can use a RewriteRule in Conjunction with ProxyPreserveHost on instead of a ProxyPass/ProxyPassReverse combination So instead of ProxyPass /b-end/ http://backend/ ProxyPassReverse /b-end/ http://backend/ use RewriteRule ^/b-end/(.*)$ http://backend/$1 [P,L] ProxyPreserveHost On Than turn on RewriteLog logs/fe-rewrite.log and RewriteLogLevel 9 bye Oliver -Ursprüngliche Nachricht- Von: Kresimir Peharda [mailto:[EMAIL PROTECTED] Gesendet: Mo 13.02.2006 20:33 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0) Only to make a ProxyPassReverse is not enough to make https Do you have in your httpd.conf at least Lines like this ? SSLEngine On SSLProxyEngine On Listen fe:443 Yes, I do have lines like this. However, based on the reponses from the Apache proxy, the browser never initiates a https session. Reverse proxy directive somehow looses the s in https. Here is how I understand it. 1. ProxyPass /b-end/ http://backend/ - this one forwards my requests to /frontend/b-end/ to http://backend/ 2. ProxyPassReverse /b-end/ http://backend/ - this one forwards replies on requests from #1 to my browser. Now, the reply says that I should use https rather than http, namely, backend returns 302 Found - https://backend/, so I tried the following rule, so the browser would try http://frontend/secure-b-end/: 3. ProxyPassReverse /secure-b-end/ https://backend/ - however, my browser receives it as - Location: http(where-to-hell-is-s?)://frontend/secure-b-end/ and, of course, goes to port 80, not 443. Why is that? /Kresimir __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE:[EMAIL PROTECTED] UserDir enabled error ?
If you want 'UserDir' than you need to activate the userdir_module LoadModule userdir_module libexec/mod_userdir.so bye Oliver -Ursprüngliche Nachricht- Von: Mehmet Fatih AKBULUT [mailto:[EMAIL PROTECTED] Gesendet: Di 14.02.2006 14:33 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] UserDir enabled error ? hi all, i installed apache using apt-get. [debian etc and apache/2.0.55] when i remove # from UserDir public_html in apache2.conf and then restart apache i get the following error : Syntax error on line 216 of /etc/apache2/apache2.conf: Invalid command 'UserDir', perhaps mis-spelled or defined by a module not included in the server configuration what is wrong ? how can i fix this problem ? any ideas ??? winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0)
Where in your config should come the https from ? If you want a secure communication to the backend than make a virtual host on Port 80 for the frontend, rewrite than all incoming requests from the second virtual host which is listening on Port 443 of your frontend server and put there (in the 443 Virtuel Host Config )your ProxyPass Lines. bye Oliver -Ursprüngliche Nachricht- Von: Kresimir Peharda [mailto:[EMAIL PROTECTED] Gesendet: So 12.02.2006 21:58 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0) I am struggling to set up a reverse proxy, and for some reason, just can't get it right. I have a public server (will call it frontend) to access a private one (backend). The backend sends a couple of redirects, which seem to confuse the ProxyPassReverse, so eventually my browser ends up querying the DNS for the whereabouts of the backend. Namely, it goes like this: In httpd.conf: Location /b-end/ ProxyPass http://backend/ ProxyPassReverse http://backend/ /Location This has for effect that a request to: Host: frontend GET /b-end/ HTTP 1.1 - gets forwarded to the backend, and a reply to the browser is rewritten like: HTTP 1.1 302 Location: http://frontend/b-end/Login/ Now, the browser tries: Host: frontend GET /b-end/Login/ HTTP 1.1 - so far, so good - and the proxy replies with: HTTP 1.1 302 Location: http://frontend/b-end/Login/ - and this is wrong, since the proxy actually gets that the document moved to https://backend/Login/, hence the location should be rewritten like - https://frontend/b-end/Login/. However, it always remain http. I tried rewriting it to /sb-end/ with a directive: ProxyPassReverse /sb-end/ https://backend/ - but I still get Location: http://frontend/sb-end/Login/ - where I hoped it to be https://frontend/sb-end/Login/ Needless to say, I tried a number of other tricks, including mod_ext_filter, mod_rewrite, however, with no result. I would sure like to understand what am I doing wrong. Thanks in advance, Kresimir __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0)
Only to make a ProxyPassReverse is not enough to make https Do you have in your httpd.conf at least Lines like this ? SSLEngine On SSLProxyEngine On Listen fe:443 Your four lines with the Location shows a ProxyPass Directive with an absolute URL to the backend, which is normal. You cannot go to the backend with only 1 Location, you have to do this at least twice. 1 for http and 1 for https. This was the intention why i said you need 2 virtual hosts. Here are some examples http://httpd.apache.org/docs/2.2/en/vhosts/examples.html bye Oliver -Ursprüngliche Nachricht- Von: Kresimir Peharda [mailto:[EMAIL PROTECTED] Gesendet: Mo 13.02.2006 12:16 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] RE [EMAIL PROTECTED] ProxyPass/ProxyPassReverse switch from http to https on redirect? (Apache 2.2.0) --- [EMAIL PROTECTED] wrote: Where in your config should come the https from ? If you want a secure communication to the backend than make a virtual host on Port 80 for the frontend, rewrite than all incoming requests from the second virtual host which is listening on Port 443 of your frontend server and put there (in the 443 Virtuel Host Config )your ProxyPass Lines. bye Oliver Hi Oliver, thanks for the offered help, but either I don't understand your answer, or maybe I did not illustrate my problem good enough. Let me try again. It goes like this (fe - fronted, be - backend): Browser--Proxy(fe)Backend |---http:/fe/b-end/---| |---http://be/---| |--(302)--http://be/Login/---| |--(302)--http://fe/b-end/Login/--| |-http://fe/b-end/Login/--| |-http://be/Login/---| |--(302)-https://be/Login/---| |--(302)--http://fe/b-end/Login/--| Now, the last response from the backend indicates that the browsers next request should go to the https port, however, ProxyPassReverse translates it to http instead to https. Even if I try: ProxyPassReverse https:/fe/b-end/ https://be/ What am I missing here? BR, Kresimir __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] RotateLogs in Apache 2.0
The second arg to rotatelogs provided with Apache is the number of seconds after which the log gets rotated. So the above command rotates logs every 5 seconds. Joost The synpsis is rotatelogs [ -l ] logfile [ rotationtime [ offset ]] | [ filesizeM ] so you can only use it with seconds or with an amount of megabytes. Have a look at the magic | :-) Oliver - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: rewrite/proxy: Request unescaped
Vielleichet hilft dir 'noescape|NE' (no URI escaping of output) This flag prevents mod_rewrite from applying the usual URI escaping rules to the result of a rewrite. Ordinarily, special characters (such as '%', '$', ';', and so on) will be escaped into their hexcode equivalents ('%25', '%24', and '%3B', respectively); this flag prevents this from happening. This allows percent symbols to appear in the output, as in RewriteRule /foo/(.*) /bar?arg=P1\%3d$1 [R,NE] which would turn '/foo/zed' into a safe request for '/bar?arg=P1=zed'. (siehe http://httpd.apache.org/docs/2.0/mod/mod_rewrite.html#rewriterule) Gruss Oliver -Ursprüngliche Nachricht- Von: Thomas Krüger [mailto:[EMAIL PROTECTED] Gesendet: Di 07.02.2006 13:59 An: users-de@httpd.apache.org Betreff: rewrite/proxy: Request unescaped Hallo Liste, ich habe eine Problem mit einem RewriteRule, vielleicht kann jemand helfen. Zuerst einmal das Rule: RewriteRule ^(.*) http://localhost:8080/VirtualHostBase/http/%{SERVER_NAME}:80/zeo_OptecNet/OptecNet/VirtualHostRoot/$1 [l,p] (natürlich in einer Zeile) Wenn ich jetzt einen URL mit %20 darin (also einem Leerzeichen) aufrufe wird ein Request mit Leerzeichen (nicht %20, spricht nicht escaped) an den Port 8080 geschickt, was der dortige Zope-Server mit einem Bad Request quitiert. Weiß jemand wie ich den Apache dazu bringen kann die URL mit %20 aufzurufen? Mir ist übrigens bewußt, dass das mit dem Leerzeichen recht ungüstig ist, aber es muss leider sein. Auf diversen Apache-Zope-Kombinationen geht es problemlos. Version: Apache 2.0.48 auf SuSE 9.1 Thomas -- Thomas Krüger | Tannenhöhe 15 | Tel.: 05323 961858 Krüger IT | 38678 Clausthal-Zellerfeld | Fax.: 05323 962617 PGP: 0xEADA7C59 | CAcert-Assurer: https://www.cacert.org Join OpenBC: http://www.openbc.com/go/invite/4364300.0eb9ee -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] -- -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
AW: [EMAIL PROTECTED] Apache drops connection but ifdown/up resolves the issue!
Are you running out of file descriptors with your Apache Process ? [ulimit -a] Greetings Oliver -Ursprüngliche Nachricht- Von: Neil A. Hillard [mailto:[EMAIL PROTECTED] Gesendet: Mi 25.01.2006 10:53 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Apache drops connection but ifdown/up resolves the issue! Hi, I've got Apache 2.0.55 built from source and am seeing an odd problem related to multiple IP addresses on VLANs. The server has a trunked connection back to our switch and has the IP addresses 172.24.12.9, 172.24.11.3 and 172.16.14.104. These are configured as bond0, bond0:2 and bond0.2 respectively. There are other aliases IP addresses on bond0 but they're probably irrelevant for this problem. Apache is listening on all interfaces, port 80 and 443. I have a client at 172.16.40.32 attempting to connect to port 80 on 172.24.11.3. The following occurs: # telnet 172.24.11.3 80 Trying 172.24.11.3... Connected to 172.24.11.3 (172.24.11.3). Escape character is '^]'. Connection closed by foreign host. An strace against httpd shows: [pid 31138] accept(3, {sa_family=AF_INET, sin_port=htons(44894), sin_addr=inet_addr(172.16.40.32)}, [16]) = 16 [pid 31138] semop(6914069, 0xb79f0c, 1) = 0 [pid 31138] futex(0x837c474, FUTEX_WAKE, 1 unfinished ... [pid 31130] ... futex resumed ) = 0 [pid 31138] ... futex resumed ) = 1 [pid 31138] semop(6914069, 0xb79f12, 1) = 0 [pid 31138] poll( unfinished ... [pid 31130] futex(0x837c43c, FUTEX_WAKE, 1) = 0 [pid 31130] getsockname(16, {sa_family=AF_INET, sin_port=htons(80), sin_addr=inet_addr(172.24.11.3)}, [16]) = 0 [pid 31130] fcntl64(16, F_GETFL)= 0x2 (flags O_RDWR) [pid 31130] fcntl64(16, F_SETFL, O_RDWR|O_NONBLOCK) = 0 [pid 31130] read(16, 0x83eccf8, 8000) = -1 EAGAIN (Resource temporarily unavailable) [pid 31130] poll([{fd=16, events=POLLIN, revents=POLLIN|POLLERR|POLLHUP}], 1, 30) = 1 [pid 31130] read(16, 0x83eccf8, 8000) = -1 ECONNRESET (Connection reset by peer) [pid 31130] gettimeofday({1138182161, 971221}, NULL) = 0 [pid 31130] shutdown(16, 1 /* send */) = -1 ENOTCONN (Transport endpoint is not connected) [pid 31130] close(16) = 0 If I then perform 'ifconfig bond0.2 down', 'ifconfig bond0.2 up' and repeat the test everything works as expected! It carries on working for a while and then gives up the ghost again! Apache is receiving the connection and I can see from a packet capture that the three-way handshake is completing but for some reason it's dropping the connection - almost like tcpwrappers does! Whilst Apache is refusing the connections, I can still ssh to the same IP address. This one has me puzzled - if anyone can shed some light on it, it would be much appreciated! Many thanks in advance, Neil. -- Neil Hillard[EMAIL PROTECTED] Westland Helicopters Ltd. http://www.whl.co.uk/ Disclaimer: This message does not necessarily reflect the views of Westland Helicopters Ltd. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] apache2 and suexec problem
has your /usr/sbin/suexes the appropriate rights with the sticky bit set. Like this -r-sr-xr-x 1 root root 31703 Dec 12 11:27 suexec If not, than you will get this with these commands chmod 4555 /usr/sbin/suexec chown root:root /usr/sbin/suexec bye Oliver Von: Sterpu Victor [mailto:[EMAIL PROTECTED] Gesendet: Mo 23.01.2006 11:35 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] apache2 and suexec problem Also when I start the apache I receive the following warning: Warning: SuexecUserGroup directive requires SUEXEC wrapper.; Suexec binary is in /usr/sbin And apache is compiled with the option SUEXEC_BIN=/usr/sbin/suexec. The command httpd -V |grep -i suexec prints -D SUEXEC_BIN=/usr/sbin/suexec I use Apache/2.0.54. Sterpu Victor wrote: I have the following configuration. VirtualHost 192.168.250.91:80 DirectoryIndex index.html index.htm index.php index.php3 ServerName suexec2.ambra.ro SuexecUserGroup suexec2 suexec2 DocumentRoot /var/www/suexec2.ambra.ro Action application/x-httpd-php /cgi-bin/suexec2.ambra.ro/php-cgi ScriptAlias /suexec2cgibin /var/www/suexec2.ambra.ro Action application/x-httpd-php /suexec2cgibin/php-cgi Directory /var/www/suexec2.ambra.ro Allow from all /Directory /VirtualHost Everything seems to work fine, but it doesn't. In this virtual host I place a php file that creates a test.txt file. After the file is created owner of the file is the apache user and not suexec2. This meens that the line SuexecUserGroup suexec2 suexec2 had no effect and the script was executed as apache user. What could be wrong? - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re:[EMAIL PROTECTED] Apache 2 and SSL on server with multiple IPs, SSL won't load...
In this line you sould put the certificate of your rootCA which has signed your certificate. SSLCACertificatePath /usr/local/apache2/conf/ssl.crt/root-ca.crt VerifyDepth 5 seems to be to high because than you need certificates in chain up to 5 like (e.g.cert1 + cert2 +cert3 +cert4 +rootCA) but you only have 2 (with the root certificate) oder 1 (without root cert) With a certificate where the common name is not the same like the server name (in this case here of the virtual host) than you won't get any https connection, they have to be the same. Here are some examples http://www.openssl.org/docs/apps/x509.html and here is one to show into a certificate: openssl x509 -in cert.pem -noout -text Greets Oliver -Ursprüngliche Nachricht- Von: Brian V. Hughes [mailto:[EMAIL PROTECTED] Gesendet: Mo 23.01.2006 17:31 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Apache 2 and SSL on server with multiple IPs, SSL won't load... Hey gang. I've got a problem that's been giving me fits for the past several days and I just can't figure out what's wrong. Here's the situation: I've got an Apple Xserve, with a standard install of Apache 2.0.55 with mod_ssl. The server has 2 IP addresses assigned to it, lets call them foo.dartmouth.edu and bar.dartmouth.edu. I've also got 2 instances of Apache configured to run, since I believe I need to do IP-based virtual hosting to accomplish what I need: foo is an HTTP server and bar needs to be an HTTP/HTTPS server. We have a key file and a Dartmouth-signed certificate built for bar.dartmouth.edu and I'm using an ssl.conf file that looks like this: #SSL.CONF for bar.dartmouth.edu Listen 129.170.xxx.yyy:443 SSLEngine on AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl .crl SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:-SSLv2:+EXP:+eNULL SSLCertificateFile /usr/local/apache2/conf/ssl.crt/bar.crt SSLCertificateKeyFile /usr/local/apache2/conf/ssl.key/bar.key SSLCACertificatePath /usr/local/apache2/conf/ssl.crt SSLVerifyClient optional SSLVerifyDepth 5 SSLPassPhraseDialog builtin SSLSessionCache dbm:/usr/local/apache2/logs/ssl_scache SSLSessionCacheTimeout 300 AcceptMutex flock LockFile /usr/local/apache2/logs/httpd.lock SSLMutex file:/usr/local/apache2/logs/ssl_mutex SSLRandomSeed startup builtin SSLRandomSeed connect builtin VirtualHost 129.170.xxx.yyy:443 DocumentRoot /Library/WebServer/Documents ServerName bar.dartmouth.edu ServerAdmin [EMAIL PROTECTED] ErrorLog /usr/local/apache2/logs/error_log TransferLog /usr/local/apache2/logs/access_log CustomLog /usr/local/apache2/logs/ssl_request_log \ %t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \%r\ %b /VirtualHost When I try to launch Apache with this config file, I get this in my logs/error_log: [Fri Jan 20 13:09:36 2006] [warn] RSA server certificate CommonName (CN) `bar.dartmouth.edu' does NOT match server name!? [Fri Jan 20 13:09:36 2006] [error] Illegal attempt to re-initialise SSL for server (theoretically shouldn't happen!) I think these errors are trying to point me in the right direction, but I just don't know enough about mod_ssl to know what direction that is. Given that the HTTP responder on port 80 works just fine for bar.dartmouth.edu, I can't see how there could be confusion over the CommonName. Can someone help me decipher this and figure out why I can't get my SSL instance running? Is there something I'm just not setting in my ssl.conf file? Is there more info that I need to post? Things are getting a little desperate for us with this server, so any help I can get would be most appreciated. Thanks. -Brian Brian V. Hughes Associate Director for Web Operations (aka. Webmaster) Computing Technical Services Dartmouth College - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: Re4: [EMAIL PROTECTED] stickysession at mod_proxy_balancer
hi dom, seems strange. Can it be any of the following issues from the bugzilla of apache url encoding cookie http://issues.apache.org/bugzilla/show_bug.cgi?id=34844 ProxyPassReverse doesn't change cookie paths http://issues.apache.org/bugzilla/show_bug.cgi?id=10722 or this on which was changed in mod_proxy_balancer.c around 14.12 http://svn.apache.org/viewcvs.cgi/httpd/httpd/branches/2.2.x/modules/proxy/mod_proxy_balancer.c?rev=356764r1=332309r2=356764diff_format=h this i have in my actual running apache. bye Oliver Von: dom [mailto:[EMAIL PROTECTED] Gesendet: Mi 18.01.2006 17:44 An: users@httpd.apache.org Betreff: Re4: [EMAIL PROTECTED] stickysession at mod_proxy_balancer dear oliver, hmm.. that was i guessd as well at the beginning, so i added the cookie [%{sessionkey}C] into the apache-log-file, and it looks exactely like it have to [12345678.A_]! :-( strange is that when i access the balancing module (the summary where all the members are shown, etc..) on stickysession is no entry, the route is shown.. when i manually add sessionkey to 'stickysession' it's shown but same funtionality.. i'm going stupid soon.. ;-) thanks dom Hi dom, so than it seems that the definitions which you had in your apache configuration don't match your session cookie Can you use tamper data https://addons.mozilla.org/extensions/moreinfo.php?id=966application=firefox https://addons.mozilla.org/extensions/moreinfo.php?id=966application=firefox or iehttpheaders to see whar you have in your headers sent by the server when he sends you the cookie [the line sith set-cookie] . Upon this set-cookie your Browser should send back every time a headerline beginning with cookie. If this is the case than the cookie should look like 12345678.A_ oder 12345678.B_ . Otherwise you have to change your configuration If you don't want to run in a timeout or if you have a firewall inbetween the apache and the backend web server than you can add keepalive=on behind the route. bye Oliver Von: dom [mailto:[EMAIL PROTECTED] Gesendet: Mi 18.01.2006 12:27 An: users@httpd.apache.org Cc: Schaudt, Oliver Betreff: Re: [EMAIL PROTECTED] stickysession at mod_proxy_balancer Hi Oliver, 1. no, i don't.. thats the strange thing.. just see in the accesslog: [debug] mod_proxy_balancer.c(41): proxy: BALANCER: canonicalising URL //produrl/site [debug] mod_proxy_balancer.c(803): proxy: Entering byrequests for BALANCER (balancer://prod) [debug] mod_proxy_balancer.c(396): proxy: BALANCER (balancer://prod) worker (http://192.168.1.1:8001 http://192.168.1.1:8001/ http://192.168.1.1:8001/ ) rewritten to http://192.168.1.1:8001/site [debug] mod_proxy.c(736): Running scheme balancer handler (attempt 0) 2. don't really understand your question. my 'backendservers' produce a cookie with teh attribute 'sessionkey' and use this for the own sessiondeclaration, so i thought to use that one. i (the webserver) just added .A_ at the end of the sessionkey for identify the 'route' to apache, but i guess thats not the only thing i need to do? i can produce every cookie-attribute you like, thats not the problem.. whats jvmroute? i'm not using tomcat, we use a self written webserver.. i thought it should be easy: a have allready a sessionkey, so thats nice. then the backendwebserver now which server he is, so he set another attribute, and add this to the sessionkey (sessionkey.route) and this route is definied on the BalanceMember.. but i guess i missunderstand the topc.. :-( bye dom Quoting [EMAIL PROTECTED]: Hi dom, 1. Do you see some lines like proxy: BALANCER: Found value 12721798.A_ for stickysession sessionkey in the error_log ? 2.Do you have set your session-identifier nameinside your servers behind Apache to sessionkey and the route alias jvmroute to your A_ and B_ ? If not than it won't work. Bye Oliver Von: dom [mailto:[EMAIL PROTECTED] Gesendet: Di 17.01.2006 16:23 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] stickysession at mod_proxy_balancer hi, i'm using apache 2.2 because of the balancing module, but i can't figure out why the 'stickyness' doesn't work. -snip- LogLevel debug ProxyPass / balancer://prod/ stickysession=sessionkey nofailover=On Proxy balancer://prod BalancerMember http://192.168.1.1:8001 http://192.168.1.1:8001/ http://192.168.1.1:8001/ http://192.168.1.1:8001/ route=A_ BalancerMember http://192.168.1.2:8001 http://192.168.1.2:8001/ http://192.168.1.2:8001/ http://192.168.1.2:8001/ route=B_ /VirtualHost -snip- the sessionkey-coockie is set to something like 12721798.A_ after a few clicks (depends from 2 to 15) i get connectet to the second Member, but don't see why! any ideas? when i have a look at the logfile, i never see some information about the coockie or so.. :-( thanks in advance dom
AW: [EMAIL PROTECTED] Troubles w/mod_rewrite
use a RewriteCond before your weather.pl line and change the [R] into [R,L] see http://httpd.apache.org/docs/2.0/mod/mod_rewrite.html#RewriteCond bye Oliver Freundliche Gruesse / Best Regards / Avec mes meilleures salutations Oliver Schaudt SeniorConsultant Tel:: +49-178-8855-712 Fax: +49-178-998855-712 mailto:[EMAIL PROTECTED] Unilog Avinci Klenzestr. 57b D-80469 München http://www.unilog-avinci.de -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] im Auftrag von Joshua Slive Gesendet: Fr 20.01.2006 00:29 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Troubles w/mod_rewrite On 1/19/06, Jason Williard [EMAIL PROTECTED] wrote: You were right... As soon as I removed the leading slash, the problem was solved. But now I have another issue... While I want this rewrite to occur, I also want everything else to redirect to a default URL. To do this, I added the following: RewriteRule ^([0-9]{5}) http://.../weather.pl?zip=$1 [R] RewriteRule ^(.*) http://.../DEFAULT [R] The first of these rules intended to rewrite only if a 5 number zip exists. The second to redirect everything else. Unfortunately, that much of a wildcard also seems to grap 5-digit zips as well. I'm sure this is simply a regex thing, which I'm not that great at. How would I get it to redirect everything except for the 5-digit zip? The easy way would simply be to add the L flag to the first RewriteRule (use [R,L]). This should stop processing at that point for matching requests. Otherwise, you can add something like this before the second RewriteRule: RewriteCond %{REQUEST_URI} ^/[0-9]{5}$ Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] stickysession at mod_proxy_balancer
Hi dom, 1. Do you see some lines like proxy: BALANCER: Found value 12721798.A_ for stickysession sessionkey in the error_log ? 2.Do you have set your session-identifier nameinside your servers behind Apache to sessionkey and the route alias jvmroute to your A_ and B_ ? If not than it won't work. Bye Oliver Von: dom [mailto:[EMAIL PROTECTED] Gesendet: Di 17.01.2006 16:23 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] stickysession at mod_proxy_balancer hi, i'm using apache 2.2 because of the balancing module, but i can't figure out why the 'stickyness' doesn't work. -snip- LogLevel debug ProxyPass / balancer://prod/ stickysession=sessionkey nofailover=On Proxy balancer://prod BalancerMember http://192.168.1.1:8001 http://192.168.1.1:8001/ route=A_ BalancerMember http://192.168.1.2:8001 http://192.168.1.2:8001/ route=B_ /VirtualHost -snip- the sessionkey-coockie is set to something like 12721798.A_ after a few clicks (depends from 2 to 15) i get connectet to the second Member, but don't see why! any ideas? when i have a look at the logfile, i never see some information about the coockie or so.. :-( thanks in advance dom - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] Slow start of Apache 2.0.55 on AIX 5.3
Hi Lekha, turn on LogLevel Debug than apache should point you in the error_log to something more. Freundliche Gruesse / Best Regards / Avec mes meilleures salutations Oliver Schaudt SeniorConsultant Tel:: +49-178-8855-712 Fax: +49-178-998855-712 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] Unilog Avinci Klenzestr. 57b D-80469 München http://www.unilog-avinci.de https://webmail.unilog.de/exchweb/bin/redir.asp?URL=http://www.unilog-avinci.de Von: Lekha Menon [mailto:[EMAIL PROTECTED] Gesendet: Mi 18.01.2006 10:51 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Slow start of Apache 2.0.55 on AIX 5.3 I have checked the logs, but they do not show any error msg in it. The error_log contains msg - [Wed Jan 18 13:21:25 2006] [notice] Apache configured -- resuming normal operati ons [Wed Jan 18 13:24:50 2006] [notice] caught SIGTERM, shutting down This is normal operation comments. - Original Message - From: Mahesh S Kudva [EMAIL PROTECTED] To: users@httpd.apache.org Cc: [EMAIL PROTECTED] Sent: Wednesday, January 18, 2006 3:08 PM Subject: Re: [EMAIL PROTECTED] Slow start of Apache 2.0.55 on AIX 5.3 check the logs. They are always handy. Regards Thanks Mahesh S Kudva -Original Message- From: Lekha Menon [EMAIL PROTECTED] To: users@httpd.apache.org Date: Wed, 18 Jan 2006 14:17:22 +0530 Subject: [EMAIL PROTECTED] Slow start of Apache 2.0.55 on AIX 5.3 Hi, I have installed Apache 2.0.55 on AIX 5.3 machine. For installation, i have used the command configure --prefix=PATH of Apache Installation. Apache was installed properly without any errors. However on startup, i.e. execution of apachectl start, it starts apache v slowly. Same for apachectl stop. I have not modified the httpd.conf file, it is same as the one created during installation. On the same machine, when i later installed Apache 1.3.29, this version is fast unlike Apache 2.0.55 Can anyone pls point out what the reason could be. Thanks in adv, Lekha http://www.patni.com http://www.patni.com/ World-Wide Partnerships. World-Class Solutions. _ This e-mail message may contain proprietary, confidential or legally privileged information for the sole use of the person or entity to whom this message was originally addressed. Any review, e-transmission dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this e-mail in error kindly delete this e-mail from your records. If it appears that this mail has been forwarded to you without proper authority, please notify us immediately at [EMAIL PROTECTED] and delete this mail. _ --- Robosoft Technologies - Partners in Product Development http://www.patni.com http://www.patni.com/ World-Wide Partnerships. World-Class Solutions. _ This e-mail message may contain proprietary, confidential or legally privileged information for the sole use of the person or entity to whom this message was originally addressed. Any review, e-transmission dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this e-mail in error kindly delete this e-mail from your records. If it appears that this mail has been forwarded to you without proper authority, please notify us immediately at [EMAIL PROTECTED] and delete this mail. _ winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] stickysession at mod_proxy_balancer
Hi dom, so than it seems that the definitions which you had in your apache configuration don't match your session cookie Can you use tamper data https://addons.mozilla.org/extensions/moreinfo.php?id=966application=firefox https://addons.mozilla.org/extensions/moreinfo.php?id=966application=firefox or iehttpheaders to see whar you have in your headers sent by the server when he sends you the cookie [the line sith set-cookie] . Upon this set-cookie your Browser should send back every time a headerline beginning with cookie. If this is the case than the cookie should look like 12345678.A_ oder 12345678.B_ . Otherwise you have to change your configuration If you don't want to run in a timeout or if you have a firewall inbetween the apache and the backend web server than you can add keepalive=on behind the route. bye Oliver Von: dom [mailto:[EMAIL PROTECTED] Gesendet: Mi 18.01.2006 12:27 An: users@httpd.apache.org Cc: Schaudt, Oliver Betreff: Re: [EMAIL PROTECTED] stickysession at mod_proxy_balancer Hi Oliver, 1. no, i don't.. thats the strange thing.. just see in the accesslog: [debug] mod_proxy_balancer.c(41): proxy: BALANCER: canonicalising URL //produrl/site [debug] mod_proxy_balancer.c(803): proxy: Entering byrequests for BALANCER (balancer://prod) [debug] mod_proxy_balancer.c(396): proxy: BALANCER (balancer://prod) worker (http://192.168.1.1:8001 http://192.168.1.1:8001/ ) rewritten to http://192.168.1.1:8001/site [debug] mod_proxy.c(736): Running scheme balancer handler (attempt 0) 2. don't really understand your question. my 'backendservers' produce a cookie with teh attribute 'sessionkey' and use this for the own sessiondeclaration, so i thought to use that one. i (the webserver) just added .A_ at the end of the sessionkey for identify the 'route' to apache, but i guess thats not the only thing i need to do? i can produce every cookie-attribute you like, thats not the problem.. whats jvmroute? i'm not using tomcat, we use a self written webserver.. i thought it should be easy: a have allready a sessionkey, so thats nice. then the backendwebserver now which server he is, so he set another attribute, and add this to the sessionkey (sessionkey.route) and this route is definied on the BalanceMember.. but i guess i missunderstand the topc.. :-( bye dom Quoting [EMAIL PROTECTED]: Hi dom, 1. Do you see some lines like proxy: BALANCER: Found value 12721798.A_ for stickysession sessionkey in the error_log ? 2.Do you have set your session-identifier nameinside your servers behind Apache to sessionkey and the route alias jvmroute to your A_ and B_ ? If not than it won't work. Bye Oliver Von: dom [mailto:[EMAIL PROTECTED] Gesendet: Di 17.01.2006 16:23 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] stickysession at mod_proxy_balancer hi, i'm using apache 2.2 because of the balancing module, but i can't figure out why the 'stickyness' doesn't work. -snip- LogLevel debug ProxyPass / balancer://prod/ stickysession=sessionkey nofailover=On Proxy balancer://prod BalancerMember http://192.168.1.1:8001 http://192.168.1.1:8001/ http://192.168.1.1:8001/ route=A_ BalancerMember http://192.168.1.2:8001 http://192.168.1.2:8001/ http://192.168.1.2:8001/ route=B_ /VirtualHost -snip- the sessionkey-coockie is set to something like 12721798.A_ after a few clicks (depends from 2 to 15) i get connectet to the second Member, but don't see why! any ideas? when i have a look at the logfile, i never see some information about the coockie or so.. :-( thanks in advance dom - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] Meaninf of [L]
RewriteCond %{REMOTE_HOST} ^host1.* [OR] RewriteCond %{REMOTE_HOST} ^host2.* RewriteRule ^/$ /homepage.max.html [L] The [OR] is only relevant if you have more conditions than 1. In this case if yout want to say if REMOTE_HOST begins with host1 or host2 [L] says Last rule RewriteRule wich follows after this line dön't apllay for this request Cheers Oliver Von: senthil kumar [mailto:[EMAIL PROTECTED] Gesendet: Fr 13.01.2006 10:31 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Meaninf of [L] RewriteCond %{REMOTE_HOST} ^host1.* [OR] iteRule ^/$ /homepage.max.html [L] Please suggest the meaning of [OR] ? [L] ? on rewrite rule winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] Reverse Proxy Again
One special thing could be your /dev before the normal URI. 1. Apache acting as an reverse proxy switches the headers but not the content of the page itself 2. i know that the portal is using sometimes javscript to put a URI together or is using a redirect inside the URI [this shows the thing that after a logon he throws you back to /logon/portal and not to dev/logo/portal] I think it only works, if you should use ]from my last mail] the ProxyPass directives without the /dev, so that you have /irj - /irj and not /dev/irj - /irj. If you want to have production and development divided than it is better to have a virtual host for each of them. bye oliver P.: I don't know but in the beginning of my work with Apache in front and SAP in the back there was always some problems if i reweite the URI. Von: Franky Ronaldy [mailto:[EMAIL PROTECTED] Gesendet: Fr 13.01.2006 11:01 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Reverse Proxy Again Thank you very much Oliver for your patient and advice. By the way, I am still very puzzling why I still can't login to the SAP WAS behind the apache server. First I thought because of JSESSION cookie was not been able to set to the client browser because of using reverse proxy. Have you came accross the same scenario whereby you can't login to SAP WAS if go through apache reverse proxy server? From the data tamper log I notice after click Log On button, it will go to http://www.domain.com/logon/portal and immediately the http connection was closed. I did not see any abnormal situation from the HTTP response/request which block me to login into the SAP WAS. Thanks. Best Rgds, Franky On 1/13/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi Franky, 1. The header line with the cookie has at least 2 parts with the SAP WAS Cookie=saplb_*=(J2EE184141100)184141150; JSESSIONID=(J2EE184141100)ID184141150DB10457613221413343070End Is it possibly that your javascript shows you only the information till the first semicolon ; ? I have in my config thes 3 Parameters too ProxyPreserveHostOn ProxyReceiveBufferSize 4096 ProxyBadHeader Ignore The only thing is that i began to use an Apache 2 in front of SAP Web AS with version 2.0.53, but even with an 1.3.26 the JSESSIONID wasn't a problem. If it is still a problem, can you check, waht you reserve from Tomcat with any from the follwing tools. iehttpheaders http://www.blunck.info/iehttpheaders.html Livehttpheaders http://livehttpheaders.mozdev.org/ http://livehttpheaders.mozdev.org/ Tamper Data https://addons.mozilla.org/extensions/moreinfo.php?id=966https://webmail.unilog.de/exchweb/bin/redir.asp?URL=https://addons.mozilla.org/extensions/moreinfo.php?id=966 With Tamper Data you can track every Request and Response 2. The stickysesssion=JSESSIONID ist only useful and kown by the config when you are using mod_proxy_balancer [only in 2.2.0]to access more than 1 server in the back. Von: Franky Ronaldy [mailto:[EMAIL PROTECTED] Gesendet: Fr 13.01.2006 03:56 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] Reverse Proxy Again I have created the simple javascript program to check the cookie which being set by the SAP. And I notice that SAP Netweaver set cookie into my browser : saplb_*,(J2EE2350500)2350550 PortalAlias,portal JSESSIONID,(J2EE2350500)ID2350550DB11007797051053951047End But if I access it through reverse proxy, my cookie is only: saplb_*,(J2EE2350500)2350550 PortalAlias,portal Those JSESSIONID missing from the cookie. I have tried to change the httpd.conf file by putting: ProxyPass /dev/irj http://www.domain.com:5/irj stickysession=JSESSIONID ProxyPassReverse /dev/irj http://www.domain.com:5/irj ProxyPass /dev/logon http://www.domain.com:5/irj stickysession=JSESSIONID ProxyPassReverse /dev/logon http://www.domain.com:5/irj ProxyPass /dev/webdynpro http://www.domain.com:5/webdynpro ProxyPassReverse /dev/webdynpro http://www.domain.com:5/webdynpro When I issue command ./apachectl configtest, I got error indicate that ProxyPass only accept 2 parameters only. Any idea how to keep those JSESSIONID remain eventhough through reverse proxy server? Is it a bugs for apache 2.0.46? Should I upgrade to other version? Thanks. Rgds, Franky On 1/12/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi Franky, with a SAP Portal in the background you have to send back more [i used hier only irj because the next contexta in the uri which the portal wants are portal / portalapps /go and servlet .snip ProxyRequests Off ProxyPass/irj http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPassReverse /irj http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPass/logon http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPassReverse
AW: [EMAIL PROTECTED] Reverse Proxy Again
Hi Franky, with a SAP Portal in the background you have to send back more [i used hier only irj because the next contexta in the uri which the portal wants are portal / portalapps /go and servlet .snip ProxyRequests Off ProxyPass/irj http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPassReverse /irj http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPass/logon http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPassReverse /logon http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPass/webdynpro http://www.domain.com:5/webdynpro http://www.domain.com:5/webdynpro ProxyPassReverse /webdynpro http://www.domain.com:5/webdynpro http://www.domain.com:5/webdynpro # and because the portal sends sometimes some garbled headers # than put this directive in your config, too ProxyBadHeader Ignore snip... With your dev inthe path than it should be ProxyPass/dev/irj http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPassReverse /dev/irj http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPass/dev/logon http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPassReverse /dev/logon http://www.domain.com:5/irj http://www.domain.com:5/irj ProxyPass/dev/webdynpro http://www.domain.com:5/webdynpro http://www.domain.com:5/webdynpro ProxyPassReverse /dev/webdynpro http://www.domain.com:5/webdynpro http://www.domain.com:5/webdynpro You can easily find out what the portal sends to you if you use tamper Data inside Firefox or with a little bit more work iehtttpheaders bye Oliver Von: Franky Ronaldy [mailto:[EMAIL PROTECTED] Gesendet: Do 12.01.2006 09:32 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] Reverse Proxy Again Hi, I am quite new for reverse proxy. I need some advice from expertise here. I have to configure apache as a reverse proxy with SAP portal at the backend. My apache run in linux ES 3 with apache version 2.0.46. I have configured httpd.conf to act as a reverse proxy as following: .snip ProxyRequests Off ProxyPass /dev http://www.domain.com:5/irj/portal ProxyPassReverse /dev http://www.domain.com:5/irj/portal snip... I can see the login page from http://www.domain.com:5000/irj/portal but without image, css, etc so I add two more lines inside httpd.conf as following .snip ProxyRequests Off ProxyPass /dev http://www.domain.com:5/irj/portal ProxyPassReverse /dev http://www.domain.com:5/irj/portal ProxyPass / http://www.domain.com:5/irj/portal ProxyPassReverse / http://www.domain.com:5/irj/portal LogLevel debug snip... After restart apache, I can see everything included all images, css so on and so forth. But I can't login to the SAP portal. My confusion whether is there anyway I can traceroute the requests coming into apache until it comes back to apache from the backend? Eventhough I check the error log I did not find any clues why I can't login into the SAP portal at the backend. Thanks in advanced for any advice. -- Regards, Franky - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get stickysession to work
Isn't that a bit strange? normally yes Why not have stickysession made so it can be set to any session identifying cookie, regardless of format? The problem could be, that in some situation -without a special route configured- both servers behind the Apache e.g. 2 Tomcats can send the same sessionid and only with a route the ID will become unique.* But in general it should be sufficient if Apache catch at response time the info inside the Set-Cookie Header added for himself with the Host[:port]-part of the worker from the conf file and it should be unique too to handle stickyness without a special route. By the way, I patched mod_proxy_balancer.c that Apache can use now the route out of the session id* and it worked know. Or am I expecting too much... normally not ... Nevermind, we'll be falling back to pound for loadbalancing appservers, then. Can you send me the cookie line from which your Browser sends back to the Apache with a ZopeID ? oliver.schaudt at unilog.de bye Oliver * Examples of session ID's: A Tomcat alone sends JSESSIONID=5DE657D529A72D80A70C1D3A3E652910 A tomcat with a route sends JSESSIONID=5DE657D529A72D80A70C1D3A3E652910.Tomcat1 One of the SAP Web AS behind my Apache sends this: JSESSIONID=(J2EE184141100)ID184141150DB8638447511222688603End in this case all Info before the DB is the unique identifier. bye Oliver Von: Germer, Carsten [mailto:[EMAIL PROTECTED] Gesendet: Mo 09.01.2006 13:19 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get stickysession to work Thanks a bunch, that worked. I puzzled too long on that one, I guess ;) Till today stickysession didn't work for me either if i put there a route or not. When i look in the code of mod_proxy_balancer.c than it seems that it is only working with a Tomcat which sends a JSESSIONID like session.route. I have the problem that i have a SAP Web Application Server which sends JSESSIONID's like (J2EEgroupNr)IDrouteDBsessionEnd Isn't that a bit strange? Why not have stickysession made so it can be set to any session identifying cookie, regardless of format? Or am I expecting too much... Nevermind, we'll be falling back to pound for loadbalancing appservers, then. Cheers! /Carsten -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Saturday, January 07, 2006 10:32 PM To: users@httpd.apache.org Subject: AW: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get stickysession to work Hi , Last month i made the same thing and after some forbidden, i put the / after the mycluster and it worked. For me it worked this: ProxyPass / balancer://wpgcluster/ lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://wpgcluster/ BalancerMember http://10.0.0.1:11800/ smax=15 loadfactor=1 BalancerMember http://10.0.0.2:19500/ smax=15 loadfactor=1 /Proxy So for you it should be: Config snip ProxyPass / balancer://mycluster/ stickysession=_ZopeId nofailover=on Proxy balancer://mycluster/ BalancerMember http://app1.desy.de:8080/ BalancerMember http://app2.desy.de:8080/ /Proxy config snip Till today stickysession didn't work for me either if i put there a route or not. When i look in the code of mod_proxy_balancer.c than it seems that it is only working with a Tomcat which sends a JSESSIONID like session.route. I have the problem that i have a SAP Web Application Server which sends JSESSIONID's like (J2EEgroupNr)IDrouteDBsessionEnd Greetings Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] im Auftrag von Joshua Slive Gesendet: Fr 06.01.2006 20:02 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get stickysession to work On 1/6/06, Germer, Carsten [EMAIL PROTECTED] wrote: ReHi everyone, I now tried to do it with ProxyPass and ran into another Problem. Config snip ProxyPass / balancer://mycluster stickysession=_ZopeId nofailover=on Proxy balancer://mycluster BalancerMember http://app1.desy.de:8080/ BalancerMember http://app2.desy.de:8080/ /Proxy config snip Works good for requesting http://appfront.desy.de/ but when I try to access http://appfront.desy.de/subpage1.html I get Forbidden You don't have permission to access /subpage1.html on this server. Apache Server at appfront.desy.de Port 80 Why doesn't it let me access anything behind /? I thought ProxyPass rewrites everything behind / to the balancer? Anything in the error log? I'd start by adding a trailing slash to mycluster in the ProxyPass directive. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat
RE: [EMAIL PROTECTED] 2.2 Troubles
Is there another more prefered way of finding out what the browser is sending to the server, for future reference? Internet Explorer: iehttpheaders http://www.blunck.info/iehttpheaders.html Firefox: Tamper Data https://addons.mozilla.org/extensions/moreinfo.php?id=966 or Livehttpheaders http://livehttpheaders.mozdev.org/ All Tools give you the whole bunch of headers which the browser gets and sends. Tamper Data has a plus. With this tool you can change the value of a header before the browser will send it back to server with the next request. Cool! Greetings Oliver -Ursprüngliche Nachricht- Von: David Salisbury [mailto:[EMAIL PROTECTED] Gesendet: Di 10.01.2006 19:06 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] 2.2 Troubles - Original Message - From: Joshua Slive [EMAIL PROTECTED] On 1/9/06, David Salisbury [EMAIL PROTECTED] wrote: Is anyone else out there having trouble with 2.2.0? For me, I only get a blank page for our home page. This happens in I.E. and firefox, though sometimes in one and not the other. The header communication seems to be: GET / HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */* Accept-Language: en-us Range: bytes=0- Unless-Modified-Since: Tue, 05 Jul 2005 23:13:46 GMT If-Range: 9b5f95-1e30-3c6dde80 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; InfoPath.1; .NET CLR 2.0.50727) Host: preview Proxy-Connection: Keep-Alive That's a very weird request. Unless-Modified-Since? Range: bytes=0-? Is that really a standard browser with no proxy in the path? In general when there are no-content problems, the first thing to try is EnableSendfile Off So you should try that. But there is definintely something weird going on with byteranges in your case. Joshua. Whaooo... That works!!! Thank you! I suppose using this directive means things aren't as efficient as they could be, but then, that's nothing new here. :) I don't understand the weird requests of the headers either. Maybe we have some weird browser-used libraries installed. I was using Achilles in between the browser and server to capture the headers, but it is not suppose to modify the communication unless you edit things manually. Is there another more prefered way of finding out what the browser is sending to the server, for future reference? Thanks! -Dave - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get stickysession to work
Hi , Last month i made the same thing and after some forbidden, i put the / after the mycluster and it worked. For me it worked this: ProxyPass / balancer://wpgcluster/ lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://wpgcluster/ BalancerMember http://10.0.0.1:11800/ smax=15 loadfactor=1 BalancerMember http://10.0.0.2:19500/ smax=15 loadfactor=1 /Proxy So for you it should be: Config snip ProxyPass / balancer://mycluster/ stickysession=_ZopeId nofailover=on Proxy balancer://mycluster/ BalancerMember http://app1.desy.de:8080/ BalancerMember http://app2.desy.de:8080/ /Proxy config snip Till today stickysession didn't work for me either if i put there a route or not. When i look in the code of mod_proxy_balancer.c than it seems that it is only working with a Tomcat which sends a JSESSIONID like session.route. I have the problem that i have a SAP Web Application Server which sends JSESSIONID's like (J2EEgroupNr)IDrouteDBsessionEnd Greetings Oliver -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] im Auftrag von Joshua Slive Gesendet: Fr 06.01.2006 20:02 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get stickysession to work On 1/6/06, Germer, Carsten [EMAIL PROTECTED] wrote: ReHi everyone, I now tried to do it with ProxyPass and ran into another Problem. Config snip ProxyPass / balancer://mycluster stickysession=_ZopeId nofailover=on Proxy balancer://mycluster BalancerMember http://app1.desy.de:8080/ BalancerMember http://app2.desy.de:8080/ /Proxy config snip Works good for requesting http://appfront.desy.de/ but when I try to access http://appfront.desy.de/subpage1.html I get Forbidden You don't have permission to access /subpage1.html on this server. Apache Server at appfront.desy.de Port 80 Why doesn't it let me access anything behind /? I thought ProxyPass rewrites everything behind / to the balancer? Anything in the error log? I'd start by adding a trailing slash to mycluster in the ProxyPass directive. Joshua. winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp)
Hi Pete, Put an L inside the line with the asx -Line, so that Apache knows this will be the last Rule. Than with RewriteRules you don't need ProxyPassReverse Than check these [ist is only inserted an ,L before the ]: RewriteEngine on RewriteRule /pub/wiv/(.*).asx$ ajp://theTomcatBox:8009/pub/wiv?seoName=$1 [P,QSA,L] RewriteRule /pub ajp://theTomcatBox:8009/pub [P] Another possibility will be to change the URI and than pass it with the next RewriteRule (should be the same like the things above). Check it and tell me if it is working RewriteCond %{QUERY_STRING} !^seoName RewriteRule /pub/wiv/(.*).asx$ /pub/wiv?seoName=$1 [QSA,PT] RewriteRule /pub ajp://theTomcatBox:8009/pub [P] At the momemt i use mod_jk to the back tomcat, but i will check this with mod_proxy_ajp as well. Here i use it with a rewrite of the actual URI an this i transparent to the Clients Browser, They never see /b/ in their browsers RewriteCond %{REQUEST_URI} !^/abc/def RewriteRule ^/abc/(.*)$ /abc/def/$1 [PT] JkMount /abc* ajp13_tomcat Ciao Oliver Von: Pete Lamborne [mailto:[EMAIL PROTECTED] Gesendet: Mi 04.01.2006 17:53 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Yes, but as you could see from my code sample, there are no redirects. There is a proxypass preceded by a rewrite rule. That is why I feel that the interaction between mod_proxy_ajp and mod_rewrite is buggy -- as far as I can tell, the behavior I'm getting is not due to an improper configuration. Is anyone else out there using apache 2.2 with mod_rewrite and mod_proxy_ajp to pass to tomcat? I'd really like to hear other people's experience and see their config. Rajendra Kadam -X (rakadam - eTouch Systems at Cisco) wrote: Hi Pete, You said that . Rewrite goes into infinite loop Is that correct ? I also faced the same problem. And resolution that is when you are redirecting to some other url that particular url should not be in turn re-directed. Else it's infinite loop. See this thread : http://mail-archives.apache.org/mod_mbox/httpd-users/200512.mbox/[EMAIL PROTECTED] It might help you. Cheers, Rajendra -Original Message- From: Pete Lamborne [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 03, 2006 10:10 AM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Yes I am using 2.2, for the advantages mod_proxy_ajp was supposed to have over mod_jk. Now I am rethinking that decision... I will use the logging for more insight, thanks for that tip as well. I will post any info I find, and appreciate any other suggestions. pete Axel-Stéphane SMORGRAV wrote: Another advantage of using RewriteRule over ProxyPass is that you get a lot better logging provided you set RewriteLogLevel 3. That may help you understand why it loops... I understood that you originally ended up with a redirect, but I thought that it might have been the application that was generating the redirect. I take it you are using Apache 2.2 ? -ascs -Original Message- From: Pete Lamborne [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 03, 2006 6:56 PM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) ASCS, thanks for your reply. Your suggestion (and several permutations of it) were not successful; I don't quite understand why, but it created an infinite loop. I don't think the original situation (where it *works*, but the URL is rewritten in the user's browser) is due to ProxyPass being evaluated first, because the URL did indeed get rewritten 1st (it's just that it wasn't transparent to the user). I believe this is more likely to be a bug in the way the mod_proxy_ajp and mod_rewrite interact, rather than a matter of configuration. But I really appreciate more suggestions and/or workarounds! Thanks, pete Axel-Stéphane SMORGRAV wrote: Could it possibly be because ProxyPass is evaluated before RewriteRule ? How does the following work : RewriteEngine on RewriteRule /pub/wiv/(.*).asx$ ajp://theTomcatBox:8009/pub/wiv?seoName=$1 [P,QSA] RewriteRule /pub ajp://theTomcatBox:8009/pub [P] ProxyPassReverse /pub ajp://theTomcatBox:8009/pub -ascs -Original Message- From: Pete Lamborne [mailto:[EMAIL PROTECTED] Sent: Monday, January 02, 2006 6:48 PM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Hey all, There is very little info out there on this so far, given how new mod_proxy_ajp is. One post I found seemed to indicate the same bug with no solution The problem is that I can't get mod_rewrite to work transparently with mod_proxy_ajp. It either doesn't work at all (when I don't specify :proxy or [P]), or works like a redirect, changing the URL in the user's browser. Here's a quick conf: RewriteEngine on RewriteRule /pub/wiv/(.*).asx$
AW: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp)
Hi Axel-Stephane is a RewriteRule ^/pub(.*)$ajp://theTomcatBox:8009/pub$1 [P] not the similar like ProxyPass/pub ajp://theTomcatBox:8009/pub ProxyPassReverse /pub ajp://theTomcatBox:8009/pub I have had several Apache's from 1.3 to 2.2 which have had no problems with this. Oliver Schaudt Von: Axel-Stéphane SMORGRAV [mailto:[EMAIL PROTECTED] Gesendet: Do 05.01.2006 13:14 An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Yes you will need the ProxyPassReverse in order to rewrite the Location headers of potential redirections. The RewriteRule will not take care of that. -ascs From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, January 05, 2006 12:50 PM To: users@httpd.apache.org Subject: AW: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Hi Pete, Put an L inside the line with the asx -Line, so that Apache knows this will be the last Rule. Than with RewriteRules you don't need ProxyPassReverse Than check these [ist is only inserted an ,L before the ]: RewriteEngine on RewriteRule /pub/wiv/(.*).asx$ ajp://theTomcatBox:8009/pub/wiv?seoName=$1 [P,QSA,L] RewriteRule /pub ajp://theTomcatBox:8009/pub [P] Another possibility will be to change the URI and than pass it with the next RewriteRule (should be the same like the things above). Check it and tell me if it is working RewriteCond %{QUERY_STRING} !^seoName RewriteRule /pub/wiv/(.*).asx$ /pub/wiv?seoName=$1 [QSA,PT] RewriteRule /pub ajp://theTomcatBox:8009/pub [P] At the momemt i use mod_jk to the back tomcat, but i will check this with mod_proxy_ajp as well. Here i use it with a rewrite of the actual URI an this i transparent to the Clients Browser, They never see /b/ in their browsers RewriteCond %{REQUEST_URI} !^/abc/def RewriteRule ^/abc/(.*)$ /abc/def/$1 [PT] JkMount /abc* ajp13_tomcat Ciao Oliver Von: Pete Lamborne [mailto:[EMAIL PROTECTED] Gesendet: Mi 04.01.2006 17:53 An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Yes, but as you could see from my code sample, there are no redirects. There is a proxypass preceded by a rewrite rule. That is why I feel that the interaction between mod_proxy_ajp and mod_rewrite is buggy -- as far as I can tell, the behavior I'm getting is not due to an improper configuration. Is anyone else out there using apache 2.2 with mod_rewrite and mod_proxy_ajp to pass to tomcat? I'd really like to hear other people's experience and see their config. Rajendra Kadam -X (rakadam - eTouch Systems at Cisco) wrote: Hi Pete, You said that . Rewrite goes into infinite loop Is that correct ? I also faced the same problem. And resolution that is when you are redirecting to some other url that particular url should not be in turn re-directed. Else it's infinite loop. See this thread : http://mail-archives.apache.org/mod_mbox/httpd-users/200512.mbox/[EMAIL PROTECTED] It might help you. Cheers, Rajendra -Original Message- From: Pete Lamborne [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 03, 2006 10:10 AM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) Yes I am using 2.2, for the advantages mod_proxy_ajp was supposed to have over mod_jk. Now I am rethinking that decision... I will use the logging for more insight, thanks for that tip as well. I will post any info I find, and appreciate any other suggestions. pete Axel-Stéphane SMORGRAV wrote: Another advantage of using RewriteRule over ProxyPass is that you get a lot better logging provided you set RewriteLogLevel 3. That may help you understand why it loops... I understood that you originally ended up with a redirect, but I thought that it might have been the application that was generating the redirect. I take it you are using Apache 2.2 ? -ascs -Original Message- From: Pete Lamborne [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 03, 2006 6:56 PM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] rewrite gurus help? (with mod_proxy_ajp) ASCS, thanks for your reply. Your suggestion (and several permutations of it) were not successful; I don't quite understand why, but it created an infinite loop. I don't think the original situation (where it *works*, but the URL is rewritten in the user's browser) is due to ProxyPass being evaluated first, because the URL did indeed get rewritten 1st (it's just that it wasn't transparent to the user). I believe this is more likely to be a bug in the way the mod_proxy_ajp and mod_rewrite interact, rather than a matter of configuration. But I really appreciate more suggestions and/or workarounds! Thanks, pete Axel-Stéphane SMORGRAV wrote: Could it possibly be because ProxyPass is
AW: [EMAIL PROTECTED] Unable to redirect ( using mod_rewrite)
Hi Rajendra, there is the line RewriteCond %{REQUEST_URI} !^downtime\.html$ missing, because if you can to redirect all URL's to downtime.html, but you have to exclude the downtime.html itself. If not, this will result in an infinte loop. So your new Block will be RewriteCond %{REQUEST_URI} !^downtime\.html$ RewriteCond %{TIME_WDAY}%{TIME_HOUR}%{TIME_MIN} 21700 RewriteCond %{TIME_WDAY}%{TIME_HOUR}%{TIME_MIN} 21759 RewriteRule /.* http://webstite/downtime\.html http://webstite/downtime\.html [R,L] RewriteRule ^/$ /confluence/ [R] bye Oliver -Ursprüngliche Nachricht- Von: Rajendra Kadam -X (rakadam - eTouch Systems at Cisco) [mailto:[EMAIL PROTECTED] Gesendet: Di 27.12.2005 23:20 An: Apache-HTTPD Users Mailing list Betreff: [EMAIL PROTECTED] Unable to redirect ( using mod_rewrite) Hi Folks, I want to do time based rewrite in order to display a Downtime page during DATABASE maintenance. Htpd.conf has following settings RewriteEngine on RewriteLog logs/rewriteLog.log RewriteLogLevel 9 RewriteCond %{TIME_WDAY}%{TIME_HOUR}%{TIME_MIN} 21700 RewriteCond %{TIME_WDAY}%{TIME_HOUR}%{TIME_MIN} 21759 RewriteRule /.* http://webstite/downtime\.html http://webstite/downtime\.html [R,L] RewriteRule ^/$ /confluence/ [R] It means on every Sautrday between 2am-3am, any url pointing to our website should get directed Downtime page. In all other cases, next Rewrite rule should work! But whenever I tried to test it; Firefox always fails with following error : The page isn't redirecting properly Firefox has detected that the server is redirecting the request for this address in a way that will never complete. * This problem can sometimes be caused by disabling or refusing to accept cookies. Here is Rewrite_Log: 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (2) init rewrite engine with requested uri /confluence/display/WIKI/Home 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (3) applying pattern '/.*' to uri '/confluence/display/WIKI/Home' 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (4) RewriteCond: input='21710' pattern='21700' = matched 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (4) RewriteCond: input='21710' pattern='21759' = matched 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (2) rewrite /confluence/display/WIKI/Home - http://wiki-dev/downtime.html 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (2) explicitly forcing redirect with http://wiki-dev/downtime.html 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (1) escaping http://wiki-dev/downtime.html for redirect 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev/sid#9968800][rid#9a508f0/initial] (1) redirect to http://wiki-dev.com/downtime.html [REDIRECT/302] 171.71.57.50 - - [27/Dec/2005:17:10:50 --0500] [wiki-dev.cisco.com/sid#9968800][rid#9a508f0/initial] (2) init rewrite engine with requested uri /downtime.html I'm not sure what's wrong going on here... Can anybody please help, thanks, Rajendra winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Dateien korupt mit versch. IE Browser
Hallo Stefan, im IE erkennt man es daran, dass das Speichern Fenster einem keinen Dateityp (oder nur Text) anzeigt. Ganz offensichtlich wird es aber, sofern der MimeType im header steht mit http://www.blunck.info/iehttpheaders.html für den IE [Für den Firefox gibt es auch sowas nennt sich dann livehttpheaders oder tamper data ,hier musste dann googeln] Allerdings gebe ich dir recht, bei Zipfiles sollte eigentlich nicht schief gehen. Frohe Weihnachten (passt ja gerade perfekt :-)) ) Oliver -Original Message- From: Stefan Sabolowitsch [mailto:[EMAIL PROTECTED] Sent: Fri 23.12.2005 11:41 To: users-de@httpd.apache.org Subject: AW: Dateien korupt mit versch. IE Browser Hmm Oliver, das wäre schon seltsam das sind überwiegend zip Dateien. Die sollte doch jeder Browser kennen. Wo kann ich den schauen ob der Browser den Mime-Type richtig erkennt. Gruß Stefan -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 23. Dezember 2005 10:34 An: users-de@httpd.apache.org Betreff: AW: Dateien korupt mit versch. IE Browser Hallo Stefan, liegt es vielleicht an den Dateitypen respektive Mime-Types, so dass der IE 6 diese per ASCII downloadet, obwohl es binäre Dateien sind. Kommt vor, wenn Windows die Endung nicht kennt und automatisch als ASCII [also Text] runterlädt. Beispiel: j2sdk-1_4_2_08-solaris-sparc.sh - ist ein Shellscript mit angehängter Binärdatei Gruss Oliver Von: Stefan Sabolowitsch [mailto:[EMAIL PROTECTED] Gesendet: Fr 23.12.2005 10:00 An: users-de@httpd.apache.org Betreff: AW: Dateien korupt mit versch. IE Browser Hi Paul, wir haben hier eine Apache 2.x Auf dem läuft eine FTP mit dem wir Dateien zum Apache schieben, damit interne und externe diese via Apache abholen können. Folgendes, wir haben interne und exteren User die den IE6 fast mit den selben patches nutzen und doch korupte Dateien bekommen. Mit dem Firefox gibts hier keine Probleme. Gruß Stefan -Ursprüngliche Nachricht- Von: Paul Puschmann [mailto:[EMAIL PROTECTED] Gesendet: Freitag, 23. Dezember 2005 09:37 An: users-de@httpd.apache.org Betreff: Re: Dateien korupt mit versch. IE Browser Stefan Sabolowitsch wrote: Hallo Liste, habe hier folgendes Problem. es gibt hier mehrere PC's mit IE6. Bei einigen werden Dateien korupt wenn diese heruntergeladen werden. Im Apache log sieht man nichts auffälliges. Irgend eine Idee ? Tritt das nur bei bestimmten (eigenen) Servern auf oder kann man die Fehler auch auf normalen Webseiten beobachten? Ich würde jenachdem mal schauen, ob da ein Proxy eingetragen ist oder eine Firewall dazwischen funkt. Wenn es am Apache liegt, sollten doch alle Fehler bekommen, oder nicht? Paul -- Linux-User #271918 with the Linux Counter, http://counter.li.org/ -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] -- -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] -- -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
RE: [EMAIL PROTECTED] SOLVED mod_proxy_balancer question 2.1.9
HI, it is solved. The magical thing seems to be a slash after the name of the cluster, so /somcluster gets an warn message in the error_log and /somcluster/ works This is NOT Working: ProxyPass / balancer://somcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://somcluster BalancerMember http://172.19.15.21:11800/ http://172.19.15.21:11800 loadfactor=1 BalancerMember http://172.19.15.22:11810/ http://172.19.15.22:11810 loadfactor=1 /Proxy This is Working: ProxyPass / balancer://somcluster/ lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://somcluster/ BalancerMember http://172.19.15.21:11800/ http://172.19.15.21:11800 http://172.19.15.21:11800/ / loadfactor=1 BalancerMember http://172.19.15.22:11810/ http://172.19.15.22:11810 http://172.19.15.22:11810/ / loadfactor=1 /Proxy And for each URI which should not be proxied to the back, don't forget a line like this: ProxyPass /balancer-manager ! bye Oliver winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: [EMAIL PROTECTED] libperl.so
Hi, Cannot load /usr/apache/ libexe /libperl.so normally this should be libexec. bye Oi Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Gesendet: Do 17.11.2005 19:35 An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] libperl.so Good day to everyone out there, This is my first time writing and using Apache. I am very much a novice. But enough with the chatter. I am trying to start Apache and get the following msg: Cannot load /usr/apache/libexe/libperl.so into server: ld.so.1 ./httpd: fatal: libperl.so.1: open failed: no such file or directory. I found libperl.so in usr/apache/libexec and ldso.1 in /etc/lib but could not find libperl.so.1. If this is the problem, where should libperl.so.1 b? Thank you for your time and assistance. Sincerely, Mark E. Brown winmail.dat- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] mod_proxy_balancer question 2.1.9
Hi, i'm using apache 2.1.9beta and mod_proxy_balancer on an AMD Opteron 64 running SLES 9. It compiled well and it runs. There is one special thing: Case 1 : If i make a balancercluster like this [for every context 1 cluster] ProxyPass /web balancer://wpgcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://wpgcluster BalancerMember http://172.19.15.21:11800/web http://172.19.15.21:11800/web smax=15 loadfactor=1 BalancerMember http://172.19.15.22:11810/web http://172.19.15.22:11810/web smax=15 loadfactor=1 /Proxy ProxyPass /som balancer://somcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://somcluster BalancerMember http://172.19.15.21:11800/som http://172.19.15.21:11800/som loadfactor=1 BalancerMember http://172.19.15.22:11810/som http://172.19.15.22:11810/som loadfactor=1 /Proxy than it is all working without any errors GET /web/portal - 200 OK GET /som - 200 OK BUT: Case 2: If i put it all together, because i want to send all requests to the backend servers like this ProxyPass / balancer://somcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://somcluster BalancerMember http://172.19.15.21:11800 http://172.19.15.21:11800 loadfactor=1 BalancerMember http://172.19.15.22:11810 http://172.19.15.22:11810 loadfactor=1 /Proxy or this ProxyPass / balancer://somcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://somcluster BalancerMember http://172.19.15.21:11800/ http://172.19.15.21:11800 http://172.19.15.21:11800/ / loadfactor=1 BalancerMember http://172.19.15.22:11810/ http://172.19.15.22:11810 http://172.19.15.22:11810/ / loadfactor=1 /Proxy than with every Request i get a 403 and inside the error_log there comes a message like GET /web/portal - 403 Forbidden GET /som - 403 Forbidden [Fri Nov 11 11:38:03 2005] [warn] proxy: No protocol handler was valid for the URL /web/portal. If you are using a DSO version of mod_proxy, mak e sure the proxy submodules are included in the configuration using LoadModule. Case 1 is working, but Case 2 not! In Case1 Apache knows to send the request to the backend, but why not in Case 2 ? Any Clue ? Thanks Oliver Schaudt Used virtuel Hostfile: === Listen balancer.example.com:80 VirtualHost balancer.example.com:80 DocumentRoot/usr/local/apache/proxy/var/balancer.example.com ServerName balancer.example.com:80 ServerAdmin [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] ErrorLog /usr/local/apache/proxy/var/logs/balancer.example.com/error.log TransferLog /usr/local/apache/proxy/var/logs/balancer.example.com/access.log CacheEnable mem / CacheDefaultExpire 86400 CacheMaxExpire 604800 CacheIgnoreHeaders Set-Cookie CacheIgnoreCacheControl On SetEnvIf User-Agent .*MSIE.* ssl-unclean-shutdown Location /server-status SetHandler server-status Order Deny,Allow Deny from all Allow from 127.0.0.1 /Location ProxyRequests On RewriteEngine On RewriteLog /usr/local/apache/proxy/var/logs/balancer.example.com/rewrite.log RewriteLogLevel 9 RewriteRule ^/$http://balancer.example.com/web http://balancer.example.com/web [R,L] RewriteRule ^/auctionhouse(.*)$ http://172.19.15:26:11801/auctionhouse$1 http://172.19.15:26:11801/auctionhouse$1 [P,L] ProxyPass /balancer-manager ! Location /balancer-manager SetHandler balancer-manager Order Deny,Allow Deny from all Allow from 127.0.0.1 /Location ProxyPass /web balancer://wpgcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://wpgcluster BalancerMember http://172.19.15.21:11800/web http://172.19.15.21:11800/web smax=15 loadfactor=1 BalancerMember http://172.19.15.22:11810/web http://172.19.15.22:11810/web smax=15 loadfactor=1 /Proxy ProxyPass /som balancer://somcluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://somcluster BalancerMember http://172.19.15.21:11800/som http://172.19.15.21:11800/som loadfactor=1 BalancerMember http://172.19.15.22:11810/som http://172.19.15.22:11810/som loadfactor=1 /Proxy ProxyPass /bom2 balancer://bom2cluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://bom2cluster BalancerMember http://172.19.15.21:11800/bom2 http://172.19.15.21:11800/bom2 loadfactor=1 BalancerMember http://172.19.15.22:11810/bom2 http://172.19.15.22:11810/bom2 loadfactor=1 /Proxy ProxyPass /pm2 balancer://pm2cluster lbmethod=byrequests stickysession=JSESSIONID nofailover=On Proxy balancer://pm2cluster BalancerMember http://172.19.15.21:11800/pm2 http://172.19.15.21:11800/pm2 loadfactor=1 BalancerMember http://172.19.15.22:11810/pm2 http://172.19.15.22:11810/pm2 loadfactor=1 /Proxy ProxyPreserveHost On ProxyReceiveBufferSize 4096 Directory proxy:* Deny from all