Today, you configure Apache and Tomcat consolidation on REDHAT5 Linux to forward the address of the JSP page to Tomcat's address.
such as the real JSP address for http://127.0.0.1:8080/jsp/
You can also access it by accessing the http://127.0.0.1/jsp/.
So configure Proxypass in Apache:
proxypass/jsp http://localhost:8080/jsp
However, it was found that there were 503 errors when access was found to be inaccessible:
Service temporarily unavailable
The server is temporarily unable to service your request due to maintenance downtime or capacity. Please try again later.
Apache Server at localhost Port 80
View Apache Log/var/log/httpd/error_log:
[Wed Aug 10 21:02:27 2011] [ERROR] (13) Permission denied:proxy:HTTP:attempt to connect to 10.140.0.109:7080 (127.0.0.1) failed
[Wed Aug 10 21:02:27 2011] [ERROR] Ap_proxy_connect_backend disabling worker for (10.140.0.109)
[Wed Aug 10 20:30:51 2011] [ERROR] proxy:HTTP:disabled connection for (127.0.0.1)
Log/var/log/httpd/access_log:
127.0.0.1--[10/aug/2011:21:02:27-0400] "get/jsp/http/1.0" 503 401 "-" "mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; CIBA. NET CLR 2.0.50727;. NET CLR 3.0.4506.2152;. NET CLR 3.5.30729) "
After the investigation and analysis of suspicion is the reason for the selinux, so the view is sure to be:
[root@ logs]#/usr/sbin/getsebool-a |grep http_can_network_connect
Httpd_can_network_connect--> off
So try the solution:
We need to set the Httpd_can_network_connect to on:
[root@ logs]#/usr/sbin/getsebool-p httpd_can_network_connect=1
[root@ logs]#/usr/sbin/getsebool-a |grep http_can_network_connect
Httpd_can_network_connect--> on
Re-access, the page is sure to be accessible.
Another way to solve this problem is to turn off the SELinux directly:
Modify the/etc/selinux/config and reboot:
Selinux=disabled
Or in the form of immediate effect:
[root@ var]#/usr/sbin/setenforce 0
Attached on SELinux:
SELinux (security-enhanced Linux) is the U.S. National Security Service (NSA) implementation of mandatory access control, is linux® The most outstanding new security subsystem. The NSA developed an access control system with the help of the Linux community, under which the process can access only those files needed in his task. SELinux is installed by default on Fedora and Red Hat Enterprise Linux, or as an easy to install package on other distributions.
Ways to turn off SELinux:
Modify the Selinux= "" in the/etc/selinux/config file as disabled and reboot.
If you do not want to reboot the system, use the command Setenforce 0
Note:
Setenforce 1 set SELinux to become enforcing mode
Setenforce 0 Set SELinux to become permissive mode
Increase in the boot parameters of Lilo or grub: selinux=0, or you can turn off SELinux
Getenforce/setenforce View and set the current working mode of SELinux
This article from the "Small Hebebe Technical Space" blog, please be sure to keep this source http://babyhe.blog.51cto.com/1104064/636602
See more highlights of this column: http://www.bianceng.cnhttp://www.bianceng.cn/Servers/web/