Re: load balancing with 2 HTTPS portal servers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Nedim,

As your configuration is at the moment you proxy the traffic coming on port 443 (SSL port) to the back end servers which means only the requests coming with https:// will work. What you need to do is just write a simple mod_rewrite rule to redirect the traffic from port 80 to 443 and all should work.

2009/7/9 Nedim Ozan Tekin <ntekin@xxxxxxxxxxxxxxx>
Additionally , İ have configured httpd.conf as follows

ProxyPass / balancer://portalcluster/ stickysession=JSESSIONID|jsessionid
nofailover=On

SSLSessionCache none

<VirtualHost *:443>
SSLEngine On
SSLProxyEngine On
SSLCertificateFile /openssl/server.crt
SSLCertificateKeyFile /openssl/server.key
SSLCACertificateFile /openssl/ca.crt

<Proxy balancer://portalcluster>
       BalancerMember https://10.10.0.138:8443/portal route=portaltomcat1
       BalancerMember https://10.10.0.139:8443/portal route=portaltomcat1
</Proxy>

</VirtualHost>

But when i g oto the url http://10.10.0.138:443/portal nothing happens..
But i want to go https://10.10.0.138:8443/portal or
https://10.10.0.139:8443/portal

İ dont know What is missing ?

-----Original Message-----
From: Nedim Ozan Tekin [mailto:ntekin@xxxxxxxxxxxxxxx]
Sent: Thursday, July 09, 2009 12:24 PM
To: users@xxxxxxxxxxxxxxxx
Subject: load balancing with 2 HTTPS portal servers



Hi all,
I have already two successfully working jboss portal servers.
e.g. https://10.10.0.138:8443/portal
    https://10.10.0.139:8443/portal they work, there is no problem..

But now , what i want is to be able to use (in httpd.conf):

ProxyPass / balancer://portalcluster/ stickysession=JSESSIONID|jsessionid
nofailover=On

<Proxy balancer://portalcluster>
       BalancerMember https://10.10.0.138:8443 route=portaltomcat1
       BalancerMember https://10.10.0.139:8443 route=portaltomcat1
</Proxy>

İ realised that, i cannot https server as a balancer member.
İ already made ssl configuration (certificates related issues) on jboss
portal , so i dont want/need to do in apache again the same certificate
issues.

So my problem is that :
"How can i configure the load balancing(sticky) between two https servers?"

Could you please help me?

Nedim Ozan Tekin
Systems Engineer
Havelsan Corp.
Ankara / TR


Internal Virus Database is out-of-date.
Checked by AVG.
Version: 7.5.557 / Virus Database: 270.12.10/2088 - Release Date: 4/30/2009
6:01 AM



Dikkat: Bu elektronik posta mesaji kisisel ve ozeldir. Eger size
gonderilmediyse lutfen gondericiyi bilgilendirip mesaji siliniz.Firmamiza
gelen ve giden mesajlar virus taramasindan gecirilmektedir.Mesajdaki
gorusler  gondericiye ait olup HAVELSAN A.S. resmi gorusu olmak zorunda
degildir.

Attention: This e-mail message is private and privileged.If you are not the
recipient for whom this e-mail message is intended, please notify the sender
immediately and delete this e-mail message from your system.All sent and
received e-mail messages go through a virus scan in our company. Any
opinions presented in this e-mail message are solely those of the author and
do not necessarily represent HAVELSAN A.S.`s formal and authorized views.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx


__________ NOD32 4219 (20090705) Bilgi __________

Bu mesaj NOD32 Antivirüs Sistemi tarafından kontrol edilmiştir.
http://www.nod32.com.tr


Internal Virus Database is out-of-date.
Checked by AVG.
Version: 7.5.557 / Virus Database: 270.12.10/2088 - Release Date: 4/30/2009
6:01 AM


Internal Virus Database is out-of-date.
Checked by AVG.
Version: 7.5.557 / Virus Database: 270.12.10/2088 - Release Date: 4/30/2009
6:01 AM



Dikkat: Bu elektronik posta mesaji kisisel ve ozeldir. Eger size gonderilmediyse lutfen gondericiyi bilgilendirip mesaji siliniz.Firmamiza gelen ve giden mesajlar virus taramasindan gecirilmektedir. Mesajdaki gorusler  gondericiye ait olup HAVELSAN A.S. resmi gorusu olmak zorunda degildir.

Attention: This e-mail message is private and privileged.If you are not the recipient for whom this e-mail message is intended, please notify the sender immediately and delete this e-mail message from your system.All sent and received e-mail messages go through a virus scan. Any opinions presented in this e-mail message are solely those of the author and do not necessarily represent HAVELSAN A.S.`s formal and authorized views.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx


[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux