我是Tomcat和Java的新手,但它已经在研磨我的齿轮;) 我的目标是使用CentOS设置CAS-Server和Apache-Tomcat环境。
阅读了几十个教程后,这是我重新启动tomcat服务后得到的catalina.out日志文件
Aug 26, 2014 5:09:10 PM org.apache.catalina.core.AprLifecycleListener init
INFORMATION: The APR based Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path: /usr/java/packages/lib/amd64:/usr/lib64:/lib64:/lib:/usr/lib
Aug 26, 2014 5:09:10 PM org.apache.coyote.AbstractProtocol init
INFORMATION: Initializing ProtocolHandler ["http-bio-8080"]
Aug 26, 2014 5:09:10 PM org.apache.coyote.AbstractProtocol init
INFORMATION: Initializing ProtocolHandler ["http-bio-8443"]
Aug 26, 2014 5:09:10 PM org.apache.catalina.startup.Catalina load
INFORMATION: Initialization processed in 501 ms
Aug 26, 2014 5:09:10 PM org.apache.catalina.core.StandardService startInternal
INFORMATION: Starting service Catalina
Aug 26, 2014 5:09:10 PM org.apache.catalina.core.StandardEngine startInternal
INFORMATION: Starting Servlet Engine: Apache Tomcat/7.0.33
Aug 26, 2014 5:09:10 PM org.apache.catalina.startup.HostConfig deployDirectory
INFORMATION: Deploying web application directory /var/lib/tomcat/webapps/cas/css
Aug 26, 2014 5:09:10 PM org.apache.catalina.startup.HostConfig deployDirectory
INFORMATION: Deploying web application directory /var/lib/tomcat/webapps/cas/themes
Aug 26, 2014 5:09:11 PM org.apache.catalina.startup.HostConfig deployDirectory
INFORMATION: Deploying web application directory /var/lib/tomcat/webapps/cas/js
Aug 26, 2014 5:09:11 PM org.apache.catalina.startup.HostConfig deployDirectory
INFORMATION: Deploying web application directory /var/lib/tomcat/webapps/cas/images
Aug 26, 2014 5:09:11 PM org.apache.coyote.AbstractProtocol start
INFORMATION: Starting ProtocolHandler ["http-bio-8080"]
Aug 26, 2014 5:09:11 PM org.apache.coyote.AbstractProtocol start
INFORMATION: Starting ProtocolHandler ["http-bio-8443"]
Aug 26, 2014 5:09:11 PM org.apache.catalina.startup.Catalina start
INFORMATION: Server startup in 1033 ms
这是server.xml
<Server port="8005" shutdown="SHUTDOWN">
<Listener className="org.apache.catalina.core.AprLifecycleListener"
SSLEngine="on" SSLRandomSeed="builtin" />
<Listener className="org.apache.catalina.core.JasperListener" />
<Listener className="org.apache.catalina.core.JreMemoryLeakPreventionListener" />
<Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" />
<Listener className="org.apache.catalina.core.ThreadLocalLeakPreventionListener" />
<GlobalNamingResources>
<Resource name="UserDatabase" auth="Container"
type="org.apache.catalina.UserDatabase"
description="User database that can be updated and saved"
factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
pathname="conf/tomcat-users.xml" />
</GlobalNamingResources>
<Service name="Catalina">
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443" />
<Connector protocol="org.apache.coyote.http11.Http11Protocol" port="8443"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/etc/tomcat/keystore"
keystorePass="{MY_PASSWORD}" keyAlias="tomcat"/>
<Engine name="Catalina" defaultHost="{MY_IP}">
<Realm className="org.apache.catalina.realm.LockOutRealm">
<Realm className="org.apache.catalina.realm.UserDatabaseRealm"
resourceName="UserDatabase"/>
</Realm>
<Host name="{MY_IP}" appBase="webapps/cas"
unpackWARs="true" autoDeploy="true">
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log." suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
</Engine>
</Service>
</Server>
这是 netstat -tupan|grep 8443所说的
tcp 0 0 :::8443 :::* LISTEN 8810/java
当我连接时:8080我得到空的&#39;未找到&#39;响应。但是,如果我使用:8443,则只有超时/中止消息没有答案。
当我开始测试时,我使用了tomcat6。后来用tomcat7替换了它。因为我有点摆脱6因为一些配置文件/变量似乎是stil活着。例如,当我没有指定keystoreFile-Attribute时,它正在/usr/share/tomcat6中的某个地方进行搜索?! tomcat-initd.log中还有一个条目
/sbin/runuser: warning: cannot change directory to /usr/share/tomcat6: No such file or directory
/sbin/runuser: warning: cannot change directory to /usr/share/tomcat6: No such file or directory
请帮帮我。我输了。
更新1
这是iptables列表
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:webcache
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:ldap state NEW,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:mysql state NEW,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:pcsync-https state NEW,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:webcache state NEW,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:mxi state NEW,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:http state NEW,ESTABLISHED
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
Chain FORWARD (policy ACCEPT)
target prot opt source destination
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
并自行填写
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [29:3128]
-A INPUT -p tcp -m tcp --dport 8080 -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 389 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 3306 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8443 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8080 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8005 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT