Tomcat SSL Configuration

**dana.merrick** · 06-29-2006, 08:17 AM

Hello Zimbra people.
I got Zimbra up and running yesterday, complete with actual SSL certificates.\
The server is on a separate IP address, outside of my company's firewall.
I was wondering, how do I set up my httpd.conf so that I can do the following:

Outside of the firewall, traffic is redirected from http://mail.mydomain.com/ to https://mail.mydomain.com/.
Inside the firewall, traffic to http://mail.mydomain.com/ is not redirected.

I assume to do so I'd have some sort of virtual host in /opt/zimbra/conf/httpd.conf.
Any ideas?
-Dana

**phoenix** · 06-29-2006, 08:23 AM

Hi

Welcome to the forums.

Does this page point you in the right direction?

**dana.merrick** · 06-29-2006, 08:36 AM

Originally Posted by phoenix

Does this page point you in the right direction?

Hi Bill.
Not really. I'm not really concerned with having my Apache server do anything else, really. The httpd.conf example they use could help a little, but there they're trying to do something different.
I figure my httpd.conf file should look something like this:
(Where my Zimbra server name is "zimbra" and the network that my firewall protects is "network")

Code:

<VirtualHost *:80>
  ServerName zimbra.mydomain.com
  DocumentRoot /im/not/sure
  RewriteEngine on
  RewriteCond   [something that specifies != network]
  RewriteRule   ^/(.*)$   https://mail.mydomain.com/$1 [L,QSA] 
</VirtualHost>

Does that help you get a jumping off point?
-Dana

**dana.merrick** · 06-29-2006, 09:18 AM

I suppose I should clarify this by saying:
I know how to edit the Apache configuration, but where does Zimbra put them and how can I properly restart it?
Thanks in advance,
-Dana

**dana.merrick** · 06-30-2006, 07:34 AM

It seems I'm the only one posting here

.
Here is what I have so far:

Code:

NameVirtualHost *:80
<VirtualHost *:80>
       ServerName zimbra.mydomain.com
#     DocumentRoot /var/www/yourdomains_doc-root
   <IfModule mod_rewrite.c>
       RewriteEngine  on
       RewriteCond    %{REMOTE_HOST} !networkIP
       RewriteRule    https://zimbra.mydomain.com/$1 [L,QSA]
   </IfModule>
</VirtualHost>

It doesn't quite work. Any ideas?
Thanks in advance,
-Dana
P.S. could the solution lay in the zmtlsctl command?

**dana.merrick** · 06-30-2006, 12:49 PM

I got it!
It really did lie in the zmtlsctl command.
I used the above code with zmtlsctl both (NOT "mixed").
That was all.
-Dana

**bobby** · 06-30-2006, 06:18 PM

until bug 5594 gets fixed, both == mixed. have a look at ~/bin/zmtlsctl

Bug 5594 - TLS mode "both" causes redirection limit problem
http://bugzilla.zimbra.com/show_bug.cgi?id=5594

regardless, i think you've got things set up

Zimbra

Thread: Tomcat SSL Configuration

LinkBack

Thread Tools

Search Thread

Display

Tomcat SSL Configuration [SOLVED!]

Clarification

Solved!

Thread Information

Users Browsing this Thread

Similar Threads

SSL certificate problem(?) Tomcat not working

Specific ssl error during tomcat startup

Issue sharing Address Books with Tomcat Commercial Cert SSL

Help with tomcat ssl errors...

Posting Permissions