GCP 에서 메모리 업그레이드 후 웹 접속이 되지 않던 문제에 대한 해결과정 기록

By | 12월 19, 2019
  1. iptables 명령을 통한 port redirection
    1. 80 → 8080
      1. sudo iptables -A PREROUTING -t nat -i ens4 -p tcp --dport 80 -j REDIRECT --to-port 8080
    2. 443 → 8443
      1. sudo iptables -A PREROUTING -t nat -i ens4 -p tcp --dport 443 -j REDIRECT --to-port 8443

  2. tomcat server.xml 에 ssl 관련 설정 적용
    <Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" SSLEnabled="true"
                   maxThread="150" scheme="https" secure="true"
                   keystoreFile="/home/tomcat/conf/certs/sample.pfx" keystorePass="****" keystoreType="PKCS12"
                   clientAuth="false" sslProtocol="TLS" />
  3. tomcat web.xml 에 아래 항목 추가
    <security-constraint>
    	<web-resource-collection>
    		  <web-resource-name>Automatic SSL Forward</web-resource-name>
    		  <url-pattern>/*</url-pattern>
    	</web-resource-collection>
    	<user-data-constraint>
    		  <transport-guarantee>
    				CONFIDENTIAL
    		  </transport-guarantee>
    	</user-data-constraint>
    </security-constraint>

     

 

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments